value software vulnerabilities

Searching value software vulnerabilities

An application-critical Windows NT registry key

An application-critical Windows NT registry key has an inappropriate value.

AOL Instant Messenger (AIM) client allows remot

AOL Instant Messenger (AIM) client allows remote attackers to cause a denial of service via a message with a malformed ASCII value.

Buffer overflow in mIRC 6.0.2 and earlier allow

overflow | Buffer | mIRC |

Buffer overflow in mIRC 6.0.2 and earlier allows remote attackers to execute arbitrary code via a long $asctime value.

admin.php in miniPortail allows remote attacker

admin.php in miniPortail allows remote attackers to gain administrative privileges by setting the miniPortailAdmin cookie to an "adminok" value.

The SPNEGO dissector in Ethereal 0.9.12 and ear

dissector | Ethereal | SPNEGO |

The SPNEGO dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service (crash) via an invalid ASN.1 value.

saned in sane-backends 1.0.7 and earlier calls

sane-backends | saned |

saned in sane-backends 1.0.7 and earlier calls malloc with an arbitrary size value if a connection is dropped before the size value has been sent, which allows remote attackers to cause a denial of service (memory consumption or crash).

The php_check_safe_mode_include_dir function in

The php_check_safe_mode_include_dir function in fopen_wrappers.c of PHP 4.3.x returns a success value (0) when the safe_mode_include_dir variable is not specified in configuration, which differs from the previous failure value and may allow remote attackers to exploit file include vulnerabilities in PHP applications.

oftpd 0.3.6 and earlier allows remote attackers

oftpd |

oftpd 0.3.6 and earlier allows remote attackers to cause a denial of service (crash) via a PORT command with a large value.

NewsPHP allows remote attackers to gain unautho

NewsPHP allows remote attackers to gain unauthorized administrative access by setting a cookie to the "autorized=admin; root=admin" value.

The php_next_marker function in image.c for PHP

php_next_marker | function | imagec | PHP |

The php_next_marker function in image.c for PHP 4.2.2, 4.3.9, 4.3.10 and 5.0.3, as reachable by the getimagesize PHP function, allows remote attackers to cause a denial of service (infinite loop) via a JPEG image with an invalid marker value, which causes a negative length value to be passed to php_stream_seek.

scan.c for LibXPM may allow attackers to execut

scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.

sessions.php in phpBB 2.0.12 and earlier allows

sessionsphp | phpBB |

sessions.php in phpBB 2.0.12 and earlier allows remote attackers to gain administrator privileges via the autologinid value in a cookie.

Multiple buffer overflows in the XSL parser for

Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow attackers to cause a denial of service and possibly execute arbitrary code via (1) a long test value in an xsl:when tag, (2) a long test value in an xsl:if tag, or (3) a long select value in an xsl:value-of tag.

The procfs code (proc_misc.c) in Linux 2.6.14.3

procfs | code |

The procfs code (proc_misc.c) in Linux 2.6.14.3 and other versions before 2.6.15 allows attackers to read sensitive kernel memory via unspecified vectors in which a signed value is added to an unsigned value.

FileProtection Express 1.0.1 and earlier allows

FileProtection | Express |

FileProtection Express 1.0.1 and earlier allows remote attackers to bypass authentication via a cookie with an Admin value of 1.

newsadmin.asp in Katy Whitton NewsCMSLite allow

newsadmin.asp in Katy Whitton NewsCMSLite allows remote attackers to gain administrative privileges via a loggedIn cookie with the value "xY1zZoPQ."

SQL-Ledger 2.4.4 through 2.6.17 authenticates u

SQL-Ledger |

SQL-Ledger 2.4.4 through 2.6.17 authenticates users by verifying that the value of the sql-ledger-[username] cookie matches the value of the sessionid parameter, which allows remote attackers to gain access as any logged-in user by setting the cookie and the parameter to the same value.

Admin/adpoll.asp in PacPoll 4.0 and earlier all

Admin/adpoll.asp in PacPoll 4.0 and earlier allows remote attackers to bypass authentication by settng the polllog cookie value to "xx".

w-Agora (Web-Agora) allows remote attackers to

w-Agora |

w-Agora (Web-Agora) allows remote attackers to obtain sensitive information via a request to rss.php with an invalid (1) site or (2) bn parameter, (3) a certain value of the site[] parameter, or (4) an empty value of the bn[] parameter; a request to index.php with a certain value of the (5) site[] or (6) sort[] parameter; (7) a request to profile.php with an empty value of the site[] parameter; or a request to search.php with (8) an empty value of the bn[] parameter or a certain value of the (9) pattern[] or (10) search_date[] parameter, which reveal the path in various error messages, probably related to variable type inconsistencies. NOTE: the bn[] parameter to index.php is already covered by CVE-2007-0606.1.

DISPUTED BellaBiblio allows remote attac

** DISPUTED ** BellaBiblio allows remote attackers to gain administrative privileges via a bellabiblio cookie with the value "administrator." NOTE: this issue is disputed by CVE and multiple third parties because the cookie value must be an MD5 hash.

Software vulnerabilities results 1 to 20 of 537

Page: 12 3 4 5...27 ►

value software vulnerabilities

vulnerabilities.aspcode.net

Searching value software vulnerabilities