readfile software vulnerabilities
vulnerabilities.aspcode.net
Searching readfile software vulnerabilities
Multiple buffer overflows in H-Sphere WebShell
overflows
|
arbitrary
|
attackers
|
WebShell
|
Multiple
|
H-Sphere
|
execute
|
buffer
|
remote
|
allow
|
code
|
via
|
Multiple buffer overflows in H-Sphere WebShell 2.3 allow remote attackers to execute arbitrary code via (1) a long URL content type in CGI::readFile, (2) a long path in diskusage, and (3) a long fname in flist.
PHP 4 (PHP4) allows attackers to cause a denial
PHP
|
PHP 4 (PHP4) allows attackers to cause a denial of service (daemon crash) by using the readfile function on a file whose size is a multiple of the page size.
Stack-based buffer overflow in the ReadFile fun
ZOO-processing
|
Stack-based
|
Compression
|
overflow
|
function
|
ReadFile
|
BeCubed
|
exports
|
before
|
buffer
|
Plus
|
Stack-based buffer overflow in the ReadFile function in the ZOO-processing exports in the BeCubed Compression Plus before 5.0.1.28, as used in products including (1) Tumbleweed EMF, (2) VCOM/Ontrack PowerDesk Pro, (3) Canyon Drag and Zip, (4) Canyon Power File, and (5) Canyon Power File Gold, allow context-dependent attackers to execute arbitrary code via an inconsistent size parameter in a ZOO file header.
PHP remote file inclusion vulnerability in inde
vulnerability
|
attackers
|
arbitrary
|
processed
|
parameter
|
inclusion
|
function
|
indexphp
|
Artmedic
|
readfile
|
execute
|
remote
|
allows
|
which
|
Links
|
code
|
file
|
PHP
|
URL
|
via
|
PHP remote file inclusion vulnerability in index.php in Artmedic Links 5.0 allows remote attackers to execute arbitrary PHP code via a URL in the id parameter, which is processed by the readfile function.
The readfile function in PHP 4.4.4, 5.1.6, and
function
|
readfile
|
PHP
|
The readfile function in PHP 4.4.4, 5.1.6, and 5.2.1 allows context-dependent attackers to bypass safe_mode restrictions and read arbitrary files by referring to local files with a certain URL syntax instead of a pathname syntax, as demonstrated by a filename preceded a "php://../../" sequence.
PHP 5 before 5.2.3 does not enforce the open_ba
before
|
PHP
|
PHP 5 before 5.2.3 does not enforce the open_basedir or safe_mode restriction in certain cases, which allows context-dependent attackers to determine the existence of arbitrary files by checking if the readfile function returns a string. NOTE: this issue might also involve the realpath function.
Software vulnerabilities results 1 to 7 of 7
Page:
1