Searching restore software vulnerabilities

Buffer overflow in restore program 0.4b17 and e

arbitrary | overflow | commands | execute | package | earlier | restore | program | allows | Buffer | 04b17 | local | users | long | tape | dump | name | via |

Buffer overflow in restore program 0.4b17 and earlier in dump package allows local users to execute arbitrary commands via a long tape name.


restore 0.4b15 and earlier in Red Hat Linux 6.2

environmental | privileges | modifying | specified | pathname | variable | restore | earlier | program | allows | obtain | trusts | Trojan | 04b15 | horse | point | which | Linux | local | users | root | Hat | Red | RSH |

restore 0.4b15 and earlier in Red Hat Linux 6.2 trusts the pathname specified by the RSH environmental variable, which allows local users to obtain root privileges by modifying the RSH variable to point to a Trojan horse program.


The "Configure Your Server" tool in Microsoft 2

"Configure | Microsoft | Server" | Your | tool |

The "Configure Your Server" tool in Microsoft 2000 domain controllers installs a blank password for the Directory Service Restore Mode, which allows attackers with physical access to the controller to install malicious programs, aka the "Directory Service Restore Mode Password" vulnerability.


Password Safe 1.7(1) leaves cleartext passwords

Password | Safe |

Password Safe 1.7(1) leaves cleartext passwords in memory when a user copies the password to the clipboard and minimizes Password Safe with the "Clear the password when minimized" and "Lock password database on minimize and promp on restore" options enabled, which could allow an attacker with access to the memory (e.g. an administrator) to read the passwords.


setlicense for TOLIS Group Backup and Restore U

setlicense | Restore | Utility | Backup | TOLIS | Group |

setlicense for TOLIS Group Backup and Restore Utility (BRU) 17.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/brutest.$$ temporary file.


Buffer overflow in Backup and Restore Utility f

overflow | Restore | Utility | Buffer | Backup | Unix |

Buffer overflow in Backup and Restore Utility for Unix (BRU) 17.0 and earlier, when running setuid, allows local users to execute arbitrary code via a long command line argument.


Format string vulnerability in Backup and Resto

vulnerability | Restore | Utility | Backup | Format | string | Unix |

Format string vulnerability in Backup and Restore Utility for Unix (BRU) 17.0 and earlier, when running setuid, allows local users to execute arbitrary code via format string specifiers in a command line argument.


Kerio Personal Firewall 4.0 (KPF4) allows local

Firewall | Personal | Kerio |

Kerio Personal Firewall 4.0 (KPF4) allows local users with administrative privileges to bypass the Application Security feature and execute arbitrary processes by directly writing to \device\physicalmemory to restore the running kernel's SDT ServiceTable.


Linux kernel 2.6 and 2.4 on the IA64 architectu

architecture | service | allows | denial | kernel | cause | Linux | local | users | IA64 |

Linux kernel 2.6 and 2.4 on the IA64 architecture allows local users to cause a denial of service (kernel crash) via ptrace and the restore_sigcontext function.


D-Link DSL-504T allows remote attackers to bypa

authentication | configuration | firmwarecfg | privileges | attackers | DSL-504T | firmware | restart | restore | request | upgrade | bypass | direct | remote | D-Link | allows | router | saved | such | gain | via |

D-Link DSL-504T allows remote attackers to bypass authentication and gain privileges, such as upgrade firmware, restart the router or restore a saved configuration, via a direct request to firmwarecfg.


IPCop (aka IPCop Firewall) before 1.4.10 has wo

IPCop |

IPCop (aka IPCop Firewall) before 1.4.10 has world-readable permissions for the backup.key file, which might allow local users to overwrite system configuration files and gain privileges by creating a malicious encrypted backup archive owned by "nobody", then executing ipcoprscfg to restore from this backup.


Race condition in IPCop (aka IPCop Firewall) be

condition | IPCop | Race |

Race condition in IPCop (aka IPCop Firewall) before 1.4.10 might allow local users to overwrite system configuration files and gain privileges by replacing a backup archive during the time window when the archive is owned by "nobody" but not yet encrypted, then executing ipcoprscfg to restore from this backup.


The "restore to" selection in the "quarantine a

"quarantine | capability | selection | "restore | before | NOD32 | file" | ESET | to" |

The "restore to" selection in the "quarantine a file" capability of ESET NOD32 before 2.51.26 allows a restore to any directory that permits read access by the invoking user, which allows local users to create new files despite write-access directory permissions.


A regression error in the restore_all code path

restore_all | non-hugemem | Enterprise | regression | kernels | service | Desktop | support | denial | allows | users | split | local | cause | 4/4GB | error | Linux | path | code | Red | Hat |

A regression error in the restore_all code path of the 4/4GB split support for non-hugemem Linux kernels on Red Hat Linux Desktop and Enterprise Linux 4 allows local users to cause a denial of service (panic) via unspecified vectors.


PHP 4.x up to 4.4.4 and PHP 5 up to 5.1.6 allow

PHP |

PHP 4.x up to 4.4.4 and PHP 5 up to 5.1.6 allows local users to bypass certain Apache HTTP Server httpd.conf options, such as safe_mode and open_basedir, via the ini_restore function, which resets the values to their php.ini (Master Value) defaults.


Linux kernel before 2.6.18, when running on x86

before | kernel | Linux |

Linux kernel before 2.6.18, when running on x86_64 systems, does not properly save or restore EFLAGS during a context switch, which allows local users to cause a denial of service (crash) by causing SYSENTER to set an NT flag, which can trigger a crash on the IRET of the next task.


Multiple directory traversal vulnerabilities in

vulnerabilities | arbitrary | attackers | directory | traversal | Multiple | enomphp | remote | files | allow | read | via |

Multiple directory traversal vulnerabilities in enomphp 4.0 allow remote attackers to read arbitrary files via a .. (dot dot) in the dir parameter to (1) config.php, (2) ranklv_inside.php, (3) rankml_inside.php, and (4) admin/Restore/config.php.


pam_console does not properly restore ownership

pam_console | privileges | ownership | properly | multiple | console | devices | restore | certain | logged | which | might | allow | local | there | users | does | gain | into | user | logs | one | out | not |

pam_console does not properly restore ownership for certain console devices when there are multiple users logged into the console and one user logs out, which might allow local users to gain privileges.


Symantec Norton Ghost, Norton Save & Recovery,

BackupExec | LiveState | Recovery | Symantec | System | before | Norton | Ghost | Save |

Symantec Norton Ghost, Norton Save & Recovery, LiveState Recovery, and BackupExec System Recovery before Thursday, April 26, 2007, when remote backups of restore point images are configured, encrypt network share credentials with a key formed by a hash of the username, which allows local users to obtain the credentials by calculating the key.


Symantec Norton Ghost, Norton Save & Recovery,

BackupExec | LiveState | Recovery | Symantec | System | before | Norton | Ghost | Save |

Symantec Norton Ghost, Norton Save & Recovery, LiveState Recovery, and BackupExec System Recovery before Thursday, April 26, 2007, when remote backups of restore points images are configured, uses weak permissions (world readable) for a configuration file with network share credentials, which allows local users to obtain the credentials by reading the file.


Software vulnerabilities results 1 to 20 of 28     
Page: 12