returned software vulnerabilities
vulnerabilities.aspcode.net
Searching returned software vulnerabilities
Variant of the "IIS Cross-Site Scripting" vulne
vulnerability
|
Scripting"
|
originally
|
Cross-Site
|
discussed
|
Variant
|
"IIS
|
Variant of the "IIS Cross-Site Scripting" vulnerability as originally discussed in MS:MS00-060 (CVE-2000-0746) allows a malicious web site operator to embed scripts in a link to a trusted site, which are returned without quoting in an error message back to the client. The client then executes those scripts in the same context as the trusted site.
The line printer daemon (lpd) in the lpr packag
printer
|
daemon
|
line
|
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates by comparing the reverse-resolved hostname of the local machine to the hostname of the print server as returned by gethostname, which allows remote attackers to bypass intended access controls by modifying the DNS for the attacking IP.
Microsoft Word and Excel allow remote attackers
demonstrated
|
information
|
sensitive
|
attackers
|
Microsoft
|
document
|
returned
|
attacker
|
certain
|
insert
|
remote
|
codes
|
steal
|
allow
|
Excel
|
field
|
using
|
Word
|
via
|
Microsoft Word and Excel allow remote attackers to steal sensitive information via certain field codes that insert the information when the document is returned to the attacker, as demonstrated in Word using (1) INCLUDETEXT or (2) INCLUDEPICTURE, aka "Flaw in Word Fields and Excel External Updates Could Lead to Information Disclosure."
Buffer overflows in EPIC IRC Client (EPIC4) 1.0
overflows
|
Client
|
Buffer
|
EPIC
|
IRC
|
Buffer overflows in EPIC IRC Client (EPIC4) 1.0.1 allows remote malicious IRC servers to cause a denial of service (crash) and possibly execute arbitrary code via long replies that are not properly handled by the (1) userhost_cmd_returned function, or (2) Statusbar capability.
Internet Explorer 5.01 SP3 through 6.0 SP1 does
Explorer
|
Internet
|
Internet Explorer 5.01 SP3 through 6.0 SP1 does not properly determine object types that are returned by web servers, which could allow remote attackers to execute arbitrary code via an object tag with a data parameter to a malicious file hosted on a server that returns an unsafe Content-Type, aka the "Object Type" vulnerability.
SNMPc 6.0.8 and earlier performs authentication
SNMPc
|
SNMPc 6.0.8 and earlier performs authentication to the server on the client side, which allows remote attackers to gain privileges by decrypting the password that is returned by the server.
Internet Explorer 5.01 through 6.0 does not pro
Explorer
|
Internet
|
Internet Explorer 5.01 through 6.0 does not properly handle object tags returned from a Web server during XML data binding, which allows remote attackers to execute arbitrary code via an HTML e-mail message or web page.
Multiple race conditions in the handling of O_D
conditions
|
handling
|
O_DIRECT
|
Multiple
|
version
|
kernel
|
prior
|
Linux
|
race
|
Multiple race conditions in the handling of O_DIRECT in Linux kernel prior to version 2.4.22 could cause stale data to be returned from the disk when handling sparse files, or cause incorrect data to be returned when a file is truncated as it is being read, which might allow local users to obtain sensitive data that was originally owned by other users, a different vulnerability than CVE-2003-0018.
CVS 1.11.x before 1.11.17, and 1.12.x before 1.
before
|
111x
|
CVS
|
CVS 1.11.x before 1.11.17, and 1.12.x before 1.12.9, allows remote attackers to determine the existence of arbitrary files and directories via the -X command for an alternate history file, which causes different error messages to be returned.
Directory traversal vulnerability in Microsoft
vulnerability
|
Microsoft
|
Directory
|
traversal
|
Explorer
|
Internet
|
Directory traversal vulnerability in Microsoft Internet Explorer 5.01, 5.5, and 6.0 allows remote malicious FTP servers to overwrite arbitrary files via .. (dot dot) sequences in filenames returned from a LIST command.
Directory traversal vulnerability in gftp befor
vulnerability
|
Directory
|
traversal
|
before
|
gftp
|
Directory traversal vulnerability in gftp before 2.0.18 for GTK+ allows remote malicious FTP servers to read arbitrary files via .. (dot dot) sequences in filenames returned from a LIST command.
class.xmail.php in PhpXmail 0.7 through 1.1 doe
authentication
|
classxmailphp
|
unauthorized
|
attackers
|
passwords
|
prevents
|
PhpXmail
|
returned
|
properly
|
message
|
through
|
allows
|
remote
|
bypass
|
access
|
handle
|
which
|
large
|
being
|
error
|
does
|
gain
|
not
|
class.xmail.php in PhpXmail 0.7 through 1.1 does not properly handle large passwords, which prevents an error message from being returned and allows remote attackers to bypass authentication and gain unauthorized access.
Buffer overflow in the environment variable sub
"$VAR/EVAR=arg"
|
substitution
|
environment
|
LD_PRELOAD
|
arguments
|
variables
|
arbitrary
|
pathname
|
returned
|
variable
|
overflow
|
function
|
appended
|
portion
|
getenv
|
allows
|
Buffer
|
inject
|
which
|
cause
|
mainc
|
local
|
users
|
17-14
|
call
|
code
|
such
|
EVAR
|
form
|
OSH
|
via
|
Buffer overflow in the environment variable substitution code in main.c in OSH 1.7-14 allows local users to inject arbitrary environment variables, such as LD_PRELOAD, via pathname arguments of the form "$VAR/EVAR=arg", which cause the EVAR portion to be appended to a buffer returned by a getenv function call.
setting.php in Innovative CMS (ICMS, formerly I
Innovative
|
settingphp
|
CMS
|
setting.php in Innovative CMS (ICMS, formerly Imoel-CMS) contains username and password information in cleartext, which might allow attackers to obtain this information via a direct request to setting.php. NOTE: on a properly configured web server, it would be expected that a .php file would be processsed before content is returned to the user, so this might not be a vulnerability.
Cross-site scripting (XSS) vulnerability in Edg
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in Edgewall Trac 0.9, 0.9.1, and 0.9.2 allows remote attackers to inject arbitrary web script or HTML via the URL, which is not properly sanitized before it is returned in an error page.
Multiple cross-site scripting (XSS) vulnerabili
cross-site
|
scripting
|
Multiple
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in ViHor Design allow remote attackers to inject arbitrary web script or HTML via (1) a remote URL in the page parameter, which is processed by an fopen call, or (2) HTML or script in the page parameter, which is returned to the client in an error message for the failed fopen call.
Cross-site scripting (XSS) vulnerability in Atl
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in Atlassian JIRA 3.6.2-#156 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in a direct request to secure/ConfigureReleaseNote.jspa, which are not sanitized before being returned in an error page.
Cross-site scripting (XSS) vulnerability in Web
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in WebScarab before Tuesday, July 18, 2006-1904, when used with Microsoft Internet Explorer 6 SP2 or Konqueror 3.5.3, allows remote attackers to inject arbitrary web script or HTML via the URL, which is not sanitized before being returned in an error message when WebScarab is not able to access the URL.
BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1
attackers
|
service
|
allows
|
remote
|
denial
|
926-P1
|
before
|
932-P1
|
cause
|
BIND
|
93x
|
BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via certain SIG queries, which cause an assertion failure when multiple RRsets are returned.
Cross-site scripting (XSS) vulnerability in log
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in logon.aspx in Immediacy CMS (Immediacy .NET CMS) 5.2 allows remote attackers to inject arbitrary web script or HTML via the lang parameter, which is returned to the client in a lang cookie.
Software vulnerabilities results 1 to 20 of 28
Page:
1
2
►