Searching run software vulnerabilities

NBase switches NH208 and NH215 run a TFTP serve

attackers | switches | software | service | updates | remote | denial | switch | modify | server | allows | cause | NH215 | NH208 | NBase | which | send | TFTP | run |

NBase switches NH208 and NH215 run a TFTP server which allows remote attackers to send software updates to modify the switch or cause a denial of service (crash) by guessing the target filenames, which have default names.


ZAK in Appstation mode allows users to bypass t

applications | Appstation | starting | Explorer | allowed | policy | allows | Office | bypass | apps" | users | mode | "Run | only | ZAK |

ZAK in Appstation mode allows users to bypass the "Run only allowed apps" policy by starting Explorer from Office 97 applications (such as Word), installing software into the TEMP directory, and changing the name to that for an allowed application, such as Winword.exe.


PowerPoint 95 and 97 allows remote attackers to

automatically | application | PowerPoint | prompting | attackers | Internet | possibly | document | browsers | Explorer | through | without | allows | remote | opened | cause | slide | such | user | show | run |

PowerPoint 95 and 97 allows remote attackers to cause an application to be run automatically without prompting the user, possibly through the slide show, when the document is opened in browsers such as Internet Explorer.


The faxrunq and faxrunqd in the mgetty package

/var/spool/fax/outgoing/last_run | arbitrary | faxrunqd | creates | faxrunq | package | symlink | attack | modify | mgetty | allows | create | target | which | users | local | files | file | via |

The faxrunq and faxrunqd in the mgetty package allows local users to create or modify arbitrary files via a symlink attack which creates a symlink in from /var/spool/fax/outgoing/.last_run to the target file.


fcheck prior to 2.57.59 calls the file signatur

fcheck | prior |

fcheck prior to 2.57.59 calls the file signature checking program insecurely, which can allow a local user to run arbitrary commands via a file name that contains shell metacharacters.


Buffer overflow in Computalynx CMail POP3 mail

Computalynx | overflow | server | Buffer | CMail | mail | POP3 |

Buffer overflow in Computalynx CMail POP3 mail server 2.4.9 allows remote attackers to run arbitrary code via a long HELO command.


Outlook Express 6.00 allows remote attackers to

Express | Outlook |

Outlook Express 6.00 allows remote attackers to execute arbitrary script by embedding SCRIPT tags in a message whose MIME content type is text/plain, contrary to the expected behavior that text/plain messages will not run script.


Buffer overflows in gzip 1.3x, 1.2.4, and other

overflows | Buffer | gzip | 13x |

Buffer overflows in gzip 1.3x, 1.2.4, and other versions might allow attackers to execute code via a long file name, possibly remotely if gzip is run on an FTP server.


Buffer overflow in the Profile Service of Micro

Microsoft | overflow | Commerce | Service | Profile | Server | Buffer |

Buffer overflow in the Profile Service of Microsoft Commerce Server 2000 allows remote attackers to cause the server to fail or run arbitrary code in the LocalSystem security context via an input field using an affected API.


The Connectables feature in Adobe PhotoDeluxe 3

Connectables | PhotoDeluxe | environment | privileges | CLASSPATH | directory | attackers | variable | prepends | applets | message | feature | remote | higher | allows | e-mail | Adobe | which | page | HTML | gain | run | web | via |

The Connectables feature in Adobe PhotoDeluxe 3.1 prepends the Adobe directory to the CLASSPATH environment variable, which allows applets to run with higher privileges and remote attackers to gain privileges via an HTML e-mail message or a web page.


run-mailcap in mime-support 3.22 and earlier al

mime-support | run-mailcap |

run-mailcap in mime-support 3.22 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files.


Unknown vulnerability in Sun Management Center

vulnerability | Management | Unknown | Center | Sun |

Unknown vulnerability in Sun Management Center (SunMC) 2.1.1, 3.0, and 3.0 Revenue Release (RR), when installed and run by root, allows local users to create or modify arbitrary files.


Roaring Penguin pppoe (rp-ppoe), if installed o

Penguin | Roaring | pppoe |

Roaring Penguin pppoe (rp-ppoe), if installed or configured to run setuid root contrary to its design, allows local users to overwrite arbitrary files. NOTE: the developer has publicly disputed the claim that this is a vulnerability because pppoe "is NOT designed to run setuid-root." Therefore this identifier applies *only* to those configurations and installations under which pppoe is run setuid root despite the developer's warnings.


Multiple vulnerabilities in the RLE (run length

vulnerabilities | Multiple | RLE |

Multiple vulnerabilities in the RLE (run length encoding) decoders for libtiff 3.6.1 and earlier, related to buffer overflows and integer overflows, allow remote attackers to execute arbitrary code via TIFF files.


Format string vulnerability in Speedtouch USB d

vulnerability | Speedtouch | before | driver | string | Format | USB |

Format string vulnerability in Speedtouch USB driver before 1.3.1 allows local users to execute arbitrary code via (1) modem_run, (2) pppoa2, or (3) pppoa3.


getmail 4.x before 4.2.0, when run as root, all

getmail | before |

getmail 4.x before 4.2.0, when run as root, allows local users to overwrite arbitrary files via a symlink attack on an mbox file.


getmail 4.x before 4.2.0, and other versions be

getmail | before |

getmail 4.x before 4.2.0, and other versions before 3.2.5, when run as root, allows local users to write files in arbitrary directories via a symlink attack on subdirectories in the maildir.


run-mozilla.sh in Thunderbird, with debugging e

run-mozillash | Thunderbird | arbitrary | overwrite | temporary | debugging | enabled | symlink | attack | allows | create | local | users | files | via |

run-mozilla.sh in Thunderbird, with debugging enabled, allows local users to create or overwrite arbitrary files via a symlink attack on temporary files.


Direct code injection vulnerability in Task Man

vulnerability | injection | Invision | Manager | Direct | Board | Power | code | Task |

Direct code injection vulnerability in Task Manager in Invision Power Board 2.0.1 allows limited remote attackers to execute arbitrary code by referencing the file in "Task PHP File To Run" field and selecting "Run Task Now".


Acer Notebook LunchApp.APlunch ActiveX control

LunchAppAPlunch | attackers | arbitrary | Notebook | commands | execute | ActiveX | control | calling | method | allows | remote | Acer | Run |

Acer Notebook LunchApp.APlunch ActiveX control allows remote attackers to execute arbitrary commands by calling the Run method.


Software vulnerabilities results 1 to 20 of 115     
Page: 123456