starts software vulnerabilities
vulnerabilities.aspcode.net
Searching starts software vulnerabilities
The BAIR program does not properly restrict acc
modifying
|
properly
|
restrict
|
Internet
|
registry
|
Explorer
|
options
|
program
|
obtain
|
allows
|
starts
|
access
|
users
|
local
|
which
|
BAIR
|
does
|
menu
|
not
|
key
|
The BAIR program does not properly restrict access to the Internet Explorer Internet options menu, which allows local users to obtain access to the menu by modifying the registry key that starts BAIR.
The installation of Apple QuickTime / Darwin St
administration
|
administrator
|
installation
|
privileges
|
Assistant"
|
attackers
|
QuickTime
|
Streaming
|
password
|
remote
|
allows
|
before
|
Server
|
Darwin
|
"Setup
|
starts
|
Apple
|
gain
|
413f
|
real
|
page
|
set
|
The installation of Apple QuickTime / Darwin Streaming Server before 4.1.3f starts the administration server with a "Setup Assistant" page that allows remote attackers to set the administrator password and gain privileges before the real administrator.
Multiple cross-site scripting (XSS) vulnerabili
cross-site
|
scripting
|
Multiple
|
Multiple cross-site scripting (XSS) vulnerabilities in the primary and management web interfaces in Netegrity IdentityMinder Web Edition 5.6 allows remote attackers to execute script as other users via (1) script that starts with %00 in the numOfExpressions parameter or (2) the mobjtype parameter.
Cross-site scripting (XSS) vulnerability in nam
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in namazu.cgi for Namazu 2.0.13 and earlier allows remote attackers to inject arbitrary HTML and web script via a query that starts with a tab ("%09") character, which prevents the rest of the query from being properly sanitized.
radmin in eSeSIX Thintune thin clients running
Thintune
|
firmware
|
clients
|
running
|
eSeSIX
|
radmin
|
thin
|
radmin in eSeSIX Thintune thin clients running firmware 2.4.38 and earlier starts a process port 25072 that can be accessed with a default "jstwo" password, which allows remote attackers to gain access.
rdesktop 1.3.1 with xscreensaver 4.14, and poss
rdesktop
|
rdesktop 1.3.1 with xscreensaver 4.14, and possibly other versions, when running on Fedora and possibly other platforms, does not release the keyboard focus when xscreensaver starts, which causes the password to be entered into the active window when the user unlocks the screen.
Sophos Anti-Virus 3.93 does not check downloade
Anti-Virus
|
Sophos
|
Sophos Anti-Virus 3.93 does not check downloaded files for viruses when they have only been written, which creates a race condition and may allow remote attackers to bypass virus protection if the file is executed before the antivirus starts on system reboot.
Oracle Forms 4.5 through 10g starts form execut
executables
|
directories
|
referencing
|
uploading
|
arbitrary
|
attackers
|
malicious
|
executes
|
argument
|
absolute
|
pathname
|
execute
|
through
|
allows
|
System
|
Oracle
|
starts
|
using
|
which
|
Forms
|
them
|
form
|
user
|
code
|
file
|
10g
|
fmx
|
Oracle Forms 4.5 through 10g starts form executables from arbitrary directories and executes them as the Oracle or System user, which allows attackers to execute arbitrary code by uploading a malicious .fmx file and referencing it using an absolute pathname argument in the (1) form or (2) module parameters to f90servlet.
The aries.sys driver in Sony First4Internet XCP
First4Internet
|
activities
|
attackers
|
software
|
registry
|
ariessys
|
process
|
"$sys$"
|
driver
|
system
|
allows
|
starts
|
hides
|
which
|
uses
|
Sony
|
file
|
name
|
hide
|
DRM
|
XCP
|
key
|
any
|
The aries.sys driver in Sony First4Internet XCP DRM software hides any file, registry key, or process with a name that starts with "$sys$", which allows attackers to hide activities on a system that uses XCP.
Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonke
Firefox
|
Mozilla
|
before
|
Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to execute arbitrary code by changing certain properties of the window navigator object (window.navigator) that are accessed when Java starts up, which causes a crash that leads to code execution.
Software vulnerabilities results 1 to 11 of 11
Page:
1