removed software vulnerabilities
vulnerabilities.aspcode.net
Searching removed software vulnerabilities
The install scripts in SugarCRM Sugar Sales 2.0
administrative
|
installation
|
attackers
|
cleartext
|
changing
|
password
|
SugarCRM
|
database
|
settings
|
default
|
scripts
|
install
|
removed
|
earlier
|
service
|
allows
|
denial
|
obtain
|
cause
|
Sugar
|
after
|
Sales
|
MySQL
|
which
|
201c
|
form
|
not
|
The install scripts in SugarCRM Sugar Sales 2.0.1c and earlier are not removed after installation, which allows attackers to obtain the MySQL administrative password in cleartext from an installation form, or to cause a denial of service by changing database settings to the default.
Sun Solaris 7 through 9, when Basic Security Mo
Security
|
through
|
Solaris
|
Module
|
Basic
|
Sun
|
Sun Solaris 7 through 9, when Basic Security Module (BSM) is enabled and the SUNWscpu package has been removed as a result of security hardening, disables mail alerts from the audit_warn script, which might allow attackers to escape detection.
A design flaw in image processing software that
potentially
|
information
|
processing
|
thumbnail
|
sensitive
|
original
|
software
|
modifies
|
removed
|
visual
|
design
|
images
|
modify
|
could
|
which
|
image
|
might
|
main
|
been
|
flaw
|
JPEG
|
EXIF
|
leak
|
lead
|
had
|
not
|
A design flaw in image processing software that modifies JPEG images might not modify the original EXIF thumbnail, which could lead to an information leak of potentially sensitive visual information that had been removed from the main JPEG image.
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs:
CANDIDATE
|
NUMBER
|
NOT
|
USE
|
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2005-1915. Reason: This candidate is a duplicate of CVE-2005-1915. Notes: All CVE users should reference CVE-2005-1915 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.
memberd in Mac OS X 10.4 up to 10.4.2, in certa
memberd
|
Mac
|
memberd in Mac OS X 10.4 up to 10.4.2, in certain situations, does not quickly synchronize access control checks with changes in group membership, which could allow users to access files and other resources after they have been removed from a group.
Directory traversal vulnerability in GNUMP3D be
vulnerability
|
Directory
|
traversal
|
GNUMP3D
|
before
|
Directory traversal vulnerability in GNUMP3D before 2.9.6 allows remote attackers to read arbitrary files via crafted sequences such as "/.//..//////././", which is collapsed into "/.././" after ".." and "//" sequences are removed.
CHKDSK in Microsoft Windows 2000 before Update
Microsoft
|
Windows
|
CHKDSK
|
CHKDSK in Microsoft Windows 2000 before Update Rollup 1 for SP4, Windows XP, and Windows Server 2003, when running in fix mode, does not properly handle security descriptors if the master file table contains a large number of files or if the descriptors do not satisfy certain NTFS conventions, which could cause ACLs for some files to be reverted to less secure defaults, or cause security descriptors to be removed.
relocate_server.php in Coppermine Photo Gallery
relocate_serverphp
|
Coppermine
|
Gallery
|
Photo
|
relocate_server.php in Coppermine Photo Gallery (CPG) 1.4.2 and 1.4 beta does not remove is not removed after installation and does not use authentication, which allows remote attackers to obtain sensitive information, such as database configuration, via a direct request.
** DISPUTED ** SQL injection vulnerability in
vulnerability
|
unspecified
|
parameters
|
attackers
|
arbitrary
|
injection
|
commands
|
possibly
|
DISPUTED
|
Search0
|
earlier
|
execute
|
search
|
allows
|
remote
|
WebDB
|
via
|
SQL
|
** DISPUTED ** SQL injection vulnerability in WebDB 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified search parameters, possibly Search0. NOTE: the vendor has disputed this issue, saying that "WebDB is a generic online database system used by many of the clients of Lois Software. The flaw that was identified was some code that was added for a client to do some testing of his system and only certain safe commands were allowed. This code has now been removed and it is not now possible to use SQL queries as part of the query string. No installation or patch is required All clients use a common code library and have their own front end and databases and connections. So as soon as a change / upgrade / enhancement is made to the code, all users of the software begin to use the latest changes immediately." Since the issue appeared in a custom web site and no action is required on the part of customers, this issue should not be included in CVE.
Stack-based buffer overflow in JDBC Applet Serv
disconnecting
|
reconnecting
|
Stack-based
|
terminator
|
connecting
|
db2javazip
|
unexpected
|
gracefully
|
attackers
|
arbitrary
|
overflow
|
username
|
sending
|
removed
|
version
|
execute
|
Applet
|
buffer
|
Server
|
allows
|
remote
|
causes
|
which
|
leads
|
short
|
null
|
JDBC
|
long
|
then
|
IBM
|
DB2
|
Stack-based buffer overflow in JDBC Applet Server in IBM DB2 8.1 allows remote attackers to execute arbitrary by connecting and sending a long username, then disconnecting gracefully and reconnecting and sending a short username and an unexpected db2java.zip version, which causes a null terminator to be removed and leads to the overflow.
The cairo library (libcairo), as used in GNOME
library
|
cairo
|
The cairo library (libcairo), as used in GNOME Evolution and possibly other products, allows remote attackers to cause a denial of service (persistent client crash) via an attached text file that contains "Content-Disposition: inline" in the header, and a very long line in the body, which causes the client to repeatedly crash until the e-mail message is manually removed, possibly due to a buffer overflow, as demonstrated using an XML attachment.
Cross-site scripting (XSS) vulnerability in php
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in phpinfo (info.c) in PHP 5.1.2 and 4.4.2 allows remote attackers to inject arbitrary web script or HTML via long array variables, including (1) a large number of dimensions or (2) long values, which prevents HTML tags from being removed.
Multiple SQL injection vulnerabilities in iPost
vulnerabilities
|
injection
|
Multiple
|
iPostMX
|
SQL
|
Multiple SQL injection vulnerabilities in iPostMX 2005 2.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) forum parameter in messagepost.cfm and (2) topic parameter in topics.cfm. NOTE: this item was created based on information in a blog entry that was apparently removed after CVE analysis. As of Monday, June 19, 2006, CVE is attempting to determing the cause of the removal.
Webmin before 1.290 and Usermin before 1.220 ca
before
|
Webmin
|
Webmin before 1.290 and Usermin before 1.220 calls the simplify_path function before decoding HTML, which allows remote attackers to read arbitrary files, as demonstrated using "..%01" sequences, which bypass the removal of "../" sequences before bytes such as "%01" are removed from the filename. NOTE: This is a different issue than CVE-2006-3274.
Multiple vulnerabilities in Mozilla Firefox bef
vulnerabilities
|
Multiple
|
Firefox
|
Mozilla
|
before
|
Multiple vulnerabilities in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via Javascript that leads to memory corruption, including (1) nsListControlFrame::FireMenuItemActiveEvent, (2) buffer overflows in the string class in out-of-memory conditions, (3) table row and column groups, (4) "anonymous box selectors outside of UA stylesheets," (5) stale references to "removed nodes," and (6) running the crypto.generateCRMFRequest callback on deleted context.
smbd in Samba 3.0.6 through 3.0.23d allows remo
Samba
|
smbd
|
smbd in Samba 3.0.6 through 3.0.23d allows remote authenticated users to cause a denial of service (memory and CPU exhaustion) by renaming a file in a way that prevents a request from being removed from the deferred open queue, which triggers an infinite loop.
umount, when running with the Linux 2.6.15 kern
running
|
umount
|
Linux
|
umount, when running with the Linux 2.6.15 kernel on Slackware Linux 10.2, allows local users to trigger a NULL dereference and application crash by invoking the program with a pathname for a USB pen drive that was mounted and then physically removed, which might allow the users to obtain sensitive information, including core file contents.
Directory traversal vulnerability in SQL-Ledger
vulnerability
|
SQL-Ledger
|
LedgerSMB
|
traversal
|
Directory
|
before
|
Directory traversal vulnerability in SQL-Ledger, and LedgerSMB before 1.1.5, allows remote attackers to read and overwrite arbitrary files, and execute arbitrary code, via . (dot) characters adjacent to (1) users and (2) users/members strings, which are removed by blacklisting functions that filter these strings and collapse into .. (dot dot) sequences.
Cross-site scripting (XSS) vulnerability in Win
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in Windows Vista Feed Headlines Gadget (aka Sidebar RSS Feeds Gadget) in Windows Vista allows user-assisted remote attackers to execute arbitrary code via an RSS feed with crafted HTML attributes, which are not properly removed and are rendered in the local zone.
cgi-bin/cgi-lib/instantmessage.pl in web-app.or
cgi-bin/cgi-lib/instantmessagepl
|
web-apporg
|
before
|
WebAPP
|
cgi-bin/cgi-lib/instantmessage.pl in web-app.org WebAPP before 0.9.9.7 uses the From field of an instant message as the beginning of the .dat file name when the (1) imview2 or (2) imview3 function reads (a) an internal IM, or a message from a (b) guest or (c) removed member, which has unknown impact and remote attack vectors.
Software vulnerabilities results 1 to 20 of 21
Page:
1
2
►