Searching places software vulnerabilities

The default configuration of DCShop 1.002 beta

configuration | default | DCShop |

The default configuration of DCShop 1.002 beta places sensitive files in the cgi-bin directory, which could allow remote attackers to read sensitive data via an HTTP GET request for (1) orders.txt or (2) auth_user_file.txt.


InterScan VirusWall 3.52 build 1462 allows remo

VirusWall | InterScan |

InterScan VirusWall 3.52 build 1462 allows remote attackers to bypass virus protection via e-mail messages with headers that violate RFC specifications by having (or missing) space characters in unexpected places (aka "space gap"), such as (1) Content-Type :", (2) "Content-Transfer-Encoding :", (3) no space before a boundary declaration, or (4) "boundary= ", which is processed by Outlook Express.


siteminderagent/SmMakeCookie.ccc in Netegrity S

siteminderagent/SmMakeCookieccc | SiteMinder | SMSESSION | parameter | attackers | Netegrity | sniffing | Referer | reading | session | methods | string | obtain | remote | places | other | which | value | allow | might | logs | URL |

siteminderagent/SmMakeCookie.ccc in Netegrity SiteMinder places a session ID string in the value of the SMSESSION parameter in a URL, which might allow remote attackers to obtain the ID by sniffing, reading Referer logs, or other methods.


PortalApp places user credentials under the web

insufficient | credentials | information | sensitive | PortalApp | attackers | control | 8275mdb | request | remote | allows | direct | places | access | which | under | user | gain | root | via | web |

PortalApp places user credentials under the web root with insufficient access control, which allows remote attackers to gain access to sensitive information via a direct request to 8275.mdb.


ASP-Nuke 1.3 and earlier places user credential

insufficient | information | credentials | sensitive | attackers | document | ASP-Nuke | mainmdb | control | request | earlier | obtain | direct | places | remote | allows | access | which | under | root | user | web | via |

ASP-Nuke 1.3 and earlier places user credentials under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request to main.mdb.


ColdFusion 6.1 Updater 1 places Java .class fil

/WEB-INF/cfclasses | information | ColdFusion | sensitive | attackers | directory | Updater | places | allows | remote | obtain | files | under | which | class | Java | root | web |

ColdFusion 6.1 Updater 1 places Java .class files under the web root in the /WEB-INF/cfclasses directory, which allows remote attackers to obtain sensitive information.


Monotone 0.25 and earlier, when a user creates

Monotone |

Monotone 0.25 and earlier, when a user creates a file in a directory called "mt", and when checking out that file on a case-insensitive file system such as Windows or Mac OS X, places the file into the "MT" bookkeeping directory, which could allow context-dependent attackers to execute arbitrary Lua programs as the user running monotone.


ContentKeeper 123.25 and earlier places passwor

ContentKeeper |

ContentKeeper 123.25 and earlier places passwords in cleartext in an INPUT element in cgi-bin/ck/changepw.cgi, which allows remote authenticated users to obtain passwords via this URI.


The Java Key Store (JKS) for WebSphere Applicat

Store | Java | Key |

The Java Key Store (JKS) for WebSphere Application Server (WAS) for IBM Tivoli Identity Manager (ITIM) 4.6 places the JKS password in a -Djavax.net.ssl.trustStorePassword command line argument, which allows local users to obtain the password by listing the process or using other methods.


Tor does not verify a node's uptime and bandwid

advertisements | destinations | compromises | resources | attackers | anonymity | bandwidth | resource | circuits | traffic | greater | sources | operate | allows | claims | remote | uptime | verify | places | node's | which | false | many | node | does | make | into | use | Tor | low | not |

Tor does not verify a node's uptime and bandwidth advertisements, which allows remote attackers who operate a low resource node to make false claims of greater resources, which places the node into use for many circuits and compromises the anonymity of traffic sources and destinations.


Unrestricted file upload vulnerability in galle

vulnerability | Unrestricted | galleryphp | upload | phpx | file |

Unrestricted file upload vulnerability in gallery.php in phpx 3.5.15 allows remote attackers to upload and execute arbitrary PHP scripts via an addImage action, which places scripts into the gallery/shelties/ directory.


Peercast places a cleartext password in a query

information | attackers | sensitive | obtaining | cleartext | password | Peercast | sniffing | history | network | browser | Referer | string | obtain | places | might | which | query | allow |

Peercast places a cleartext password in a query string, which might allow attackers to obtain sensitive information by sniffing the network, or obtaining Referer or browser history information.


The installation script for orarun on SUSE Linu

installation | before | orarun | script | Linux | SUSE |

The installation script for orarun on SUSE Linux before Friday, August 10, 2007 places the oracle user into the disk group, which allows the local oracle user to read or write raw disk partitions.


Cisco IOS 12.2E, 12.2F, and 12.2S places a "no

administrator | configuration | changes | certain | login" | places | makes | Cisco | 122F | 122E | line | 122S | into | IOS | "no | VTY |

Cisco IOS 12.2E, 12.2F, and 12.2S places a "no login" line into the VTY configuration when an administrator makes certain changes to a (1) VTY/AUX or (2) CONSOLE setting on a device without AAA enabled, which allows remote attackers to bypass authentication and obtain a terminal session, a different vulnerability than CVE-1999-0293 and CVE-2005-2105.


Cisco Adaptive Security Appliance (ASA) running

Appliance | Security | Adaptive | Cisco |

Cisco Adaptive Security Appliance (ASA) running PIX 7.0 before 7.0.7.1, 7.1 before 7.1.2.61, 7.2 before 7.2.2.34, and 8.0 before 8.0.2.11, when AAA is enabled, composes %ASA-5-111008 messages from the "test aaa" command with cleartext passwords and sends them over the network to a remote syslog server or places them in a local logging buffer, which allows context-dependent attackers to obtain sensitive information.


Unrestricted file upload vulnerability in mod/c

vulnerability | mod/contakphp | Unrestricted | attackers | arbitrary | parameter | execute | AuraCMS | files/ | places | upload | remote | allows | which | image | files | under | file | PHP | via |

Unrestricted file upload vulnerability in mod/contak.php in AuraCMS 2.1 allows remote attackers to upload and execute arbitrary PHP files via the image parameter, which places a file under files/.


contrib/mx_glance_sdesc.php in the mx_glance 2.

contrib/mx_glance_sdescphp | mx_glance |

contrib/mx_glance_sdesc.php in the mx_glance 2.3.3 module for mxBB places a critical security check within a comment because of a missing comment delimiter, which allows remote attackers to conduct remote file inclusion attacks and execute arbitrary PHP code via a URL in the mx_root_path parameter. NOTE: some sources incorrectly state that phpbb_root_path is the affected parameter.


Software vulnerabilities results 1 to 18 of 18     
Page: 1