02-01-2008
S-156: OpenBSD bgplg 'cmd' Parameter Vulnerability
OpenBSD bgplg is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. The risk is MEDIUM. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.
More...
6 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
I've noticed most of my postings here are because of syntax errors.
So I want to begin compiling a large txt file that contains all the "man <cmd>" of the commands I most have problems with. I ran a "man nawk >> nawk.txt" but it included a header/footer on each "page". Anyone know how I'd be... (6 Replies)
Discussion started by: yongho
6 Replies
2. Shell Programming and Scripting
Say I write something like the following:
var1=1
var2=2
for int in 1 2
do
echo "\$var$int"
done
I want the output to be:
1
2
Instead I get something like:
$var1
$var2 (2 Replies)
Discussion started by: Awanka
2 Replies
3. Shell Programming and Scripting
Hi,
I am using SunOS
I want to serch my previous command
from unix prompt
(like on AIX we can search by ESC -k)
how to get in SunOs
urgent help require. (10 Replies)
Discussion started by: RahulJoshi
10 Replies
4. Shell Programming and Scripting
Hello,
There's a third-party application's command that shows the application's status like "tail -f verybusy.log". When use the command, the output comes every 1-sec. but when it goes in a script below the output comes every 8-sec...What is the problem and how can I fix it?
open(CMD,... (2 Replies)
Discussion started by: Shawn, Lee
2 Replies
5. Shell Programming and Scripting
Hi
I am looking for a unix command or a small shell script which can takes one parameter and then searches for the passed in the parameter in any or all files under say /home/dev/
Can anyone please help me on this? (3 Replies)
Discussion started by: pankaj80
3 Replies
6. Shell Programming and Scripting
Mods please move if posted in wrong section, I wasnt sure where to ask this one.
There are several of us that use an open source program called yiimp, https://github.com/tpruvot/yiimp
several of our sites were attacked last night and I am reaching out to you guys to see if then vulnerability... (0 Replies)
Discussion started by: crombiecrunch
0 Replies
LEARN ABOUT CENTOS
trace-cmd-hist
TRACE-CMD-HIST(1) TRACE-CMD-HIST(1)
NAME
trace-cmd-hist - show histogram of events in trace.dat file
SYNOPSIS
trace-cmd hist [OPTIONS][input-file]
DESCRIPTION
The trace-cmd(1) hist displays a histogram form from the trace.dat file. Instead of showing the events as they were ordered, it creates a
histogram that can be displayed per task or for all tasks where the most common events appear first. It uses the function tracer and call
stacks that it finds to try to put together a call graph of the events.
OPTIONS
-i input-file
By default, trace-cmd hist will read the file trace.dat. But the -i option open up the given input-file instead. Note, the input file
may also be specified as the last item on the command line.
-P
To compact all events and show the call graphs by ignoring tasks and different PIDs, add the -P to do so. Instead of showing the task
name, it will group all chains together and show "<all pids>".
SEE ALSO
trace-cmd(1), trace-cmd-record(1), trace-cmd-report(1), trace-cmd-start(1), trace-cmd-stop(1), trace-cmd-extract(1), trace-cmd-reset(1),
trace-cmd-split(1), trace-cmd-listen(1)
AUTHOR
Written by Steven Rostedt, <rostedt@goodmis.org[1]>
RESOURCES
git://git.kernel.org/pub/scm/linux/kernel/git/rostedt/trace-cmd.git
COPYING
Copyright (C) 2010 Red Hat, Inc. Free use of this software is granted under the terms of the GNU Public License (GPL).
NOTES
1. rostedt@goodmis.org
mailto:rostedt@goodmis.org
06/11/2014 TRACE-CMD-HIST(1)