Searching point software vulnerabilities

dump in Red Hat Linux 6.2 trusts the pathname s

environmental | privileges | specified | modifying | variable | pathname | program | allows | trusts | obtain | Trojan | point | horse | users | which | Linux | local | dump | root | Red | RSH | Hat |

dump in Red Hat Linux 6.2 trusts the pathname specified by the RSH environmental variable, which allows local users to obtain root privileges by modifying the RSH variable to point to a Trojan horse program.


restore 0.4b15 and earlier in Red Hat Linux 6.2

environmental | privileges | modifying | specified | pathname | variable | restore | earlier | program | allows | obtain | trusts | Trojan | 04b15 | horse | point | which | Linux | local | users | root | Hat | Red | RSH |

restore 0.4b15 and earlier in Red Hat Linux 6.2 trusts the pathname specified by the RSH environmental variable, which allows local users to obtain root privileges by modifying the RSH variable to point to a Trojan horse program.


Check Point FireWall-1 allows remote attackers

FireWall-1 | attackers | service | denial | remote | allows | Check | Point | cause |

Check Point FireWall-1 allows remote attackers to cause a denial of service (high CPU) via a flood of packets to port 264.


AIX sysback before 4.2.1.13 uses a relative pat

sysback | before | AIX |

AIX sysback before 4.2.1.13 uses a relative path to find and execute the hostname program, which allows local users to gain privileges by modifying the path to point to a malicious hostname program.


The default permissions for the RAS Administrat

vulnerabilities | Administration | Permissions" | permissions | arbitrary | malicious | "Registry | changing | commands | execute | default | Windows | allows | point | local | users | value | key | RAS | DLL | aka | one |

The default permissions for the RAS Administration key in Windows NT 4.0 allows local users to execute arbitrary commands by changing the value to point to a malicious DLL, aka one of the "Registry Permissions" vulnerabilities.


Check Point VPN-1/FireWall-1 4.1 SP2 with Fastm

VPN-1/FireWall-1 | restrictions | fragmented | malformed | attackers | Fastmode | packets | enabled | access | bypass | allows | remote | Point | Check | via | SP2 |

Check Point VPN-1/FireWall-1 4.1 SP2 with Fastmode enabled allows remote attackers to bypass access restrictions via malformed, fragmented packets.


Cisco 340-series Aironet access point using fir

340-series | firmware | Aironet | access | Cisco | using | point |

Cisco 340-series Aironet access point using firmware 11.01 does not use 6 of the 24 available IV bits for WEP encryption, which makes it easier for remote attackers to mount brute force attacks.


QNX 2.4 allows a local user to read arbitrary f

arbitrary | accessing | partition | directly | /fs-dos | allows | mount | point | files | local | disk | read | user | QNX | FAT |

QNX 2.4 allows a local user to read arbitrary files by directly accessing the mount point for the FAT disk partition, e.g. /fs-dos.


Check Point FireWall-1 3.0b through 4.1 for Sol

world-writable | FireWall-1 | temporary | arbitrary | overwrite | extension | through | symlink | Solaris | attack | allows | policy | which | local | Point | users | Check | files | set | 30b | via | end | cpp |

Check Point FireWall-1 3.0b through 4.1 for Solaris allows local users to overwrite arbitrary files via a symlink attack on temporary policy files that end in a .cpp extension, which are set world-writable.


xman allows local users to gain privileges by m

metacharacters | privileges | modifying | contains | filename | MANPATH | allows | whose | local | shell | users | point | xman | gain | page | man |

xman allows local users to gain privileges by modifying the MANPATH to point to a man page whose filename contains shell metacharacters.


Check Point FireWall-1 SecuRemote/SecuClient 4.

SecuRemote/SecuClient | "authentication | configuration | FireWall-1 | modifying | to_expire | client's | timeout" | clients | values | usersC | expire | bypass | allows | Check | Point | file |

Check Point FireWall-1 SecuRemote/SecuClient 4.0 and 4.1 allows clients to bypass the "authentication timeout" by modifying the to_expire or expire values in the client's users.C configuration file.


Buffer overflows in ISDN Point to Point Protoco

overflows | Protocol | Buffer | Point | ISDN |

Buffer overflows in ISDN Point to Point Protocol (PPP) daemon (ipppd) in the i4l package on SuSE 7.3, 8.0, and possibly other operating systems, may allow local users to gain privileges.


changepassword.cgi in ChangePassword 0.8, when

changepasswordcgi | ChangePassword | environment | arbitrary | modifying | malicious | installed | variable | program | execute | setuid | "make" | allows | users | point | local | code | PATH |

changepassword.cgi in ChangePassword 0.8, when installed setuid, allows local users to execute arbitrary code by modifying the PATH environment variable to point to a malicious "make" program.


Buffer overflow in Check Point SmartDashboard i

SmartDashboard | authenticated | overflow | service | allows | remote | Buffer | denial | users | cause | Check | Point | R54 | R55 |

Buffer overflow in Check Point SmartDashboard in Check Point NG AI R54 and R55 allows remote authenticated users to cause a denial of service (server disconnect) and possibly execute arbitrary code via a large filter on a column when using SmartView Tracker.


Check Point SecuRemote NG with Application Inte

Intelligence | Application | credentials | privileges | SecuRemote | attackers | unknown | vectors | attack | allows | obtain | Check | Point | gain | R54 | via |

Check Point SecuRemote NG with Application Intelligence R54 allows attackers to obtain credentials and gain privileges via unknown attack vectors.


Unknown vulnerability in 3Com OfficeConnect Wir

OfficeConnect | vulnerability | Wireless | Unknown | Access | before | Point | 3Com | 11g |

Unknown vulnerability in 3Com OfficeConnect Wireless 11g Access Point before 1.03.12 allows remote attackers to obtain sensitive information via the web interface.


Sun Solaris 10 allows local users to cause a de

Solaris | service | denial | allows | cause | local | users | Sun |

Sun Solaris 10 allows local users to cause a denial of service (panic) via unspecified vectors involving (1) the /net mount point and (2) the "-hosts" map in a mount point.


Untrusted search path vulnerability in acctctl

vulnerability | Untrusted | acctctl | search | path | AIX | IBM |

Untrusted search path vulnerability in acctctl in IBM AIX 5.3.0 allows local users to execute arbitrary commands by modifying the path to point to a malicious mkdir program.


pptpgre.c in PoPToP Point to Point Tunneling Se

Tunneling | pptpgrec | Server | PoPToP | Point |

pptpgre.c in PoPToP Point to Point Tunneling Server (pptpd) before 1.3.4 allows remote attackers to cause a denial of service (PPTP connection tear-down) via (1) GRE packets with out-of-order sequence numbers or (2) certain GRE packets that are processed using a wrong pointer and improperly dequeued.


Check Point SofaWare Safe@Office, with firmware

Safe@Office | firmware | Embedded | SofaWare | before | Point | Check | NGX |

Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, has a certain default password.


Software vulnerabilities results 1 to 20 of 114     
Page: 123456