Searching replacing software vulnerabilities

ZIP drive for Iomega ZIP-100 disks allows attac

protection | replacing | attackers | inserting | manually | physical | password | ZIP-100 | waiting | target | Iomega | allows | access | bypass | drive | power | disks | known | using | disk | down | ZIP |

ZIP drive for Iomega ZIP-100 disks allows attackers with physical access to the drive to bypass password protection by inserting a known disk with a known password, waiting for the ZIP drive to power down, manually replacing the known disk with the target disk, and using the known password to access the target disk.


ARCAD Systemhaus 0.078-5 installs critical prog

world-writeable | permissions | privileges | Systemhaus | replacing | programs | installs | critical | program | 0078-5 | Trojan | users | horse | which | files | ARCAD | could | local | allow | gain |

ARCAD Systemhaus 0.078-5 installs critical programs and files with world-writeable permissions, which could allow local users to gain privileges by replacing a program with a Trojan horse.


Oracle Web Listener 2.1 allows remote attackers

restrictions | HTTP-encoded | attackers | replacing | character | Listener | access | allows | Oracle | bypass | remote | its | Web | URL |

Oracle Web Listener 2.1 allows remote attackers to bypass access restrictions by replacing a character in the URL with its HTTP-encoded (hex) equivalent.


HP Photosmart printer driver for Mac OS X insta

hp_imaging_connectivityapp | hp_imaging_connectivity | world-writable | permissions | Photosmart | privileges | directory | replacing | installs | printer | program | Trojan | allows | driver | other | horse | which | local | users | gain | Mac |

HP Photosmart printer driver for Mac OS X installs the hp_imaging_connectivity program and the hp_imaging_connectivity.app directory with world-writable permissions, which allows local users to gain privileges of other Photosmart users by replacing hp_imaging_connectivity with a Trojan horse.


nethack 3.4.0 and earlier installs certain setg

nethack |

nethack 3.4.0 and earlier installs certain setgid binaries with insecure permissions, which allows local users to gain privileges by replacing the original binaries with malicious code.


ICQLite 2003a creates the ICQ Lite directory wi

Interactive | executables | privileges | directory | replacing | malicious | Control" | programs | creates | ICQLite | allows | local | other | 2003a | "Full | which | Users | Lite | gain | ICQ | ACE |

ICQLite 2003a creates the ICQ Lite directory with an ACE for "Full Control" privileges for Interactive Users, which allows local users to gain privileges as other users by replacing the executables with malicious programs.


The installation of Dantz Retrospect Client 5.0

installation | Retrospect | Client | Dantz |

The installation of Dantz Retrospect Client 5.0.540 on MacOS X 10.2.6, and possibly other versions, creates critical directories and files with world-writable permissions, which allows local users to gain privileges as other users by replacing programs with malicious code.


Computer Associates eTrust EZ Antivirus 7.0.0 t

Associates | Antivirus | Computer | eTrust |

Computer Associates eTrust EZ Antivirus 7.0.0 to 7.0.4, including 7.0.1.4, installs its files with insecure permissions (ACLs), which allows local users to gain privileges by replacing critical programs with malicious ones, as demonstrated using VetMsg.exe.


Skype for Windows 1.2.0.0 to 1.2.0.46 allows lo

Windows | Skype |

Skype for Windows 1.2.0.0 to 1.2.0.46 allows local users to bypass the identity check for an authorized application, then call arbitrary Skype API functions by modifying or replacing that application.


AOL Client Software 9.0 uses insecure permissio

installation | permissions | privileges | replacing | arbitrary | malicious | Software | insecure | execute | program | ACSDexe | SYSTEM | allows | Client | which | local | users | uses | code | path | AOL | its |

AOL Client Software 9.0 uses insecure permissions for its installation path, which allows local users to execute arbitrary code with SYSTEM privileges by replacing ACSD.exe with a malicious program.


Race condition in IPCop (aka IPCop Firewall) be

condition | IPCop | Race |

Race condition in IPCop (aka IPCop Firewall) before 1.4.10 might allow local users to overwrite system configuration files and gain privileges by replacing a backup archive during the time window when the archive is owned by "nobody" but not yet encrypted, then executing ipcoprscfg to restore from this backup.


AOL 9.0 Security Edition revision 4184.2340, an

revision | Security | Edition | AOL |

AOL 9.0 Security Edition revision 4184.2340, and probably other versions, uses insecure permissions (Everyone/Full Control) for the "America Online 9.0" directory, which allows local users to gain privileges by replacing critical files.


Client Firewall in NCP Network Communication Se

Communication | Firewall | Network | Client | Secure | NCP |

Client Firewall in NCP Network Communication Secure Client 8.11 Build 146, and possibly other versions, allows local users to bypass firewall program execution rules by replacing an allowed program with an arbitrary program.


EMC Retrospect for Windows 6.5 before 6.5.382,

Retrospect | Windows | before | EMC |

EMC Retrospect for Windows 6.5 before 6.5.382, 7.0 before 7.0.344, and 7.5 before 7.5.1.105 allows local users to execute arbitrary code by replacing the Retrospect.exe file, possibly due to improper file permissions.


ISS BlackICE PC Protection 3.6.cpj, 3.6.cpiE, a

pamversiondll | Protection | integrity | replacing | versions | properly | BlackICE | possibly | earlier | library | subvert | monitor | allows | 36cpiE | local | users | which | 36cpj | ISS | not |

ISS BlackICE PC Protection 3.6.cpj, 3.6.cpiE, and possibly earlier versions do not properly monitor the integrity of the pamversion.dll BlackICE library, which allows local users to subvert BlackICE by replacing pamversion.dll. NOTE: in most cases, the attack would not cross privilege boundaries because replacing pamversion.dll requires administrative privileges. However, this issue is a vulnerability because BlackICE is intended to protect against certain rogue privileged actions.


Race condition in the grid-proxy-init tool in G

grid-proxy-init | condition | Toolkit | Globus | Race | tool | 40x | 32x |

Race condition in the grid-proxy-init tool in Globus Toolkit 3.2.x, 4.0.x, and 4.1.0 before Tuesday, August 15, 2006 allows local users to steal credential data by replacing the proxy credentials file in between file creation and the check for exclusive file access.


The installation of Cisco Secure Desktop (CSD)

installation | Desktop | Secure | Cisco |

The installation of Cisco Secure Desktop (CSD) before 3.1.1.45 uses insecure default permissions (all users full control) for the CSD directory and its parent directory, which allow local users to gain privileges by replacing CSD executables, aka "Local Privilege Escalation".


Unsanity Application Enhancer (APE) 2.0.2 insta

Application | Enhancer | Unsanity |

Unsanity Application Enhancer (APE) 2.0.2 installs with insecure permissions for the (1) ApplicationEnhancer binary and the (2) /Library/Frameworks/ApplicationEnhancer.framework directory, which allows local users to gain privileges by modifying or replacing the binary or library files.


SecureKit Steganography 1.7.1 and 1.8 embeds pa

Steganography | SecureKit |

SecureKit Steganography 1.7.1 and 1.8 embeds password information in the carrier file, which allows remote attackers to bypass authentication requirements and decrypt embedded steganography by replacing the last 20 bytes of the JPEG image with alternate password information.


Camouflage 1.2.1 embeds password information in

Camouflage |

Camouflage 1.2.1 embeds password information in the carrier file, which allows remote attackers to bypass authentication requirements and decrypt embedded steganography by replacing certain bytes of the JPEG image with alternate password information.


Software vulnerabilities results 1 to 20 of 28     
Page: 12