selected software vulnerabilities
vulnerabilities.aspcode.net
Searching selected software vulnerabilities
Snort 1.6, when running in straight ASCII packe
attackers
|
straight
|
selected
|
service
|
decoded
|
logging
|
running
|
allows
|
denial
|
remote
|
packet
|
cause
|
Snort
|
ASCII
|
mode
|
IDS
|
Snort 1.6, when running in straight ASCII packet logging mode or IDS mode with straight decoded ASCII packet logging selected, allows remote attackers to cause a denial of service (crash) by sending non-IP protocols that Snort does not know about, as demonstrated by an nmap protocol scan.
Cross-site scripting (XSS) vulnerability in ftp
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in ftp.htt in Internet Explorer 5.5 and 6.0, when running on Windows 2000 with "Enable folder view for FTP sites" and "Enable Web content in folders" selected, allows remote attackers to inject arbitrary web script or HTML via the hostname portion of an FTP URL.
Utility Manager in Windows 2000 launches winhlp
Windows
|
Manager
|
Utility
|
Utility Manager in Windows 2000 launches winhlp32.exe while Utility Manager is running with raised privileges, which allows local users to gain system privileges via a "Shatter" style attack that sends a Windows message to cause Utility Manager to launch winhlp32 by directly accessing the context sensitive help and bypassing the GUI, then sending another message to winhlp32 in order to open a user-selected file, a different vulnerability than CVE-2003-0908.
Dreamweaver MX, when "Using Driver On Testing S
authentication
|
mmhttpdbasp
|
information
|
Dreamweaver
|
sensitive
|
attackers
|
arbitrary
|
commands
|
possibly
|
selected
|
require
|
request
|
execute
|
Testing
|
Server"
|
uploads
|
script
|
obtain
|
"Using
|
Driver
|
direct
|
allows
|
remote
|
which
|
site
|
does
|
via
|
not
|
web
|
DSN
|
SQL
|
but
|
Dreamweaver MX, when "Using Driver On Testing Server" or "Using DSN on Testing Server" is selected, uploads the mmhttpdb.asp script to the web site but does not require authentication, which allows remote attackers to obtain sensitive information and possibly execute arbitrary SQL commands via a direct request to mmhttpdb.asp.
The Quick Buttons feature in Konversation 0.15
Konversation
|
feature
|
Buttons
|
Quick
|
The Quick Buttons feature in Konversation 0.15 allows remote attackers to execute certain IRC commands via a channel name containing "%" variables, which are recursively expanded by the Server::parseWildcards function when the Part Button is selected.
The file download dialog in Mozilla Firefox 0.1
download
|
Mozilla
|
Firefox
|
dialog
|
file
|
The file download dialog in Mozilla Firefox 0.10.1 and 1.0 for Windows uses the Content-Type HTTP header to determine the file type, but saves the original file extension when "Save to Disk" is selected, which allows remote attackers to hide the real file types of downloaded files.
Cross-site scripting (XSS) vulnerability in Cut
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in CuteNews 1.3.6 allows remote attackers to inject arbitrary web script or HTML via (1) the lastusername parameter to index.php or (2) selected_search_arch parameter to search.php.
The System Profiler in Mac OS X 10.4.2 labels a
Profiler
|
System
|
Mac
|
The System Profiler in Mac OS X 10.4.2 labels a Bluetooth device with "Requires Authentication: No" even when the user has selected the "Require pairing for security" option, which could confuse users about which setting is valid.
Directory traversal vulnerability in admin/defa
admin/defaultsphp
|
vulnerability
|
Directory
|
traversal
|
PHPlist
|
Directory traversal vulnerability in admin/defaults.php in PHPlist 2.10.1 and earlier allows remote attackers to access arbitrary files via a .. (dot dot) in the selected%5B%5D parameter in an HTTP POST request.
Cross-site scripting (XSS) vulnerability in sea
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in search.php in FarsiNews 2.5.3 Pro and earlier allows remote attackers to inject arbitrary web script or HTML via the selected_search_arch parameter.
SSH Tectia Management Agent 2.1.2 allows local
Management
|
Tectia
|
Agent
|
SSH
|
SSH Tectia Management Agent 2.1.2 allows local users to gain root privileges by running a program called sshd, which is obtained from a process listing when the "Restart" action is selected from the Management server GUI, which causes the agent to locate the pathname of the user's program and restart it with root privileges.
Multiple unspecified vulnerabilities in Joomla!
vulnerabilities
|
unspecified
|
Multiple
|
before
|
Joomla
|
Multiple unspecified vulnerabilities in Joomla! before 1.0.11, related to "Injection Flaws," allow attackers to have an unknown impact via (1) globals.php, which uses include_once() instead of require(); (2) the $options variable; (3) Admin Upload Image; (4) ->load(); (5) content submissions when frontpage is selected; (6) the mosPageNav constructor; (7) saveOrder functions; (8) the absence of "exploit blocking rules" in htaccess; and (9) the ACL.
Multiple cross-site scripting (XSS) vulnerabili
cross-site
|
scripting
|
Multiple
|
Multiple cross-site scripting (XSS) vulnerabilities in osCommerce 3.0a3 allow remote attackers to inject arbitrary web script or HTML via the (1) set parameter to admin/modules.php, the (2) selected_box parameter to definitiva/admin/customers.php, the (3) lID parameter to admin/languages_definitions.php, or the (4) pID parameter to admin/products.php.
Multiple cross-site scripting (XSS) vulnerabili
cross-site
|
scripting
|
Multiple
|
Multiple cross-site scripting (XSS) vulnerabilities in Uebimiau Webmail allow remote attackers to inject arbitrary web script or HTML via (1) the PATH_INFO to redirect.php or (2) the selected_theme parameter to demo/pop3/error.php.
Uebimiau Webmail allows remote attackers to obt
demo/pop3/errorphp
|
information
|
attackers
|
sensitive
|
Uebimiau
|
request
|
invalid
|
Webmail
|
obtain
|
remote
|
allows
|
value
|
via
|
Uebimiau Webmail allows remote attackers to obtain sensitive information via a request to demo/pop3/error.php with an invalid value of the (1) smarty or (2) selected_theme parameter, which reveals the path in various error messages.
Directory traversal vulnerability in demo/pop3/
demo/pop3/errorphp
|
vulnerability
|
directories
|
existence
|
determine
|
attackers
|
traversal
|
Directory
|
arbitrary
|
Uebimiau
|
pathname
|
absolute
|
Webmail
|
allows
|
remote
|
via
|
Directory traversal vulnerability in demo/pop3/error.php in Uebimiau Webmail allows remote attackers to determine the existence of arbitrary directories via an absolute pathname and .. (dot dot) in the selected_theme parameter.
** DISPUTED ** Guidance Software EnCase allows
user-assisted
|
attackers
|
DISPUTED
|
Guidance
|
Software
|
service
|
denial
|
allows
|
EnCase
|
remote
|
cause
|
via
|
** DISPUTED ** Guidance Software EnCase allows user-assisted remote attackers to cause a denial of service via (1) a corrupted Microsoft Exchange database, which triggers an application crash when many options are selected; (2) a corrupted NTFS filesystem, which causes the application to report "memory allocation errors;" or (3) deeply nested directories, which trigger an application crash during an Expand All action. NOTE: the vendor disputes the significance of these vectors because the user can select fewer options, there is no operational impact, or the user can do less expansion.
Software vulnerabilities results 1 to 18 of 18
Page:
1