vulnerability commands
Sort by: Relevance | Date
Microsoft IIS Unicode Exploit
White Paper The IIS Unicode Exploit allows users to run arbitrary commands on the web server. This paper will explain in detail how this seemingly harmless service can lead to a system compromise, and what can be done to minimize that vulnerability. [03 Jul 2008]
SSH CRC Exploit Analysis
White Paper Once in place, it opens up a shell on the remote machine (the victim), and the individual that executed the tool will be able to run commands as super user on the affected system. In doing research, it was found that The Teso team had developed a... [03 Jul 2008]
Cisco Security Advisory: Cisco Secure PIX Firewall SMTP Filtering Vulnerability
White Paper The Cisco Secure PIX firewall feature "Mailguard" which limits SMTP commands to a specified minimum set of commands can be bypassed. This vulnerability can be exploited to bypass SMTP command filtering. [01 Jul 2008]
Corporations riddled with security holes
News Microsoft Exchange 2000 MS03-46 Heap Overflow: A Heap overflow vulnerability can be found in MS Exchange 2000 which may allow an unauthenticated attacker to remotely execute commands on the Exchange server and ultimately compromise the system. [19 Jun 2008]
Cisco Security Advisory: IOS HTTP Authorization Vulnerability
White Paper All commands will be executed with the highest privilege (level 15). Virtually all mainstream Cisco routers and switches running Cisco IOS software are affected by this vulnerability. The workaround for this vulnerability is to disable HTTP server... [10 Apr 2008]
Old malware can affect Vista, admits Microsoft
News It added that currently, once malware has breached the outer defences of a computing system through user interaction, it is no surprise that the operating system obeys user commands to run the code. Based on our initial investigation, Microsoft can... [05 Dec 2006]
Excel flaw opens door to PC hijackers
News The flaw, which affects Excel 2000, 2002 and 2003 and Office 2000, XP and 2003, "could be exploited by attackers to execute arbitrary commands by convincing a user to open and repair a specially crafted Excel file," the advisory said. [07 Jul 2006]
Safari users warned of Mac OS X flaw
News Alfred Huger, senior director of engineering at Symantec, said: "Essentially, the operating system is executing commands that come in the metadata for ZIP files. Word of the new vulnerability comes after the recent discovery of a Trojan horse and a... [22 Feb 2006]
'New Windows security concerns in the wild', says Microsoft
News The access control issue could be exploited by a user with low privileges to run programs and commands that normally require a higher privilege level, Microsoft said. Microsoft has warned of two security issues that could put some Windows users at... [08 Feb 2006]
Firefox flaw warning for Linux users
News If the user clicked on the link, shell commands could be executed on the user's machine. Users running Firefox on Linux may be vulnerable to a security vulnerability that can be exploited to compromise the user's system. [22 Sep 2005]
Veritas flaw enables corporate attacks
News It listens for commands addressed to TCP Port 10000 and accepts links to the backup server before the backup. For protection, they could also use a firewall to filter traffic on Port 10000 to accept only commands from backup servers, US-Cert said. [01 Jul 2005]
MySQL worm spread halted
News Without those commands, the worm is not going to be able to spread. Although this vulnerability stems from users not setting a proper password or firewall on Windows, we take full responsibility in helping our users make sure they have a secure... [31 Jan 2005]
Two critical Windows vulnerabilities announced
News An unchecked buffer is one that does not include commands to ensure that the data is valid. The company defines its "critical" rating as: "A vulnerability whose exploitation could allow the propagation of an internet worm without user action. [14 Jul 2004]
Flaw means Hotmail and Yahoo Mail users vulnerable
News Such flaws use a problem in a site's security to pass potentially harmful commands to another site or a user's computer. Technically, the vulnerability is part of a class of problems known as cross-site scripting flaws. [24 Mar 2004]
Common Desktop Environment (CDE) dtspcd Buffer Overflow on UNIX and Linux OSs (Symantec)
White Paper The CDE is an integrated graphical user interface that runs on Unix and Linux operating systems.dtspcd" is a network daemon that accepts requests from clients to execute commands and launch applications remotely. [24 Feb 2004]
Keep updated for stories matching vulnerability commands via RSS
