tool software vulnerabilities
vulnerabilities.aspcode.net
Searching tool software vulnerabilities
A remote attacker can sometimes identify the op
sometimes
|
operating
|
identify
|
attacker
|
packets
|
reacts
|
system
|
remote
|
queso
|
using
|
based
|
tool
|
nmap
|
such
|
some
|
ICMP
|
host
|
can
|
A remote attacker can sometimes identify the operating system of a host based on how it reacts to some IP or ICMP packets, using a tool such as nmap or queso.
IBM WebSphere ikeyman tool uses weak encryption
connections
|
encryption
|
WebSphere
|
password
|
database
|
ikeyman
|
store
|
tool
|
used
|
weak
|
uses
|
IBM
|
SSL
|
key
|
IBM WebSphere ikeyman tool uses weak encryption to store a password for a key database that is used for SSL connections.
The Razor configuration management tool uses we
configuration
|
encryption
|
privileges
|
management
|
password
|
allows
|
local
|
which
|
users
|
Razor
|
gain
|
uses
|
weak
|
file
|
tool
|
its
|
The Razor configuration management tool uses weak encryption for its password file, which allows local users to gain privileges.
Buffer overflows in pgxconfig in the Raptor GFX
configuration
|
privileges
|
pgxconfig
|
overflows
|
command
|
options
|
Buffer
|
Raptor
|
users
|
allow
|
local
|
tool
|
line
|
gain
|
GFX
|
via
|
Buffer overflows in pgxconfig in the Raptor GFX configuration tool allow local users to gain privileges via command line options.
Support Tools Manager (STM) A.22.00 for HP-UX a
Manager
|
Support
|
Tools
|
Support Tools Manager (STM) A.22.00 for HP-UX allows local users to overwrite arbitrary files via a symlink attack on the tool_stat.txt log file.
network_query.php in Network Query Tool 1.0 all
network_queryphp
|
metacharacters
|
arbitrary
|
attackers
|
parameter
|
commands
|
execute
|
Network
|
remote
|
target
|
allows
|
Query
|
shell
|
Tool
|
via
|
network_query.php in Network Query Tool 1.0 allows remote attackers execute arbitrary commands via shell metacharacters in the target parameter.
Cross-site scripting (XSS) vulnerability in Caf
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in CafeLog b2 Weblog Tool allows remote attackers to insert arbitrary HTML or script via the GPC variable.
SQL injection vulnerability in CafeLog b2 Weblo
vulnerability
|
tablehosts
|
arbitrary
|
attackers
|
injection
|
variable
|
execute
|
CafeLog
|
Weblog
|
allows
|
remote
|
code
|
Tool
|
SQL
|
via
|
SQL injection vulnerability in CafeLog b2 Weblog Tool allows remote attackers to execute arbitrary SQL code via the tablehosts variable.
CafeLog b2 Weblog Tool 2.06pre4, with allow_fop
allow_fopen_url
|
arbitrary
|
attackers
|
variable
|
execute
|
enabled
|
CafeLog
|
206pre4
|
Weblog
|
allows
|
remote
|
b2inc
|
code
|
Tool
|
PHP
|
via
|
CafeLog b2 Weblog Tool 2.06pre4, with allow_fopen_url enabled, allows remote attackers to execute arbitrary PHP code via the b2inc variable.
Motorola Surfboard 4200 cable modem allows remo
Surfboard
|
Motorola
|
Motorola Surfboard 4200 cable modem allows remote attackers to cause a denial of service (crash) by performing a SYN scan using a tool such as nmap.
The dynamic initialization feature of the Clear
initialization
|
environment
|
ClearPath
|
attackers
|
dynamic
|
feature
|
service
|
denial
|
allows
|
remote
|
cause
|
MCP
|
The dynamic initialization feature of the ClearPath MCP environment allows remote attackers to cause a denial of service (crash) via a TCP port scan using a tool such as nmap.
Unknown vulnerability in bonsai Mozilla CVS que
vulnerability
|
arbitrary
|
attackers
|
commands
|
www-data
|
execute
|
Unknown
|
Mozilla
|
remote
|
bonsai
|
allows
|
query
|
user
|
tool
|
CVS
|
Unknown vulnerability in bonsai Mozilla CVS query tool allows remote attackers to execute arbitrary commands as the www-data user.
bonsai Mozilla CVS query tool allows remote att
authentication
|
parameters
|
attackers
|
Mozilla
|
without
|
access
|
remote
|
bonsai
|
allows
|
query
|
gain
|
page
|
tool
|
CVS
|
bonsai Mozilla CVS query tool allows remote attackers to gain access to the parameters page without authentication.
Information leak in dsimportexport for Apple Ma
dsimportexport
|
Information
|
Macintosh
|
Server
|
Apple
|
leak
|
Information leak in dsimportexport for Apple Macintosh OS X Server 10.2.6 allows local users to obtain the username and password of the account running the tool.
Buffer overflow in the Client Detection Tool (C
Detection
|
overflow
|
Client
|
Buffer
|
Tool
|
Buffer overflow in the Client Detection Tool (CDT) plugin (npcdt.dll) for Netscape 7.02 allows remote attackers to execute arbitrary code via an attachment with a long filename.
Inetd32 Administration Tool of Hummingbird Conn
Administration
|
Connectivity
|
Hummingbird
|
connections
|
arbitrary
|
handling
|
incoming
|
changing
|
program
|
Inetd32
|
execute
|
allows
|
local
|
users
|
Tool
|
code
|
Inetd32 Administration Tool of Hummingbird Connectivity 7.1 and 9.0 allows local users to execute arbitrary code by changing the program for handling incoming connections.
Buffer overflow in the Netinfo Setup Tool (NeST
overflow
|
Netinfo
|
Buffer
|
Setup
|
Tool
|
Buffer overflow in the Netinfo Setup Tool (NeST) allows local users to execute arbitrary code.
SQL injection vulnerability in the search tool
vulnerability
|
unspecified
|
Classifieds
|
arbitrary
|
injection
|
attackers
|
commands
|
execute
|
vectors
|
attack
|
Noah's
|
search
|
remote
|
allows
|
tool
|
SQL
|
via
|
SQL injection vulnerability in the search tool in Noah's Classifieds 1.3 allows remote attackers to execute arbitrary SQL commands via unspecified attack vectors.
PHP remote file inclusion vulnerability in ip.i
vulnerability
|
Engineering
|
Electronic
|
inclusion
|
ipincphp
|
remote
|
file
|
Tool
|
PHP
|
PHP remote file inclusion vulnerability in ip.inc.php in Electronic Engineering Tool (EE Tool) 0.4-1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the cgipath parameter.
The Linux Security Auditing Tool (LSAT) allows
Auditing
|
Security
|
Linux
|
Tool
|
The Linux Security Auditing Tool (LSAT) allows local users to overwrite arbitrary files via a symlink attack on temporary files, as demonstrated using /tmp/lsat1.lsat.
Software vulnerabilities results 1 to 20 of 77
Page:
1
2
3
4
►