system software vulnerabilities
vulnerabilities.aspcode.net
Searching system software vulnerabilities
php.cgi allows attackers to read any file on th
attackers
|
system
|
phpcgi
|
allows
|
file
|
read
|
any
|
php.cgi allows attackers to read any file on the system.
A system-critical NETBIOS/SMB share has inappro
system-critical
|
inappropriate
|
NETBIOS/SMB
|
control
|
access
|
share
|
has
|
A system-critical NETBIOS/SMB share has inappropriate access control.
The permissions for a system-critical NIS+ tabl
system-critical
|
permissions
|
table
|
NIS+
|
The permissions for a system-critical NIS+ table (e.g. passwd) are inappropriate.
A system is operating in "promiscuous" mode whi
"promiscuous"
|
operating
|
sniffing
|
perform
|
allows
|
system
|
packet
|
which
|
mode
|
A system is operating in "promiscuous" mode which allows it to perform packet sniffing.
NFS exports system-critical data to the world,
system-critical
|
password
|
exports
|
world
|
file
|
data
|
NFS
|
NFS exports system-critical data to the world, e.g. / or a password file.
A system-critical Unix file or directory has in
system-critical
|
inappropriate
|
permissions
|
directory
|
Unix
|
file
|
has
|
A system-critical Unix file or directory has inappropriate permissions.
A system-critical Windows NT file or directory
system-critical
|
inappropriate
|
permissions
|
directory
|
Windows
|
file
|
has
|
A system-critical Windows NT file or directory has inappropriate permissions.
The HKEY_LOCAL_MACHINE key in a Windows NT syst
HKEY_LOCAL_MACHINE
|
system-critical
|
inappropriate
|
permissions
|
Windows
|
system
|
key
|
has
|
The HKEY_LOCAL_MACHINE key in a Windows NT system has inappropriate, system-critical permissions.
The HKEY_CLASSES_ROOT key in a Windows NT syste
HKEY_CLASSES_ROOT
|
system-critical
|
inappropriate
|
permissions
|
Windows
|
system
|
key
|
has
|
The HKEY_CLASSES_ROOT key in a Windows NT system has inappropriate, system-critical permissions.
A WWW server is not running in a restricted fil
system-critical
|
restricted
|
allowing
|
through
|
running
|
server
|
access
|
chroot
|
system
|
data
|
file
|
thus
|
not
|
A WWW server is not running in a restricted file system, e.g. through a chroot, thus allowing access to system-critical data.
A system-critical Windows NT registry key has i
system-critical
|
inappropriate
|
permissions
|
registry
|
Windows
|
key
|
has
|
A system-critical Windows NT registry key has inappropriate permissions.
A system does not present an appropriate legal
appropriate
|
accessing
|
message
|
present
|
warning
|
system
|
legal
|
user
|
does
|
not
|
A system does not present an appropriate legal message or warning to a user who is accessing it.
A Windows NT system does not clear the system p
information
|
sensitive
|
shutdown
|
recorded
|
Windows
|
during
|
system
|
might
|
allow
|
which
|
clear
|
does
|
file
|
page
|
not
|
A Windows NT system does not clear the system page file during shutdown, which might allow sensitive information to be recorded.
A network intrusion detection system (IDS) does
detection
|
intrusion
|
network
|
system
|
A network intrusion detection system (IDS) does not verify the checksum on a packet.
A network intrusion detection system (IDS) does
detection
|
intrusion
|
network
|
system
|
A network intrusion detection system (IDS) does not properly reassemble fragmented packets.
A system-critical Windows NT registry key has a
system-critical
|
inappropriate
|
registry
|
Windows
|
value
|
key
|
has
|
A system-critical Windows NT registry key has an inappropriate value.
The pre-login mode in the System Administrator
Administrator
|
ConsoleServer
|
Lightwave
|
pre-login
|
interface
|
System
|
mode
|
The pre-login mode in the System Administrator interface of Lightwave ConsoleServer 3200 allows remote attackers to obtain sensitive information such as system status, configuration, and users.
McAfee VirusScan 4.5.1 does not drop SYSTEM pri
VirusScan
|
McAfee
|
McAfee VirusScan 4.5.1 does not drop SYSTEM privileges before allowing users to browse for files via the "System Scan" properties of the System Tray applet, which could allow local users to gain privileges.
The xattr file system code, as backported in Re
Enterprise
|
backported
|
properly
|
certain
|
systems
|
offsets
|
service
|
64-bit
|
allows
|
denial
|
system
|
handle
|
which
|
cause
|
xattr
|
users
|
local
|
Linux
|
code
|
does
|
file
|
Red
|
not
|
Hat
|
The xattr file system code, as backported in Red Hat Enterprise Linux 3 on 64-bit systems, does not properly handle certain offsets, which allows local users to cause a denial of service (system crash) via certain actions on an ext3 file system with extended attributes enabled.
Unspecified vulnerability in the pagedata subsy
vulnerability
|
Unspecified
|
subsystem
|
pagedata
|
process
|
system
|
file
|
Unspecified vulnerability in the pagedata subsystem of the process file system (/proc) in Solaris 8 through 10 allows local users to cause a denial of service (system hang or panic) via unknown attack vectors that cause cause the kmem_oversize arena to allocate a large amount of system memory that does not get freed.
Software vulnerabilities results 1 to 20 of 1075
Page:
1
2
3
4
5
...
54
►