Searching scanner software vulnerabilities

install.iss installation script for Internet Se

installation | installiss | Internet | Security | Scanner | script |

install.iss installation script for Internet Security Scanner (ISS) for Linux, version 5.3, allows local users to change the permissions of arbitrary files via a symlink attack on a temporary file.


Marconi ForeThought 7.1 allows remote attackers

ForeThought | attackers | sessions | service | unusual | causing | Marconi | telnet | allows | locked | denial | remote | input | cause | both | via |

Marconi ForeThought 7.1 allows remote attackers to cause a denial of service by causing both telnet sessions to be locked via unusual input (e.g., from a port scanner), which prevents others from logging into the device.


The default configuration of Xerox DocuTech 611

configuration | DocuTech | default | Xerox |

The default configuration of Xerox DocuTech 6110 and DocuTech 6115 allows remote attackers to connect to the web server and (1) submit print jobs directly into the "print now" queue or (2) read the scanner job history.


Virgil CGI Scanner 0.9 allows remote attackers

attackers | arbitrary | commands | execute | Scanner | Virgil | allows | remote | via | CGI |

Virgil CGI Scanner 0.9 allows remote attackers to execute arbitrary commands via the (1) tar (TARGET) or (2) zielport (ZIELPORT) parameters.


Efficient Networks 5861 DSL router, when runnin

Efficient | Networks |

Efficient Networks 5861 DSL router, when running firmware 5.3.80 configured to block incoming TCP SYN, packets allows remote attackers to cause a denial of service (crash) via a flood of TCP SYN packets to the WAN interface using a port scanner such as nmap.


The Content Scanner Server in F-Secure Anti-Vir

Anti-Virus | Microsoft | Exchange | F-Secure | Content | Scanner | Server |

The Content Scanner Server in F-Secure Anti-Virus for Microsoft Exchange 6.21 and earlier, F-Secure Anti-Virus for Microsoft Exchange 6.01 and earlier, and F-Secure Internet Gatekeeper 6.32 and earlier allow remote attackers to cause a denial of service (service crash due to unhandled exception) via a certain malformed packet.


lnss.exe in GFI Languard Network Security Scann

administrators | administrator | credentials | plaintext | username | password | Security | Languard | lnssexe | Scanner | Network | obtain | domain | memory | stores | which | allow | local | could | GFI |

lnss.exe in GFI Languard Network Security Scanner 5.0 stores the username and password in memory in plaintext, which could allow local administrators to obtain domain administrator credentials.


Heap-based buffer overflow in Kaspersky Anti-Vi

Anti-Virus | Heap-based | Kaspersky | Personal | overflow | Engine | buffer | used |

Heap-based buffer overflow in Kaspersky Anti-Virus Engine, as used in Kaspersky Personal 5.0.227, Anti-Virus On-Demand Scanner for Linux 5.0.5, and F-Secure Anti-Virus for Linux 4.50 allows remote attackers to execute arbitrary code via a crafted CHM file.


The on-access scanner for McAfee Virex 7.7 for

circumstances | demonstrated | protection | malicious | Macintosh | on-access | attackers | accessed | activate | prevent | browser | content | scanner | remote | allows | McAfee | bypass | virus | might | EICAR | using | Virex | which | being | saved | test | some | file | web | not |

The on-access scanner for McAfee Virex 7.7 for Macintosh, in some circumstances, might not activate when malicious content is accessed from the web browser, and might not prevent the content from being saved, which allows remote attackers to bypass virus protection, as demonstrated using the EICAR test file.


Heap-based buffer overflow in SpIDer for Dr.Web

Heap-based | overflow | Scanner | SpIDer | buffer | Linux | DrWeb |

Heap-based buffer overflow in SpIDer for Dr.Web Scanner for Linux 4.33, and possibly earlier versions, allows remote attackers to execute arbitrary code via an LHA archive with an extended header that contains a long directory name.


Multiple unspecified vulnerabilities in Paister

vulnerabilities | unspecified | Paisterist | Multiple | Scanner | Simple | HTTP |

Multiple unspecified vulnerabilities in Paisterist Simple HTTP Scanner (sHTTPScanner) before 0.4 have unknown impact and attack vectors.


Multiple unspecified vulnerabilities in Paister

vulnerabilities | unspecified | Paisterist | Multiple | Scanner | Simple | HTTP |

Multiple unspecified vulnerabilities in Paisterist Simple HTTP Scanner (sHTTPScanner) before 0.2 have unknown impact and attack vectors.


Multiple unspecified vulnerabilities in Paister

vulnerabilities | unspecified | Paisterist | Multiple | Scanner | Simple | HTTP |

Multiple unspecified vulnerabilities in Paisterist Simple HTTP Scanner (sHTTPScanner) before 0.3 have unknown impact and attack vectors.


Acunetix Web Vulnerability Scanner (WVS) 4.0 Bu

Vulnerability | Acunetix | Scanner | Web |

Acunetix Web Vulnerability Scanner (WVS) 4.0 Build Monday, July 17, 2006 and earlier allows remote attackers to cause a denial of service (application crash) via multiple HTTP requests containing invalid Content-Length values.


Heap-based buffer overflow in the arj.ppl modul

Workstations | Maintenance | Anti-Virus | Heap-based | Kaspersky | overflow | Security | Internet | OnDemand | Servers | Scanner | before | module | arjppl | buffer | build | Pack | File |

Heap-based buffer overflow in the arj.ppl module in the OnDemand Scanner in Kaspersky Anti-Virus, Anti-Virus for Workstations, and Anti-Virus for File Servers 6.0, and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows remote attackers to execute arbitrary code via crafted ARJ archives.


Buffer overflow in the On-Access Scanner in McA

user-assisted | containing | Enterprise | multi-byte | attackers | arbitrary | On-Access | VirusScan | overflow | filename | Scanner | execute | remote | before | McAfee | Buffer | allows | Patch | long | code | 80i | via |

Buffer overflow in the On-Access Scanner in McAfee VirusScan Enterprise before 8.0i Patch 12 allows user-assisted remote attackers to execute arbitrary code via a long filename containing multi-byte (Unicode) characters.


Cross-site scripting (XSS) vulnerability in the

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in the Windows GUI in Nessus Vulnerability Scanner before 3.0.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.


Unspecified vulnerability in the Real-time scan

vulnerability | Unspecified | Real-time | scanner |

Unspecified vulnerability in the Real-time scanner (RTVScan) component in Symantec AntiVirus Corporate Edition 9.0 through 10.1 and Client Security 2.0 through 3.1, when the Notification Message window is enabled, allows local users to gain privileges via crafted code.


Directory traversal vulnerability in a certain

vulnerability | Directory | traversal | control | Scanner | certain | ActiveX | Nessus |

Directory traversal vulnerability in a certain ActiveX control in Nessus Vulnerability Scanner 3.0.6 allows remote attackers to delete arbitrary files via a .. (dot dot) in the argument to the deleteReport method, probably related to the SCANCTRL.ScanCtrlCtrl.1 ActiveX control in scan.dll.


The SCANCTRL.ScanCtrlCtrl.1 ActiveX control in

SCANCTRLScanCtrlCtrl1 | Vulnerability | Scanner | scandll | ActiveX | control | Nessus |

The SCANCTRL.ScanCtrlCtrl.1 ActiveX control in scan.dll in Nessus Vulnerability Scanner 3.0.6 allows remote attackers to delete arbitrary files via unspecified vectors involving the deleteNessusRC method, probably a directory traversal vulnerability.


Software vulnerabilities results 1 to 20 of 25     
Page: 12