Searching utility software vulnerabilities

super 3.11.6 and other versions have a buffer o

super |

super 3.11.6 and other versions have a buffer overflow in the syslog utility which allows a local user to gain root access.


Windows NT is not using a password filter utili

PASSFILTDLL | password | utility | Windows | filter | using | not |

Windows NT is not using a password filter utility, e.g. PASSFILT.DLL.


A hacker utility, back door, or Trojan Horse is

installed | Orifice | Rootkit | utility | hacker | system | Trojan | NetBus | Horse | back | door | etc |

A hacker utility, back door, or Trojan Horse is installed on a system, e.g. NetBus, Back Orifice, Rootkit, etc.


Kabsoftware Lydia utility uses weak encryption

Kabsoftware | encryption | privileges | passwords | lydiaini | decrypt | utility | easily | allows | local | Lydia | users | store | which | gain | weak | file | uses | user |

Kabsoftware Lydia utility uses weak encryption to store user passwords in the lydia.ini file, which allows local users to easily decrypt the passwords and gain privileges.


Vulnerability in Monitor utility (SYS$SHARE:SPI

Vulnerability | utility | Monitor |

Vulnerability in Monitor utility (SYS$SHARE:SPISHR.EXE) in VMS 5.0 through 5.4-2 allows local users to gain privileges.


genkey utility in Alibaba 2.0 generates RSA key

transactions | generates | cleartext | exponent | results | Alibaba | utility | genkey | which | pairs | sent | RSA | key |

genkey utility in Alibaba 2.0 generates RSA key pairs with an exponent of 1, which results in transactions that are sent in cleartext.


The default configurations for McAfee Virus Sca

configurations | Anti-Virus | malicious | attackers | detection | checkers | RECYCLED | Recycle | without | Windows | default | utility | allows | Norton | McAfee | folder | Virus | store | which | files | check | code | Scan | used | Bin | not |

The default configurations for McAfee Virus Scan and Norton Anti-Virus virus checkers do not check files in the RECYCLED folder that is used by the Windows Recycle Bin utility, which allows attackers to store malicious code without detection.


search.dll Sambar ISAPI Search utility in Samba

directories | specifying | searchdll | arbitrary | attackers | directory | paraeater | utility | remote | Server | Search | Sambar | allows | query | ISAPI | Beta | read |

search.dll Sambar ISAPI Search utility in Sambar Server 4.4 Beta 3 allows remote attackers to read arbitrary directories by specifying the directory in the query paraeater.


rlmadmin RADIUS management utility in Merit AAA

management | rlmadmin | utility | Server | RADIUS | Merit | 38M | AAA |

rlmadmin RADIUS management utility in Merit AAA Server 3.8M, 5.01, and possibly other versions, allows local users to read arbitrary files via a symlink attack on the rlmadmin.help file.


popauth utility in Qualcomm Qpopper 4.0 and ear

overwrite | arbitrary | commands | Qualcomm | execute | symlink | utility | popauth | earlier | Qpopper | attack | allows | option | -trace | files | users | local | file | user | pop | via |

popauth utility in Qualcomm Qpopper 4.0 and earlier allows local users to overwrite arbitrary files and execute commands as the pop user via a symlink attack on the -trace file option.


setlicense for TOLIS Group Backup and Restore U

setlicense | Restore | Utility | Backup | TOLIS | Group |

setlicense for TOLIS Group Backup and Restore Utility (BRU) 17.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/brutest.$$ temporary file.


Buffer overflow in InstantServers MiniPortal 1.

InstantServers | MiniPortal | overflow | Buffer |

Buffer overflow in InstantServers MiniPortal 1.1.5 and earlier allows remote attackers to execute arbitrary code via a long login name, which is not properly handled by the logging utility.


Hard link and possibly symbolic link following

vulnerabilities | following | symbolic | possibly | RTOS | Hard | link | QNX |

Hard link and possibly symbolic link following vulnerabilities in QNX RTOS 4.25 (aka QNX4) allow local users to overwrite arbitrary files via (1) the -f argument to the monitor utility, (2) the -d argument to dumper, (3) the -c argument to crttrap, or (4) using the Watcom sample utility.


Buffer overflow in inc mail utility for Compaq

environment | Tru64/OSF1 | arbitrary | overflow | variable | execute | utility | Buffer | Compaq | allows | local | users | long | mail | code | inc | via |

Buffer overflow in inc mail utility for Compaq Tru64/OSF1 3.x allows local users to execute arbitrary code via a long MH environment variable.


Buffer overflow in backup utility of Microsoft

Microsoft | attackers | extension | arbitrary | overflow | filename | execute | causing | utility | Windows | Buffer | placed | backed | folder | allows | backup | long | code |

Buffer overflow in backup utility of Microsoft Windows 95 allows attackers to execute arbitrary code by causing a filename with a long extension to be placed in a folder to be backed up.


Buffer overflow in Novell NetWare Client 4.80 t

overflow | NetWare | Client | Buffer | Novell |

Buffer overflow in Novell NetWare Client 4.80 through 4.83 allows local users to cause a denial of service (crash) by using ping, traceroute, or a similar utility to force the client to resolve a large hostname.


The control for listing accessibility options i

accessibility | Utility | Windows | Manager | control | listing | options |

The control for listing accessibility options in the Accessibility Utility Manager on Windows 2000 (ListView) does not properly handle Windows messages, which allows local users to execute arbitrary code via a "Shatter" style message to the Utility Manager that references a user-controlled callback function.


Utility Manager in Windows 2000 launches winhlp

Windows | Manager | Utility |

Utility Manager in Windows 2000 launches winhlp32.exe while Utility Manager is running with raised privileges, which allows local users to gain system privileges via a "Shatter" style attack that sends a Windows message to cause Utility Manager to launch winhlp32 by directly accessing the context sensitive help and bypassing the GUI, then sending another message to winhlp32 in order to open a user-selected file, a different vulnerability than CVE-2003-0908.


Unspecified vulnerability in the utxconfig util

vulnerability | Unspecified | arbitrary | overwrite | utxconfig | Software | unknown | utility | vectors | create | Server | attack | allows | files | local | users | Sun | Ray | via |

Unspecified vulnerability in the utxconfig utility in Sun Ray Server Software 3.x allows local users to create or overwrite arbitrary files via unknown attack vectors.


Unspecified vulnerability in the Utility Classe

vulnerability | Application | Unspecified | WebSphere | Utility | Classes | Server | IBM |

Unspecified vulnerability in the Utility Classes for IBM WebSphere Application Server (WAS) before 5.1.1.13 and 6.x before 6.0.2.17 has unknown impact and attack vectors.


Software vulnerabilities results 1 to 20 of 61     
Page: 1234