|
315781
|
- |
|
proftpd
mandrakesoft
debian
conectiva
|
proftpd
mandrake_linux
debian_linux
linux
|
Memory leak in ProFTPd 1.2.0rc2 allows remote attackers to cause a denial of service via a series of USER commands, and possibly SIZE commands if the server has been improperly installed.
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2001-0136
|
2024-01-27 03:53 |
2001-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315782
|
5.8 |
MEDIUM
Network
|
chillcreations
|
com_ccnewsletter
|
Directory traversal vulnerability in the ccNewsletter (com_ccnewsletter) component 1.0.5 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter in …
|
CWE-22
Path Traversal
|
CVE-2010-0467
|
2024-01-27 02:44 |
2010-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315783
|
9.8 |
CRITICAL
Network
|
debian
canonical
|
lintian
debian_linux
ubuntu_linux
|
Multiple directory traversal vulnerabilities in Lintian 1.23.x through 1.23.28, 1.24.x through 1.24.2.1, and 2.x before 2.3.2 allow remote attackers to overwrite arbitrary files or obtain sensitive i…
|
CWE-22
Path Traversal
|
CVE-2009-4013
|
2024-01-27 02:44 |
2010-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315784
|
7.5 |
HIGH
Network
|
ibm
|
websphere_application_server
|
IBM WebSphere server 3.0.2 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-2000-0497
|
2024-01-27 02:43 |
2000-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315785
|
7.5 |
HIGH
Network
|
unify
|
ewave_servletexec
|
Unify eWave ServletExec allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-2000-0498
|
2024-01-27 02:43 |
2000-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315786
|
7.5 |
HIGH
Network
|
bea
|
weblogic_server
|
The default configuration of BEA WebLogic 3.1.8 through 4.5.1 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-2000-0499
|
2024-01-27 02:43 |
2000-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315787
|
7.1 |
HIGH
Local
|
iss
|
blackice_server_protection
blackice_pc_protection
|
BlackICE PC Protection and Server Protection installs (1) firewall.ini, (2) blackice.ini, (3) sigs.ini and (4) protect.ini with Everyone Full Control permissions, which allows local users to cause a …
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2004-1714
|
2024-01-27 02:21 |
2004-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315788
|
7.0 |
HIGH
Local
|
symantec
|
antivirus_scan_engine
|
The LiveUpdate capability (liveupdate.sh) in Symantec AntiVirus Scan Engine 4.0 and 4.3 for Red Hat Linux allows local users to create or append to arbitrary files via a symlink attack on /tmp/LiveUp…
|
CWE-59
Link Following
|
CVE-2004-0217
|
2024-01-27 02:21 |
2004-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315789
|
5.5 |
MEDIUM
Local
|
mgetty_project
|
mgetty
|
faxrunqd.in in mgetty 1.1.28 and earlier allows local users to overwrite files via a symlink attack on JOB files.
|
CWE-59
Link Following
|
CVE-2003-0517
|
2024-01-27 02:20 |
2003-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315790
|
7.8 |
HIGH
Local
|
ibm
|
u2_universe
|
cci_dir in IBM U2 UniVerse 10.0.0.9 and earlier creates hard links and unlinks files as root, which allows local users to gain privileges by deleting and overwriting arbitrary files.
|
CWE-59
Link Following
|
CVE-2003-0578
|
2024-01-27 02:19 |
2003-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
