IRIX nsd NIS Master UDP Port Scan DoS
IRIX contains a flaw that may allow a remote denial of service. The issue is triggered when a malicious attacker performs a UDP port scan to cause the name service daemon (nsd) to crash, and will result in loss of availability for the service.. Read more.
IRIX rpc.mountd Unprivileged Remote Port Mount
IRIX contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a malicious attacker is able to mount a file system via an unprivileged port even if rpc.mountd is started with the '-n' option. This flaw may lead to a loss of integrity.. Read more.
Oracle Database Spatial Unspecified Registry Unspecified Issue
Oracle Database Server contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an unspecified action occurs, resulting in a loss of confidentiality.. Read more.
SL_site gallerie.php rep Variable Traversal Arbitrary Directory Listing
SL_site contains a flaw that allows a remote attacker to list images outside of the web path. The issue is due to the gallerie.php not properly sanitizing user input, specifically directory traversal style attacks (../../) supplied via the 'rep' variable.. Read more.
SL_site page.php id_page Variable SQL Injection
SL_site contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the page.php script not properly sanitizing user-supplied input to the 'id_page' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more.
SL_site recherche.php recherche Variable XSS
SL_site contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'recherche' variable upon submission to the recherche.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more.
Winny File Transfer Port Unspecified Remote Overflow
A remote overflow exists in Winny. Winny fails to perform proper bounds checking of unspecified file transfer port commands resulting in a heap-based buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution in the context of the user who executed the Winny, resulting in a loss of integrity.. Read more.
Scry index.php p Variable Path Disclosure
Scry contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker requests a non existant directory via the 'p' variable in index.php, which will disclose the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.. Read more.
Scry index.php p Variable Traversal Arbitrary File Access
Scry contains a flaw that allows a remote attacker to access arbitrary files outside of the web path. The issue is due to index.php not properly sanitizing user input, specifically directory traversal style attacks (../../) supplied via the 'p' variable.. Read more.
Scry index.php p Variable XSS
Scry contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'p' variable upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more.
Vuln: Microsoft Windows Shell COM Object Remote Code Execution Vulnerability
Microsoft Windows Shell COM Object Remote Code Execution Vulnerability. Read more.
Vuln: Zlib Compression Library Buffer Overflow Vulnerability
Zlib Compression Library Buffer Overflow Vulnerability. Read more.
Vuln: Mozilla Suite And Firefox XPInstall JavaScript Object Instance Validation Vulnerability
Mozilla Suite And Firefox XPInstall JavaScript Object Instance Validation Vulnerability. Read more.
DCForumLite V 3.0<--XSS/SQL Injection
DCForumLite V 3.0<--XSS/SQL Injection. Read more.
Fenice - Open Media Streaming Server remote BOF exploit
Fenice - Open Media Streaming Server remote BOF exploit
. Read more.
[SECURITY] [DSA 1042-1] New Cyrus SASL packages fix denial of service
[SECURITY] [DSA 1042-1] New Cyrus SASL packages fix denial of service. Read more.
Instant Photo Gallery <= Multiple XSS
Instant Photo Gallery <= Multiple XSS. Read more.
