Searching variables software vulnerabilities

Buffer overflow in libsocks5 library of Socks 5

libsocks5 | overflow | library | Buffer | Socks |

Buffer overflow in libsocks5 library of Socks 5 (socks5) 1.0r5 allows local users to gain privileges via long environmental variables.


Phorum 3.0.7 allows remote attackers to change

Phorum |

Phorum 3.0.7 allows remote attackers to change the administrator password without authentication via an HTTP request for admin.php3 that sets step, option, confirm and newPssword variables.


Vulnerability in telnetd in FreeBSD 1.5 allows

environmental | Vulnerability | privileges | modifying | variables | critical | behavior | FreeBSD | telnetd | allows | affect | users | local | gain | root |

Vulnerability in telnetd in FreeBSD 1.5 allows local users to gain root privileges by modifying critical environmental variables that affect the behavior of telnetd.


ndcgi.exe in Netdynamics 4.x through 5.x, and p

SPIDERSESSION | uniqueValue | Netdynamics | attackers | variables | sessions | ndcgiexe | possibly | versions | reading | session | earlier | through | remote | allows | hijack | login | after | field | steal | using | those | logs | next | user | then | IDs |

ndcgi.exe in Netdynamics 4.x through 5.x, and possibly earlier versions, allows remote attackers to steal session IDs and hijack user sessions by reading the SPIDERSESSION and uniqueValue variables from the login field, then using those variables after the next user logs in.


netscript before 1.6.3 parses dynamic variables

netscript | before |

netscript before 1.6.3 parses dynamic variables, which could allow remote attackers to alter program behavior or obtain sensitive information.


Molly IRC bot 0.5 allows remote attackers to ex

metacharacters | attackers | arbitrary | commands | execute | allows | remote | shell | Molly | via | bot | IRC |

Molly IRC bot 0.5 allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the $host variable for nslookup.pl, (2) the $to, $from, or $message variables in pop.pl, (3) the $words or $text variables in sms.pl, or (4) the $server or $printer variables in hpled.pl.


Resin 2.1.1 allows remote attackers to cause a

Resin |

Resin 2.1.1 allows remote attackers to cause a denial of service (memory consumption and hang) via a URL with long variables for non-existent resources.


Buffer overflow in xconq 7.4.1 allows local use

overflow | Buffer | xconq |

Buffer overflow in xconq 7.4.1 allows local users to become part of the "games" group via the (1) USER or (2) DISPLAY environment variables.


Buffer overflow in freesweep in Debian GNU/Linu

environment | privileges | processing | variables | GNU/Linux | freesweep | overflow | "games" | Buffer | Debian | allows | users | local | group | gain |

Buffer overflow in freesweep in Debian GNU/Linux 3.0 allows local users to gain "games" group privileges when processing environment variables.


includes/common.php in RunCMS 1.2 and earlier c

includes/commonphp | EXTR_OVERWRITE | attackers | variables | execution | arbitrary | overwrite | function | possibly | allowing | extract | earlier | RunCMS | allows | remote | which | calls | code | POST | HTTP |

includes/common.php in RunCMS 1.2 and earlier calls the extract function with EXTR_OVERWRITE on HTTP POST variables, which allows remote attackers to overwrite arbitrary variables, possibly allowing execution of arbitrary code.


Incomplete blacklist vulnerability in sudo 1.6.

vulnerability | Incomplete | blacklist | sudo |

Incomplete blacklist vulnerability in sudo 1.6.8 and earlier allows local users to gain privileges via the (1) SHELLOPTS and (2) PS4 environment variables before executing a bash script on behalf of another user, which are not cleared even though other variables are.


phpBB 2.0.17 and earlier, when the register_lon

phpBB |

phpBB 2.0.17 and earlier, when the register_long_arrays directive is disabled, allows remote attackers to modify global variables and bypass security mechanisms because PHP does not define the associated HTTP_* variables.


Multiple cross-site scripting (XSS) vulnerabili

cross-site | scripting | Multiple |

Multiple cross-site scripting (XSS) vulnerabilities in B-net Software 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) name and (2) shout variables to (a) shout.php, or the (3) title and (4) message variables to (b) guestbook.php.


Dynamic variable evaluation vulnerability in in

register_globals | vulnerability | include_files | demonstrated | evaluation | parameters | performing | variables | arbitrary | attackers | evaluated | inclusion | parameter | Guestbook | Stadtaus | indexphp | variable | earlier | Dynamic | program | enabled | Script | allows | modify | remote | which | array | using | file | PHP | via |

Dynamic variable evaluation vulnerability in index.php in Stadtaus Guestbook Script 1.7 and earlier, when register_globals is enabled, allows remote attackers to modify arbitrary program variables via parameters, which are evaluated as PHP variable variables, as demonstrated by performing PHP remote file inclusion using the include_files array parameter.


Dynamic variable evaluation vulnerability in in

vulnerability | configuration | parameters | evaluation | variables | overwrite | attackers | evaluated | variable | indexphp | Dynamic | Jetbox | allows | remote | which | PHP | CMS | SR1 | via | URL |

Dynamic variable evaluation vulnerability in index.php in Jetbox CMS 2.1 SR1 allows remote attackers to overwrite configuration variables via URL parameters, which are evaluated as PHP variable variables.


inc/init.php in Archive Mode (Light) in MyBB (a

inc/initphp | Archive | Mode |

inc/init.php in Archive Mode (Light) in MyBB (aka MyBulletinBoard) 1.1.4 calls the extract function with EXTR_OVERWRITE on HTTP POST and GET variables, which allows remote attackers to overwrite arbitrary variables, as demonstrated via an SQL injection using the _SERVER[HTTP_CLIENT_IP] parameter in archive/index.php.


DeluxeBB 1.07 and earlier allows remote attacke

DeluxeBB |

DeluxeBB 1.07 and earlier allows remote attackers to overwrite the (1) _GET, (2) _POST, (3) _ENV, and (4) _SERVER variables via the _COOKIE (aka COOKIE) variable, which can overwrite the other variables during an extract function call, probably leading to multiple security vulnerabilities, aka "pollution of the global namespace."


The _dl_unsetenv function in loader.c in the EL

_dl_unsetenv | environment | privileges | LD_PRELOAD | duplicate | processes | dangerous | leveraged | variables | properly | function | loading | loaderc | OpenBSD | remove | allows | might | local | which | users | does | ldso | gain | such | pass | ELF | not |

The _dl_unsetenv function in loader.c in the ELF ld.so in OpenBSD 3.9 and 4.0 does not properly remove duplicate environment variables, which allows local users to pass dangerous variables such as LD_PRELOAD to loading processes, which might be leveraged to gain privileges.


** DISPUTED ** ld.so in FreeBSD, NetBSD, and p

distributions | environment | privileges | variables | processes | DISPUTED | possibly | certain | harmful | loading | passing | FreeBSD | allows | NetBSD | remove | users | other | local | which | does | ldso | gain | not | BSD |

** DISPUTED ** ld.so in FreeBSD, NetBSD, and possibly other BSD distributions does not remove certain harmful environment variables, which allows local users to gain privileges by passing certain environment variables to loading processes. NOTE: this issue has been disputed by a third party, stating that it is the responsibility of the application to properly sanitize the environment.


Unspecified vulnerability in PHP before 5.2.1 a

vulnerability | Unspecified | before | PHP |

Unspecified vulnerability in PHP before 5.2.1 allows attackers to "clobber" certain super-global variables via unspecified vectors.


Software vulnerabilities results 1 to 20 of 194     
Page: 12345...10