Searching portions software vulnerabilities

Vulnerability in bb-hist.sh CGI History module

Vulnerability | arbitrary | bb-histsh | portions | attacker | Brother | History | allows | remote | module | files | read | 109b | 109c | CGI | Big |

Vulnerability in bb-hist.sh CGI History module in Big Brother 1.09b and 1.09c allows remote attacker to read portions of arbitrary files.


The Nirvana Editor (NEdit) 5.1.1 and earlier al

Nirvana | Editor |

The Nirvana Editor (NEdit) 5.1.1 and earlier allows a local attacker to overwrite other users' files via a symlink attack on (1) backup files or (2) temporary files used when nedit prints a file or portions of a file.


Directory traversal vulnerability in Multi Rout

vulnerability | Directory | traversal | Traffic | Grapher | Router | Multi |

Directory traversal vulnerability in Multi Router Traffic Grapher (MRTG) allows remote attackers to read portions of arbitrary files via a .. (dot dot) in the cfg parameter for (1) 14all.cgi, (2) 14all-1.1.cgi, (3) traffic.cgi, or (4) mrtg.cgi.


The Linux 2.0 kernel IP stack does not properly

unauthorized | responses | calculate | properly | citation | portions | include | causes | kernel | memory | which | stack | error | Linux | does | size | ICMP | not |

The Linux 2.0 kernel IP stack does not properly calculate the size of an ICMP citation, which causes it to include portions of unauthorized memory in ICMP error responses.


Linux kernel does not properly convert 64-bit f

pointers | properly | portions | convert | offset | memory | access | allows | 64-bit | kernel | local | users | Linux | which | file | does | bits | not |

Linux kernel does not properly convert 64-bit file offset pointers to 32 bits, which allows local users to access portions of kernel memory.


Zyxel P681 running ZyNOS Vt020225a contains por

information | Vt020225a | attackers | sensitive | portions | contains | sniffing | request | network | running | memory | obtain | remote | allows | Zyxel | ZyNOS | which | P681 | ARP |

Zyxel P681 running ZyNOS Vt020225a contains portions of memory in an ARP request, which allows remote attackers to obtain sensitive information by sniffing the network.


msxml3.dll in Internet Explorer 6.0.2600.0 allo

msxml3dll | Explorer | Internet |

msxml3.dll in Internet Explorer 6.0.2600.0 allows remote attackers to cause a denial of service (crash) via a single & (ampersand) in a link, which triggers a parsing error, possibly due to missing portions of the URI.


mod_python (libapache2-mod-python) 3.1.4 and ea

mod_python |

mod_python (libapache2-mod-python) 3.1.4 and earlier does not properly handle when output filters process more than 16384 bytes, which can cause filter.read to return portions of previously freed memory.


Race condition in the setsid function in Linux

condition | function | before | setsid | Linux | Race |

Race condition in the setsid function in Linux before 2.6.8.1 allows local users to cause a denial of service (crash) and possibly access portions of kernel memory, related to TTY changes, locking, and semaphores.


Direct code injection vulnerability in awstats.

vulnerability | PluginMode | attackers | awstatspl | parameter | injection | portions | AWStats | execute | Direct | allows | remote | code | Perl | via |

Direct code injection vulnerability in awstats.pl in AWStats 6.3 and 6.4 allows remote attackers to execute portions of Perl code via the PluginMode parameter.


The sendfile system call in FreeBSD 4.8 through

sendfile | through | FreeBSD | system | call |

The sendfile system call in FreeBSD 4.8 through 4.11 and 5 through 5.4 can transfer portions of kernel memory if a file is truncated while it is being sent, which could allow remote attackers to obtain sensitive information.


The find_replen function in jsstr.c in the the

find_replen | Javascript | function | Mozilla | engine | jsstrc | Suite |

The find_replen function in jsstr.c in the the Javascript engine for Mozilla Suite 1.7.6, Firefox 1.0.1 and 1.0.2, and Netscape 7.2 allows remote attackers to read portions of heap memory in a Javascript string via the lambda replace method.


The SIOCGIFCONF ioctl (ifconf function) in Free

SIOCGIFCONF | ioctl |

The SIOCGIFCONF ioctl (ifconf function) in FreeBSD 4.x through 4.11 and 5.x through 5.4 does not properly clear a buffer before using it, which allows local users to obtain portions of sensitive kernel memory.


HP Version Control Repository Manager (VCRM) be

Repository | Manager | Version | Control |

HP Version Control Repository Manager (VCRM) before 2.1.1.730 does not properly handle the "@" character in a proxy password, which could allow attackers with physical access to obtain portions of the password when it is displayed to the screen.


frox 0.7.18, when running setuid root, does not

frox |

frox 0.7.18, when running setuid root, does not properly drop privileges when reading a configuration file, which allows local users to read portions of arbitrary files via the -f command line option.


FreeBSD kernel 5.4-STABLE and 6.0 does not comp

completely | initialize | available | 54-STABLE | userland | portions | FreeBSD | making | memory | kernel | buffer | before | local | users | allow | which | could | does | read | not |

FreeBSD kernel 5.4-STABLE and 6.0 does not completely initialize a buffer before making it available to userland, which could allow local users to read portions of kernel memory.


Powersave daemon before 0.10.15.2 allows local

Powersave | before | daemon |

Powersave daemon before 0.10.15.2 allows local users to gain privileges (unauthorized access to an X session) via unspecified vectors. NOTE: the provenance of this information is unknown; portions of the details are obtained from third party information.


The bridge ioctl (if_bridge code) in NetBSD 1.6

bridge | ioctl |

The bridge ioctl (if_bridge code) in NetBSD 1.6 through 3.0 does not clear sensitive memory before copying ioctl results to the requesting process, which allows local users to obtain portions of kernel memory.


Microsoft Internet Security and Acceleration (I

Acceleration | Microsoft | Security | Internet |

Microsoft Internet Security and Acceleration (ISA) Server 2004 logs unusual ASCII characters in the Host header, including the tab, which allows remote attackers to manipulate portions of the log file and possibly leverage this for other attacks.


The AJP connector in Apache Tomcat 5.5.15 uses

connector | Tomcat | Apache | AJP |

The AJP connector in Apache Tomcat 5.5.15 uses an incorrect length for chunks, which can cause a buffer over-read in the ajp_process_callback in mod_jk, which allows remote attackers to read portions of sensitive memory.


Software vulnerabilities results 1 to 20 of 82     
Page: 12345