restrictions software vulnerabilities
vulnerabilities.aspcode.net
Searching restrictions software vulnerabilities
Oracle Web Listener 2.1 allows remote attackers
restrictions
|
HTTP-encoded
|
attackers
|
replacing
|
character
|
Listener
|
access
|
allows
|
Oracle
|
bypass
|
remote
|
its
|
Web
|
URL
|
Oracle Web Listener 2.1 allows remote attackers to bypass access restrictions by replacing a character in the URL with its HTTP-encoded (hex) equivalent.
surfCONTROL SuperScout does not properly asign
surfCONTROL
|
SuperScout
|
properly
|
category
|
asign
|
sites
|
does
|
not
|
web
|
surfCONTROL SuperScout does not properly asign a category to web sites with a . (dot) at the end, which may allow users to bypass web access restrictions.
FileMaker Pro 5 Web Companion allows remote att
restrictions
|
capabilities
|
Field-Level
|
publishing
|
attackers
|
Companion
|
FileMaker
|
database
|
security
|
remote
|
bypass
|
allows
|
email
|
XML
|
Web
|
Pro
|
via
|
FileMaker Pro 5 Web Companion allows remote attackers to bypass Field-Level database security restrictions via the XML publishing or email capabilities.
24Link 1.06 web server allows remote attackers
24Link
|
24Link 1.06 web server allows remote attackers to bypass access restrictions by prepending strings such as "/+/" or "/." to the HTTP GET request.
FoolProof 3.9 allows local users to bypass prog
restrictions
|
downloading
|
executables
|
restricted
|
execution
|
FoolProof
|
renaming
|
another
|
program
|
source
|
allows
|
bypass
|
users
|
local
|
them
|
FoolProof 3.9 allows local users to bypass program execution restrictions by downloading the restricted executables from another source and renaming them.
Check Point VPN-1/FireWall-1 4.1 SP2 with Fastm
VPN-1/FireWall-1
|
restrictions
|
fragmented
|
malformed
|
attackers
|
Fastmode
|
packets
|
enabled
|
access
|
bypass
|
allows
|
remote
|
Point
|
Check
|
via
|
SP2
|
Check Point VPN-1/FireWall-1 4.1 SP2 with Fastmode enabled allows remote attackers to bypass access restrictions via malformed, fragmented packets.
NetOp School 1.5 allows local users to bypass a
administration
|
restrictions
|
starting
|
version
|
student
|
logging
|
closing
|
School
|
allows
|
bypass
|
access
|
users
|
local
|
NetOp
|
into
|
then
|
NetOp School 1.5 allows local users to bypass access restrictions on the administration version by logging into the student version, closing the student version, then starting the administration version.
Falcon web server 2.0.0.1021 and earlier allows
server
|
Falcon
|
web
|
Falcon web server 2.0.0.1021 and earlier allows remote attackers to bypass access restrictions for protected files via a URL whose directory portion ends in a . (dot).
BlackICE Agent 3.1.eal does not always reactiva
restrictions
|
reactivate
|
attackers
|
BlackICE
|
intended
|
firewall
|
standby
|
system
|
bypass
|
always
|
remote
|
users
|
local
|
after
|
31eal
|
Agent
|
could
|
allow
|
which
|
does
|
not
|
BlackICE Agent 3.1.eal does not always reactivate after a system standby, which could allow remote attackers and local users to bypass intended firewall restrictions.
NETGEAR FM114P allows remote attackers to bypas
restrictions
|
hostnmame
|
attackers
|
NETGEAR
|
address
|
instead
|
access
|
FM114P
|
allows
|
bypass
|
remote
|
sites
|
uses
|
web
|
via
|
URL
|
NETGEAR FM114P allows remote attackers to bypass access restrictions for web sites via a URL that uses the the IP address instead of the hostnmame.
Finjan Software SurfinGate 6.0 and 6.0 1 allows
restrictions
|
SurfinGate
|
attackers
|
hostname
|
Software
|
instead
|
address
|
access
|
allows
|
remote
|
Finjan
|
bypass
|
URL
|
via
|
Finjan Software SurfinGate 6.0 and 6.0 1 allows remote attackers to bypass URL access restrictions via a URL with an IP address instead of a hostname.
Unknown vulnerability in NFS for SGI IRIX 6.5.2
vulnerability
|
Unknown
|
IRIX
|
SGI
|
NFS
|
Unknown vulnerability in NFS for SGI IRIX 6.5.21 and earlier may allow an NFS client to bypass read-only restrictions.
Internet Explorer 5.01 through 6 SP1 allows rem
Explorer
|
Internet
|
Internet Explorer 5.01 through 6 SP1 allows remote attackers to bypass zone restrictions and read arbitrary files via an XML object.
Unknown vulnerability in the server login for V
VisualShapers
|
vulnerability
|
ezContents
|
Unknown
|
server
|
login
|
Unknown vulnerability in the server login for VisualShapers ezContents 2.02 and earlier allows remote attackers to bypass access restrictions and gain access to restricted functions.
XDM in XFree86 opens a chooserFd TCP socket eve
DisplayManagerrequestPort
|
restrictions
|
violation
|
attackers
|
chooserFd
|
intended
|
XFree86
|
connect
|
remote
|
socket
|
allow
|
opens
|
which
|
could
|
port
|
even
|
XDM
|
TCP
|
XDM in XFree86 opens a chooserFd TCP socket even when DisplayManager.requestPort is 0, which could allow remote attackers to connect to the port, in violation of the intended restrictions.
Unknown vulnerability in Citrix MetaFrame Confe
vulnerability
|
Conferencing
|
restrictions
|
conference
|
organizer
|
MetaFrame
|
keyboard
|
Unknown
|
members
|
Manager
|
control
|
allows
|
Citrix
|
bypass
|
mouse
|
Unknown vulnerability in Citrix MetaFrame Conferencing Manager 3.0 allows conference members to bypass organizer restrictions to control the keyboard and mouse.
Almond Classifieds does not properly verify the
restrictions
|
Classifieds
|
attackers
|
password
|
properly
|
bypass
|
access
|
Almond
|
allows
|
verify
|
which
|
does
|
not
|
Almond Classifieds does not properly verify the password, which allows attackers to bypass access restrictions.
The build process for ypserv in FreeBSD 5.3 up
/var/yp/securenets
|
accidentally
|
restrictions
|
attackers
|
disables
|
intended
|
process
|
FreeBSD
|
allows
|
remote
|
ypserv
|
access
|
bypass
|
using
|
build
|
which
|
file
|
The build process for ypserv in FreeBSD 5.3 up to 6.1 accidentally disables access restrictions when using the /var/yp/securenets file, which allows remote attackers to bypass intended access restrictions.
Syworks SafeNET allows local users to bypass re
restrictions
|
consumption
|
policydat
|
resource
|
network
|
editing
|
Syworks
|
SafeNET
|
allows
|
bypass
|
users
|
local
|
file
|
Syworks SafeNET allows local users to bypass restrictions on network resource consumption by editing the policy.dat file.
PHP 4 before 4.4.5 and PHP 5 before 5.2.1, when
before
|
PHP
|
PHP 4 before 4.4.5 and PHP 5 before 5.2.1, when using an empty session save path (session.save_path), uses the TMPDIR default after checking the restrictions, which allows local users to bypass open_basedir restrictions.
Software vulnerabilities results 1 to 20 of 253
Page:
1
2
3
4
5
...
13
►