Searching portion software vulnerabilities

Win32 ICQ 98a 1.30, and possibly other versions

Win32 | 98a | ICQ |

Win32 ICQ 98a 1.30, and possibly other versions, does not display the entire portion of long filenames, which could allow attackers to send an executable file with a long name that contains so many spaces that the .exe extension is not displayed, which could make the user believe that the file is safe to open from the client.


quikstore.cgi in Quikstore Shopping Cart allows

metacharacters | quikstorecgi | attackers | arbitrary | Quikstore | Shopping | commands | request | portion | execute | allows | remote | shell | Cart | HTTP | GET | via | URL |

quikstore.cgi in Quikstore Shopping Cart allows remote attackers to execute arbitrary commands via shell metacharacters in the URL portion of an HTTP GET request.


Falcon web server 2.0.0.1021 and earlier allows

server | Falcon | web |

Falcon web server 2.0.0.1021 and earlier allows remote attackers to bypass access restrictions for protected files via a URL whose directory portion ends in a . (dot).


The Microsoft Java implementation, as used in I

implementation | different | attackers | malicious | Microsoft | contains | security | properly | Internet | Explorer | context | portion | visited | cookies | execute | allows | domain | parsed | within | applet | remote | script | steal | loads | which | being | colon | site | Java | used | user | via | URL | not |

The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to steal cookies and execute script in a different security context via a URL that contains a colon in the domain portion, which is not properly parsed and loads an applet from a malicious site within the security context of the site that is being visited by the user.


PHProjekt 2.0 through 3.1 relies on the $PHP_SE

"mail_sendphp/sms" | authentication | demonstrated | PATH_INFO | attackers | PHProjekt | $PHP_SELF | included | variable | request | portion | scripts | through | allows | remote | bypass | relies | which | using | "sms" | file | via | php | URL |

PHProjekt 2.0 through 3.1 relies on the $PHP_SELF variable for authentication, which allows remote attackers to bypass authentication for scripts via a request to a .php file with "sms" in the URL, which is included in the PATH_INFO portion of the $PHP_SELF variable, as demonstrated using "mail_send.php/sms".


Finjan Software SurfinGate 6.0 and 6.0 1 allows

restrictions | SurfinGate | qualified | attackers | Software | hostname | portion | Finjan | domain | bypass | remote | allows | access | fully | whose | name | uses | URL | via |

Finjan Software SurfinGate 6.0 and 6.0 1 allows remote attackers to bypass URL access restrictions via a URL whose hostname portion uses a fully qualified domain name (FQDN) that ends in a "." (dot).


Cross-site scripting (XSS) vulnerability in ftp

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in ftp.htt in Internet Explorer 5.5 and 6.0, when running on Windows 2000 with "Enable folder view for FTP sites" and "Enable Web content in folders" selected, allows remote attackers to inject arbitrary web script or HTML via the hostname portion of an FTP URL.


Matt Wright FormMail 1.9 and earlier allows rem

HTTP_REFERER | unauthorized | activities | attackers | FormMail | earlier | conduct | Wright | allows | remote | bypass | check | Matt | via |

Matt Wright FormMail 1.9 and earlier allows remote attackers to bypass the HTTP_REFERER check and conduct unauthorized activities via (1) a blank referer, (2) a spoofed referer with a trusted domain/URL after the beginning of the referer, or (3) a spoofed referer with a trusted domain/URL in the beginning (hostname) portion of the referer.


Internet Explorer 5.01 through 6 SP1 allows rem

Explorer | Internet |

Internet Explorer 5.01 through 6 SP1 allows remote attackers to spoof the domain of a URL via a "%01" character before an @ sign in the user@domain portion of the URL, which hides the rest of the URL, including the real site, in the address bar, aka the "Improper URL Canonicalization Vulnerability."


Format string vulnerability in SHOUTcast 1.9.4

vulnerability | SHOUTcast | Format | string |

Format string vulnerability in SHOUTcast 1.9.4 allows remote attackers to cause a denial of service (application crash) and execute arbitrary code via format string specifiers in a content URL, as demonstrated in the filename portion of a .mp3 file.


The password recovery feature (forgotpassword.a

recovery | password | feature |

The password recovery feature (forgotpassword.asp) in Hosting Controller 6.1 Hotfix 1.7 and earlier allows remote attackers to determine the owner's e-mail address by providing a portion of the domain name to the "login ID" field.


Buffer overflow in the environment variable sub

"$VAR/EVAR=arg" | substitution | environment | LD_PRELOAD | arguments | variables | arbitrary | pathname | returned | variable | overflow | function | appended | portion | getenv | allows | Buffer | inject | which | cause | mainc | local | users | 17-14 | call | code | such | EVAR | form | OSH | via |

Buffer overflow in the environment variable substitution code in main.c in OSH 1.7-14 allows local users to inject arbitrary environment variables, such as LD_PRELOAD, via pathname arguments of the form "$VAR/EVAR=arg", which cause the EVAR portion to be appended to a buffer returned by a getenv function call.


Format string vulnerability in the SMTP server

vulnerability | constructed | destination | WebShield | attackers | arbitrary | properly | execute | handled | strings | portion | message | earlier | address | Format | domain | remote | allows | McAfee | bounce | string | server | which | code | name | SMTP | MR2 | not | via |

Format string vulnerability in the SMTP server for McAfee WebShield 4.5 MR2 and earlier allows remote attackers to execute arbitrary code via format strings in the domain name portion of a destination address, which are not properly handled when a bounce message is constructed.


Directory traversal vulnerability in action_adm

action_admin/paysubscriptionsphp | vulnerability | Directory | traversal | Invision | Board | Power |

Directory traversal vulnerability in action_admin/paysubscriptions.php in Invision Power Board (IPB) 2.1.x and 2.0.x before Tuesday, April 25, 2006 allows remote authenticated administrators to include and execute arbitrary local PHP files via a .. (dot dot) in the name parameter, preceded by enough backspace (%08) characters to erase the initial static portion of a filename.


Ideal Science Ideal BB 1.5.4a and earlier does

extensions | permitting | character | attackers | properly | filename | portion | Science | earlier | execute | allows | script | remote | before | upload | Ideal | "asp" | check | which | 0x00 | does | 154a | file | ASP | not | via |

Ideal Science Ideal BB 1.5.4a and earlier does not properly check file extensions before permitting an upload, which allows remote attackers to upload and execute an ASP script via a 0x00 character before the ".asp" portion of the filename.


Multiple cross-site scripting (XSS) vulnerabili

cross-site | scripting | Multiple |

Multiple cross-site scripting (XSS) vulnerabilities in Guder und Koch Netzwerktechnik Eichhorn Portal allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly including the (1) profil_nr and (2) sprache parameters in the main portion of the portal, the (3) suchstring field in suchForm in the main portion of the portal, the (4) GaleryKey and (5) Breadcrumbs parameters in the gallerie module, and the (6) GGBNSaction parameter in the ggbns module.


Multiple SQL injection vulnerabilities in Guder

vulnerabilities | Netzwerktechnik | unspecified | attackers | arbitrary | injection | including | commands | Eichhorn | Multiple | possibly | vectors | execute | Portal | remote | Guder | allow | Koch | SQL | via | und |

Multiple SQL injection vulnerabilities in Guder und Koch Netzwerktechnik Eichhorn Portal allow remote attackers to execute arbitrary SQL commands via unspecified vectors, possibly including the (1) profil_nr and (2) sprache parameters in the main portion of the portal, the (3) suchstring field in suchForm in the main portion of the portal, the (4) GaleryKey and (5) Breadcrumbs parameters in the gallerie module, and the (6) GGBNSaction parameter in the ggbns module.


Cross-site scripting (XSS) vulnerability in sea

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in searchform.php in the AndyBlue theme before Thursday, June 07, 2007 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PHP_SELF portion of a URI to index.php. NOTE: this can be leveraged for PHP code execution in an administrative session.


Cross-site scripting (XSS) vulnerability in blo

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in blogroll.php in the cordobo-green-park theme for WordPress allows remote attackers to inject arbitrary web script or HTML via the PHP_SELF portion of a URI.


Visual truncation vulnerability in KDE Konquero

vulnerability | truncation | Konqueror | Visual | KDE |

Visual truncation vulnerability in KDE Konqueror 3.5.7 allows remote attackers to spoof the URL address bar via an http URI with a large amount of whitespace in the user/password portion.


Software vulnerabilities results 1 to 20 of 31     
Page: 12