variant software vulnerabilities

Searching variant software vulnerabilities

MSHTML.DLL in Internet Explorer 5.0 allows a re

MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to paste a file name into the file upload intrinsic control, a variant of "untrusted scripted paste" as described in MS:MS98-013.

Unknown vulnerability in Allaire JRun 3.1 allow

Unknown vulnerability in Allaire JRun 3.1 allows remote attackers to directly access the WEB-INF and META-INF directories and execute arbitrary JavaServer Pages (JSP), a variant of CVE-2000-1050.

Directory traversal vulnerability in none.php f

Directory traversal vulnerability in none.php for SunPS iRunbook 2.5.2 allows remote attackers to read arbitrary files via a "..:" sequence (dot-dot variant) in the argument.

Buffer overflow in Internet Explorer 6 SP1 for

Buffer overflow in Internet Explorer 6 SP1 for certain languages that support double-byte encodings (e.g., Japanese) allows remote attackers to execute arbitrary code via the Type property of an Object tag, a variant of CVE-2003-0344.

Buffer overflow in McAfee Scan Engine 4320 with

Buffer overflow in McAfee Scan Engine 4320 with DAT version before 4436 allows remote attackers to execute arbitrary code via a malformed LHA file with a type 2 header file name field, a variant of CVE-2005-0643.

PHP remote file inclusion vulnerability in secu

PHP remote file inclusion vulnerability in secure.php in PHPSecurePages (phpSP) 0.28beta and earlier allows remote attackers to execute arbitrary code via the cfgProgDir parameter, a variant of CVE-2001-1468.

Cross-site scripting (XSS) vulnerability in for

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in forum/index.php in FlatNuke 2.5.6 allows remote attackers to inject arbitrary web script or HTML via the nome parameter in a login operation, a variant of CVE-2005-3306.

sudo 1.6.8 and other versions does not clear th

sudo |

sudo 1.6.8 and other versions does not clear the PYTHONINSPECT environment variable, which allows limited local users to gain privileges via a Python script, a variant of CVE-2005-4158.

Cross-site scripting (XSS) vulnerability in wik

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in wiki.php in MoniWiki before 1.1.2-Sunday, July 02, 2006 allows remote attackers to inject arbitrary Javascript via the URL, which is reflected back in an error message, a variant of CVE-2004-1632.

CRLF injection vulnerability in the evalFolderL

CRLF injection vulnerability in the evalFolderLine function in fvwm 2.5.18 and earlier allows local users to execute arbitrary commands via carriage returns in a directory name, which is not properly handled by fvwm-menu-directory, a variant of CVE-2003-1308.

Absolute path traversal vulnerability in abitwh

Absolute path traversal vulnerability in abitwhizzy.php before Monday, December 04, 2006 allows remote attackers to read arbitrary files via an absolute pathname in the Filename text window (f parameter), a variant of CVE-2006-6084.

Integer overflow in OpenOffice.org (OOo) 2.1 al

OpenOfficeorg | overflow | Integer |

Integer overflow in OpenOffice.org (OOo) 2.1 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted DOC file, as demonstrated by the 12122006-djtest.doc file, a variant of CVE-2006-6561 in a separate codebase.

The FTP server in the NEC MultiWriter 1700C all

The FTP server in the NEC MultiWriter 1700C allows remote attackers to redirect traffic to other sites (aka FTP bounce) via the PORT command, a variant of CVE-1999-0017.

Unspecified vulnerability in Microsoft Word 200

vulnerability | Unspecified | Microsoft | Word |

Unspecified vulnerability in Microsoft Word 2000 allows remote attackers to cause a denial of service (crash) via unknown vectors, a different vulnerability than CVE-2006-5994, CVE-2006-6456, CVE-2006-6561, and CVE-2007-0515, a variant of Exploit-MS06-027.

Linux kernel 2.6.x before 2.6.20 allows local u

before | kernel | Linux | 26x |

Linux kernel 2.6.x before 2.6.20 allows local users to read unreadable binaries by using the interpreter (PT_INTERP) functionality and triggering a core dump, a variant of CVE-2004-1073.

Cross-site scripting (XSS) vulnerability in Tas

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in TaskFreak! before 0.5.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly a variant of CVE-2007-0982.

Mozilla Firefox 2.0.0.2 allows remote attackers

Firefox | Mozilla |

Mozilla Firefox 2.0.0.2 allows remote attackers to spoof the address bar, favicons, and document source, and perform updates in the context of arbitrary websites, by repeatedly setting document.location in the onunload attribute when linking to another website, a variant of CVE-2007-1092.

Software vulnerabilities results 1 to 20 of 60

Page: 12 3 4 ►

variant software vulnerabilities

vulnerabilities.aspcode.net

Searching variant software vulnerabilities

MSHTML.DLL in Internet Explorer 5.0 allows a re

Unknown vulnerability in Allaire JRun 3.1 allow

Directory traversal vulnerability in none.php f

Buffer overflow in Internet Explorer 6 SP1 for

Buffer overflow in McAfee Scan Engine 4320 with

PHP remote file inclusion vulnerability in secu

Cross-site scripting (XSS) vulnerability in for

sudo 1.6.8 and other versions does not clear th

Cross-site scripting (XSS) vulnerability in wik

CRLF injection vulnerability in the evalFolderL

Absolute path traversal vulnerability in abitwh

Integer overflow in OpenOffice.org (OOo) 2.1 al

The FTP server in the NEC MultiWriter 1700C all

Unspecified vulnerability in Microsoft Word 200

Linux kernel 2.6.x before 2.6.20 allows local u

Cross-site scripting (XSS) vulnerability in Tas

Mozilla Firefox 2.0.0.2 allows remote attackers

BlueArc-FTPD in BlueArc Titan 2x00 devices with

A certain ActiveX control in LeadTools Raster V

Unspecified vulnerability in PHP before 5.2.4 h