Searching remove software vulnerabilities

snap command in AIX before 4.3.2 creates the /t

command | before | snap | AIX |

snap command in AIX before 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions and does not remove or clear the directory when snap -a is executed, which could allow local users to access the shadowed password file by creating /tmp/ibmsupt/general/passwd before root runs snap -a.


CGIScript.net csPassword.cgi leaks sensitive in

csPasswordcgi | CGIScriptnet | information | attackers | presented | parameter | sensitive | generates | "remove" | messages | pathname | command | remote | obtain | allows | server | script | option | error | debug | leaks | fails | which | such | via |

CGIScript.net csPassword.cgi leaks sensitive information such as the pathname of the server in debug messages that are presented when the script fails, which allows remote attackers to obtain the information via a "remove" option in the command parameter, which generates an error.


KDE Konqueror for KDE 3.1.2 and earlier does no

Konqueror | KDE |

KDE Konqueror for KDE 3.1.2 and earlier does not remove authentication credentials from URLs of the "user:password@host" form in the HTTP-Referer header, which could allow remote web sites to steal the credentials for pages that link to the sites.


Clearswift MAILsweeper for SMTP 4.3.6 SP1 does

MAILsweeper | Clearswift | SMTP |

Clearswift MAILsweeper for SMTP 4.3.6 SP1 does not execute custom "on strip unsuccessful" hooks, which allows remote attackers to bypass e-mail attachment filtering policies via an attachment that MAILsweeper can detect but not remove.


The remove method in a stateful Enterprise Java

Enterprise | JavaBean | stateful | remove | method |

The remove method in a stateful Enterprise JavaBean (EJB) in BEA WebLogic Server and WebLogic Express version 8.1 through SP2, 7.0 through SP4, and 6.1 through SP6, does not properly check EJB permissions before unexporting a bean, which allows remote authenticated users to remove EJB objects from remote views before the security exception is thrown.


lppasswd in CUPS 1.1.22 does not remove the pas

lppasswd | CUPS |

lppasswd in CUPS 1.1.22 does not remove the passwd.new file if it encounters a file-size resource limit while writing to passwd.new, which causes subsequent invocations of lppasswd to fail.


Buffer overflow in the remove_quote function in

remove_quote | html2hdml | convertc | function | overflow | Buffer |

Buffer overflow in the remove_quote function in convert.c for html2hdml 1.0.3 allows remote attackers to execute arbitrary code via a crafted HTML file.


PHPMyChat 0.14.5 does not remove or protect set

PHPMyChat |

PHPMyChat 0.14.5 does not remove or protect setup.php3 after installation, which allows attackers to obtain sensitive information including database passwords via a direct request.


Directory traversal vulnerability in the true_p

vulnerability | true_path | privatepy | Directory | traversal | function | Mailman |

Directory traversal vulnerability in the true_path function in private.py for Mailman 2.1.5 and earlier allows remote attackers to read arbitrary files via ".../....///" sequences, which are not properly cleansed by regular expressions that are intended to remove "../" and "./" sequences.


ZPanel 2.0 and 2.5 beta 10 does not remove or p

installation | installphp | attackers | reinstall | possibly | software | service | scripts | request | protect | allows | ZPanel | remote | denial | remove | direct | cause | after | which | does | beta | they | been | used | have | via | not |

ZPanel 2.0 and 2.5 beta 10 does not remove or protect installation scripts after they have been used, which allows remote attackers to reinstall the software and possibly cause a denial of service via a direct request to install.php.


AFP Server for Mac OS X 10.4.1, when using an A

Server | Mac | AFP |

AFP Server for Mac OS X 10.4.1, when using an ACL enabled volume, does not properly remove an ACL when a file is copied to a directory that does not use ACLs, which will override the POSIX file permissions for that ACL.


dsidentity in Directory Services in Mac OS X 10

dsidentity | Directory | Services | Mac |

dsidentity in Directory Services in Mac OS X 10.4.2 allows local users to add or remove user accounts.


Help Desk Reloaded Free Help Desk does not remo

accountsetupphp | installation | privileges | installphp | navigating | attackers | complete | creating | Reloaded | request | protect | remote | direct | allows | remove | which | Free | then | Desk | Help | user | gain | once | does | new | not | via |

Help Desk Reloaded Free Help Desk does not remove or protect install.php once installation is complete, which allows remote attackers to gain privileges via a direct request to install.php, then navigating to accountsetup.php and creating a new user.


madvise_remove in Linux kernel 2.6.16 up to 2.6

madvise_remove | kernel | Linux |

madvise_remove in Linux kernel 2.6.16 up to 2.6.16.6 does not follow file and mmap restrictions, which allows local users to bypass IPC permissions and replace portions of readonly tmpfs files with zeroes, aka the MADV_REMOVE vulnerability. NOTE: this description was originally written in a way that combined two separate issues. The mprotect issue now has a separate name, CVE-2006-2071.


Unspecified vulnerability in the match_rule_equ

match_rule_equal | vulnerability | bus/signalsc | Unspecified | function | before | D-Bus |

Unspecified vulnerability in the match_rule_equal function in bus/signals.c in D-Bus before 1.0.2 allows local applications to remove match rules for other applications and cause a denial of service (lost process messages).


The Alibaba Alipay PTA Module ActiveX control (

control | ActiveX | Alibaba | Module | Alipay | PTA |

The Alibaba Alipay PTA Module ActiveX control (PTA.DLL) allows remote attackers to execute arbitrary code via a JavaScript function that invokes the Remove method with an invalid index argument, which is used as an offset for a function call.


Sprint Nextel Sprint voice mail systems allow r

Identification | reconfigure | attackers | mailboxes | retrieve | spoofing | messages | systems | Calling | Number | Nextel | Sprint | remote | remove | voice | allow | mail |

Sprint Nextel Sprint voice mail systems allow remote attackers to retrieve or remove messages, or reconfigure mailboxes, by spoofing Calling Number Identification (CNID, aka Caller ID).


Alcatel-Lucent Lucent Technologies voice mail s

Identification | Alcatel-Lucent | Technologies | reconfigure | attackers | mailboxes | retrieve | messages | spoofing | Calling | systems | Number | Lucent | remove | remote | voice | allow | mail |

Alcatel-Lucent Lucent Technologies voice mail systems allow remote attackers to retrieve or remove messages, or reconfigure mailboxes, by spoofing Calling Number Identification (CNID, aka Caller ID).


T-Mobile voice mail systems allow remote attack

Identification | reconfigure | attackers | mailboxes | retrieve | spoofing | messages | T-Mobile | systems | Calling | remote | remove | Number | allow | voice | mail |

T-Mobile voice mail systems allow remote attackers to retrieve or remove messages, or reconfigure mailboxes, by spoofing Calling Number Identification (CNID, aka Caller ID).


ircu 2.10.12.01 through 2.10.12.04 does not rem

ircu |

ircu 2.10.12.01 through 2.10.12.04 does not remove ops privilege after a join from a server with an older timestamp (TS), which allows remote attackers to gain control of a channel during a split.


Software vulnerabilities results 1 to 20 of 44     
Page: 123