VESARiA Network Security Specialists
About Vesaria Services Consulting Partners Research Customers Contact Us
 
   

Advisories

Note: Until March 31, 2003, VESARiA Network Security Specialists was known as qDefense.

 
 
Advisory: QDAV-5-2000-2 v1.1
Name: DCForum Password File Manipulation Vulnerability
Release: 05.23.2000
Product: DCForum
Vendor: DCScripts (http://dcscripts.com)
Release: 05.23.2000
Severity: Remote. Any attacker may gain DCForum admin privilleges.
Overview: The DCForum password file may be manipulated to grant any user administration privilleges.

Full Details

 
 
Advisory: QDAV-5-2000-1 v1.1
Name: DCForum Upload & Execute Vulnerability
Release: 05.04.2000
Product: DCForum
Vendor: DCScripts (http://dcscripts.com)
Release: 05.04.2000
Severity: Remote. Attacker can execute arbitrary commands.
Overview: An attacker may upload and execute any Perl script to a site using DCForum, allowing him to execute arbitrary commands on the server.

Full Details

 
 
   << previous

© 2000 - 2017 VESARiA Network Security Specialists.  The advisories presented here may be reproduced, in whole or in part, provided that they are not modified and that proper credit is given.  In addition, if one is made accessible via hypertext, a hyperlink to VESARiA Network Security Specialists (http://www.vesaria.com) must be included.

Vesaria, LLC

 
© 2000 - 2017 Vesaria Network Security Specialists        
   About Vesaria   |   Legal   |   Privacy   |   Contact