specify software vulnerabilities
vulnerabilities.aspcode.net
Searching specify software vulnerabilities
The "AEDebug" registry key is installed with in
automatically
|
permissions
|
installed
|
"AEDebug"
|
executed
|
debugger
|
registry
|
insecure
|
specify
|
Trojan
|
modify
|
system
|
allows
|
crash
|
local
|
which
|
Horse
|
users
|
key
|
The "AEDebug" registry key is installed with insecure permissions, which allows local users to modify the key to specify a Trojan Horse debugger which is automatically executed on a system crash.
Hotmail does not properly filter JavaScript cod
hexadecimal
|
JavaScript
|
attacker
|
properly
|
mailbox
|
specify
|
execute
|
Hotmail
|
remote
|
filter
|
allows
|
user's
|
using
|
codes
|
which
|
code
|
does
|
not
|
Hotmail does not properly filter JavaScript code from a user's mailbox, which allows a remote attacker to execute the code by using hexadecimal codes to specify the javascript: protocol, e.g. jAvascript.
Windows NT Autorun executes the autorun.inf fil
non-removable
|
autoruninf
|
attackers
|
alternate
|
executes
|
program
|
specify
|
Autorun
|
execute
|
Windows
|
access
|
allows
|
drive
|
users
|
other
|
media
|
which
|
local
|
file
|
Windows NT Autorun executes the autorun.inf file on non-removable media, which allows local attackers to specify an alternate program to execute when other users access a drive.
Tnef program in Linux systems allows remote att
decompressed
|
attachments
|
compressed
|
attackers
|
overwrite
|
arbitrary
|
absolute
|
encoded
|
systems
|
specify
|
program
|
allows
|
remote
|
output
|
names
|
Linux
|
files
|
which
|
Tnef
|
path
|
via
|
Tnef program in Linux systems allows remote attackers to overwrite arbitrary files via TNEF encoded compressed attachments which specify absolute path names for the decompressed output.
The line printer daemon (lpd) in the lpr packag
printer
|
daemon
|
line
|
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems allows local users to gain root privileges by causing sendmail to execute with arbitrary command line arguments, as demonstrated using the -C option to specify a configuration file.
GTK+ library allows local users to specify arbi
environmental
|
setuid/setgid
|
GTK_MODULES
|
privileges
|
arbitrary
|
variable
|
program
|
library
|
specify
|
modules
|
allows
|
allow
|
local
|
could
|
users
|
which
|
GTK+
|
used
|
gain
|
via
|
GTK+ library allows local users to specify arbitrary modules via the GTK_MODULES environmental variable, which could allow local users to gain privileges if GTK+ is used by a setuid/setgid program.
Windows Media Player (WMP) 8.00.00.4477, and po
Windows
|
Player
|
Media
|
Windows Media Player (WMP) 8.00.00.4477, and possibly other versions, automatically detects and executes .wmf and other content, even when the file's extension or content type does not specify .wmf, which could make it easier for attackers to conduct unauthorized activities via Trojan horse files containing .wmf content.
Unknown vulnerability in the login program on A
vulnerability
|
program
|
specify
|
Unknown
|
remote
|
before
|
login
|
users
|
could
|
allow
|
AIX
|
Unknown vulnerability in the login program on AIX before 4.0 could allow remote users to specify 100 or more environment variables when logging on, which exceeds the length of a certain string, possibly triggering a buffer overflow.
Clearswift MAILsweeper 4.x allows remote attack
MIME-Version
|
MAILsweeper
|
Clearswift
|
attachment
|
detection
|
processed
|
attackers
|
specify
|
clients
|
remote
|
header
|
allows
|
bypass
|
which
|
field
|
mail
|
some
|
does
|
via
|
not
|
Clearswift MAILsweeper 4.x allows remote attackers to bypass attachment detection via an attachment that does not specify a MIME-Version header field, which is processed by some mail clients.
Team Factor 1.25 and earlier allows remote atta
Factor
|
Team
|
Team Factor 1.25 and earlier allows remote attackers to cause a denial of service (crash) via a packet that uses a negative number to specify the size of the data block that follows, which causes Team Factor to read unallocated memory.
SecureCRT 4.0, 4.1, and possibly other versions
arbitrary
|
attackers
|
SecureCRT
|
versions
|
possibly
|
commands
|
execute
|
allows
|
remote
|
other
|
via
|
SecureCRT 4.0, 4.1, and possibly other versions, allows remote attackers to execute arbitrary commands via a telnet:// URL that uses the /F option to specify a configuration file on a samba share.
post_bug.cgi in Bugzilla 2.10 through 2.18, 2.1
post_bugcgi
|
Bugzilla
|
post_bug.cgi in Bugzilla 2.10 through 2.18, 2.19.1, and 2.19.2 allows users to "enter bugs into products that are closed for bug entry" by modifying the URL to specify the name of the product.
The xntpd ntp (ntpd) daemon before 4.2.0b, when
xntpd
|
ntp
|
The xntpd ntp (ntpd) daemon before 4.2.0b, when run with the -u option and using a string to specify the group, uses the group ID of the user instead of the group, which causes xntpd to run with different privileges than intended.
Cross-site scripting (XSS) vulnerability in add
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in add.php in DEV web management system 1.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) ENTER_ARTICLE_TITLE, (2) SPECIFY_ZONE, (3) ENTER_ARTICLE_HEADER, and (4) ENTER_ARTICLE_BODY indices in the language array parameter.
Buffer overflow in WinRAR 3.50 and earlier allo
overflow
|
WinRAR
|
Buffer
|
Buffer overflow in WinRAR 3.50 and earlier allows local users to execute arbitrary code via a long command-line argument. NOTE: because this program executes with the privileges of the invoking user, and because remote programs do not normally have the ability to specify a command-line argument for this program, there may not be a typical attack vector for the issue that crosses privilege boundaries. Therefore this may not be a vulnerability.
The ArrowPoint cookie functionality for Cisco 1
functionality
|
ArrowPoint
|
cookie
|
Cisco
|
The ArrowPoint cookie functionality for Cisco 11000 series Content Service Switches specifies an internal IP address if the administrator does not specify a string option, which allows remote attackers to obtain sensitive information.
ViewVC 1.0.2 and earlier does not specify a cha
ViewVC
|
ViewVC 1.0.2 and earlier does not specify a charset in its HTTP headers or HTML documents, which allows remote attackers to conduct cross-site scripting (XSS) attacks that inject arbitrary UTF-7 encoded JavaScript code via a view.
slocate 3.1 does not properly manage database e
directories
|
protected
|
properly
|
database
|
entries
|
specify
|
slocate
|
private
|
allows
|
manage
|
obtain
|
users
|
local
|
names
|
files
|
which
|
does
|
not
|
slocate 3.1 does not properly manage database entries that specify names of files in protected directories, which allows local users to obtain the names of private files. NOTE: another researcher reports that the issue is not present in slocate 2.7.
A regression error in tcp-wrappers 7.6.dbs-10 a
tcp-wrappers
|
restrictions
|
information
|
connection
|
regression
|
attackers
|
intended
|
76dbs-10
|
76dbs-11
|
service
|
specify
|
libwrap
|
server
|
bypass
|
remote
|
access
|
allow
|
error
|
might
|
uses
|
does
|
not
|
but
|
A regression error in tcp-wrappers 7.6.dbs-10 and 7.6.dbs-11 might allow remote attackers to bypass intended access restrictions when a service uses libwrap but does not specify server connection information.
The swap_char2b function in X.Org X Font Server
swap_char2b
|
function
|
Server
|
Font
|
XOrg
|
The swap_char2b function in X.Org X Font Server (xfs) before 1.0.5 allows context-dependent attackers to execute arbitrary code via (1) QueryXBitmaps and (2) QueryXExtents protocol requests with crafted size values that specify an arbitrary number of bytes to be swapped on the heap, which triggers heap corruption.
Software vulnerabilities results 1 to 20 of 22
Page:
1
2
►