Hassan Consulting's Shopping Cart Version 1.x (cgi-bin/shop.pl) contains remote vulnerabilities, including directory transversal with file read ability, listing files, and path disclosure. Exploit URL's included.
85283352f70d94548d2b56de0d97bcf80906908ef932baf0b3a815cdc3e97361KDE File Manager can be tricked into executing commands as root by creating a HTML file with a link to a binary.
d7f5f0c29d8e33e3eae4d5bbd47b000527c71b64246f27d556cd28df0782ba0eMandrake 7.1's /usr/bin/urpmi allows attackers to install RPM's as root if they have an account in the urpmi group and possibly physical access.
7c9b89ae1b7901292c8d5b0902bedd8ccaad79f8cc4b4e2702d359ba016ff272Pop2d any file on the system can be read remotely on a pop2 server with a valid pop account due to a bug in the fold command.
bc54f3402bf663746da58c8465528b13c145566b70abf99486edc76930e03c5c
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed
