The Outblaze Webmail application is prone to an HTML injection vulnerability. This vulnerability occurs when the application fails to properly sanitize user-supplied HTML email content. An attacker can exploit this vulnerability by injecting HTML and script code into the application through HTML emails.
The artmedic_links5 software is prone to a file include vulnerability that could allow a remote attacker to include malicious files containing arbitrary code to be executed on a vulnerable computer. If successful, the attacker-supplied script will be executed in the context of the web server hosting the vulnerable software.
A remote attacker can create a malicious link to the vulnerable application that includes hostile HTML and script code. If the link is followed, the hostile code may be rendered in the web browser of the victim user, potentially allowing for theft of cookie-based authentication credentials or other attacks.
A remote attacker can exploit this issue by creating a malicious link to the vulnerable application that includes hostile HTML and script code. If a user follows this link, the hostile code renders in the web browser of the victim user. This would occur in the security context of the web server and may allow for theft of cookie-based authentication credentials or other attacks.
By sending HTTP requests to Gattaca's web server, it is reportedly possible to cause the application to return error pages that contain the full installation path of the application and the web document root path. These vulnerabilities could be used by an attacker to aid them in further attacks against the server.
By sending HTTP requests to Gattaca's web server, it is possible to cause the application to return error pages that contain the full installation path of the application and the web document root path. These vulnerabilities could be used by an attacker to aid them in further attacks against the server.
The Gattaca Server 2003 is vulnerable to multiple denial of service vulnerabilities. These vulnerabilities allow a remote attacker to crash the application, resulting in a denial of service for legitimate users. The vulnerabilities can be exploited by sending specially crafted requests to the server.
The vulnerability allows an attacker to trigger a denial of service condition in the affected server. Code execution might be possible but is unlikely and unconfirmed.
The im-switch utility is prone to a local insecure temporary file handling symbolic link vulnerability. This vulnerability occurs due to a design error that allows the application to insecurely write to a temporary file with a predictable file name. An attacker can exploit this vulnerability by creating symbolic links to arbitrary files, which can result in the corruption of these files and potentially lead to privilege escalation or a system-wide denial of service.
The Microsoft POSIX subsystem implementation is prone to a local buffer overflow vulnerability. A local attacker may exploit this vulnerability in order to run code with elevated privileges, fully compromising the vulnerable computer.
Services By CQR