Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

S-129: Mantis Vulnerability

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) S-129: Mantis Vulnerability
# 1  
Old 01-22-2008
S-129: Mantis Vulnerability
Several remote vulnerabilities have been discovered in Mantis, a web based bug tracking system. The risk is LOW. Multiple cross site scripting issues allowed a remote attacker to insert malicious HTML or web script into Mantis web pages.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread

1 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

How do I append a ^M to the end of each 129 character string

Hello all, I have a stumper of a problem. I am trying to append a ^M or "newline" to the end of each 129 character string in a huge file in unix. Each string starts with A00. I am trying to get the file to go from... A00vswjdv1 Test Junk Junk A00vswjdv2 Test Junk Junk ... (6 Replies)
Discussion started by: Captain
6 Replies
Login or Register to Ask a Question

LEARN ABOUT ULTRIX

rlogin

rlogin(1c)																rlogin(1c)

Name
       rlogin - remote login

Syntax
       rlogin rhost [-ec] [-8] [-L] [-l username]
       rhost [-ec] [-8] [-L] [-l username]

Description
       The command connects your terminal on the current local host system, lhost, to the remote host system, rhost.

       Each  host  has	a  file  which contains a list of rhosts with which it shares account names.  The host names must be the standard names as
       described in When you use the command to login as the same user on an equivalent host, you do not need to specify a password.

       You can also have a private equivalence list in a file .rhosts in your login directory.	Each line in this file should  contain	the  rhost
       name and a username separated by a space, giving additional cases where logins without passwords are permitted.	If the originating user is
       not equivalent to the remote user, then the remote system prompts for a login and password as in

       To avoid security problems, the .rhosts file must be owned by either the remote user or root and it may not be a symbolic link.

       Your remote terminal type is the same as your local terminal type, which is specified  by  your	environment  TERM  variable.   Except  for
       delays,	all  echoing takes place at the remote site so the rlogin is transparent.  Flow control by and <CTRL/Q>, and flushing of input and
       output on interrupts are handled properly.  The optional argument -8 allows an eight-bit input data path at all times.	Otherwise,  parity
       bits are stripped except when the remote site's stop and start characters are other than and <CTRL/Q>.  A tilde followed by a dot (~.) on a
       separate line disconnects from the remote host, where the tilde (~) is the escape character.  Similarly, a tilde followed  by  <CTRL/Z>	(~
       <CTRL/Z>), where is the suspend character, suspends the rlogin session.

       Substitution  of  the  delayed-suspend  character,  which  is normally <CTRL/Y>, for the suspend character suspends the send portion of the
       rlogin, but allows output from the remote system.  A different escape character may be specified by the -e option.  There is no space sepa-
       rating this option flag and the argument character.

Options
       -8		   Allows an 8-bit input data path at all times.

       -ec		   Uses the specified character as the escape character.  If not specified, uses a tilde (~).

       -l username	   Logs you in as the specified user, not as your user login name.

       -L		   Runs session in litout mode.

Files
       /usr/hosts/*	   for rhost version of the command

See Also
       rsh(1c)

																	rlogin(1c)