2675 matches found
Symantec Backup Exec Job引擎空指针引用拒绝服务漏洞
BUGTRAQ ID: 26028 CVECAN ID: CVE-2007-4346 Symantec Backup Exec是一款全面的数据备份解决方案。 Backup Exec的Job引擎服务(bengine.exe)中存在空指针引用漏洞,远程攻击者可能利用此漏洞导致服务不可用。 如果远程攻击者向该服务的默认5633/TCP端口发送了畸形报文并触发了异常的话,就可能触发这个漏洞,导致监听的服务崩溃。 Symantec Backup Exec for Windows Servers 11d 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
CVE-2007-4346
The Job Engine bengine.exe service in Symantec Backup Exec for Windows Servers BEWS 11d build 11.0.7170 and 11.0.6.6235 allows remote attackers to cause a denial of service NULL dereference and service crash via a crafted packet to port 5633/tcp...
Design/Logic Flaw
The Job Engine bengine.exe service in Symantec Backup Exec for Windows Servers BEWS 11d build 11.0.7170 and 11.0.6.6235 allows remote attackers to cause a denial of service NULL dereference and service crash via a crafted packet to port 5633/tcp...
Integer overflow
Multiple integer overflows in the Job Engine bengine.exe service in Symantec Backup Exec for Windows Servers BEWS 11d build 11.0.7170 and 11.0.6.6235 allow remote attackers to cause a denial of service CPU and memory consumption via a crafted packet to port 5633/tcp, which triggers an infinite lo...
CVE-2007-4347
Multiple integer overflows in the Job Engine bengine.exe service in Symantec Backup Exec for Windows Servers BEWS 11d build 11.0.7170 and 11.0.6.6235 allow remote attackers to cause a denial of service CPU and memory consumption via a crafted packet to port 5633/tcp, which triggers an infinite lo...
CVE-2007-4346
The Job Engine bengine.exe service in Symantec Backup Exec for Windows Servers BEWS 11d build 11.0.7170 and 11.0.6.6235 allows remote attackers to cause a denial of service NULL dereference and service crash via a crafted packet to port 5633/tcp...
CVE-2007-4347
Multiple integer overflows in the Job Engine bengine.exe service in Symantec Backup Exec for Windows Servers BEWS 11d build 11.0.7170 and 11.0.6.6235 allow remote attackers to cause a denial of service CPU and memory consumption via a crafted packet to port 5633/tcp, which triggers an infinite lo...
Symantec Backup Exec DoS
bengine.exe TCP/5633 integer overflows and NULL pointer dereference...
Secunia Research: Symantec Backup Exec Job Engine Denial of Service
====================================================================== Secunia Research 28/11/2007 - Symantec Backup Exec Job Engine Denial of Service - ====================================================================== Table of Contents Affected...
Symantec Backup Exec for Windows Servers Denial of Service Vulnerabilities
Backup Exec for Windows Servers, a commercial backup product from Symantec, is installed on the remote host. The version of the Backup Exec Job Engine, bengine.exe, installed as part of Backup Exec for Windows Server on the remote host contains a NULL pointer dereference error when handling...
Apple QuickTime 7.2/7.3 RSTP Response Code Exec Exploit (Vista/XP)
No description provided by source. / ============================================================= Apple Quicktime Vista/XP RSTP Response Remote Code Exec ============================================================= Discovered by: h07 Author: InTeL Tested on:...
Apple QuickTime 7.2/7.3 RSTP Response Code Exec Exploit (Vista/XP)
Exploit for unknown platform in category remote exploits ================================================================== Apple QuickTime 7.2/7.3 RSTP Response Code Exec Exploit Vista/XP ================================================================== /...
EMC NetWorker Remote Exec service subcmd buffer overflow
Added: 11/09/2007 CVE: CVE-2007-3618 BID: 25375 OSVDB: 39744 Background EMC NetWorker is a centralized data backup solution. Problem A buffer overflow vulnerability in the Remote Exec service nsrexecd.exe allows remote attackers to execute arbitrary commands by sending a long, invalid subcmd to a...
EMC NetWorker Remote Exec service subcmd buffer overflow
Added: 11/09/2007 CVE: CVE-2007-3618 BID: 25375 OSVDB: 39744 Background EMC NetWorker is a centralized data backup solution. Problem A buffer overflow vulnerability in the Remote Exec service nsrexecd.exe allows remote attackers to execute arbitrary commands by sending a long, invalid subcmd to a...
EMC NetWorker Remote Exec service subcmd buffer overflow
Added: 11/09/2007 CVE: CVE-2007-3618 BID: 25375 OSVDB: 39744 Background EMC NetWorker is a centralized data backup solution. Problem A buffer overflow vulnerability in the Remote Exec service nsrexecd.exe allows remote attackers to execute arbitrary commands by sending a long, invalid subcmd to a...
EMC NetWorker Remote Exec service subcmd buffer overflow
Added: 11/09/2007 CVE: CVE-2007-3618 BID: 25375 OSVDB: 39744 Background EMC NetWorker is a centralized data backup solution. Problem A buffer overflow vulnerability in the Remote Exec service nsrexecd.exe allows remote attackers to execute arbitrary commands by sending a long, invalid subcmd to a...
CVE-2007-5549
Unspecified vulnerability in Command EXEC in Cisco IOS allows local users to bypass command restrictions and obtain sensitive information via an unspecified "variation of an IOS command" involving "two different methods", aka CSCsk16129. NOTE: as of 20071016, the only disclosure is a vague...
Stack overflow
Multiple stack-based buffer overflows in Command EXEC in Cisco IOS allow local users to gain privileges via unspecified vectors, aka 1 PSIRT-0474975756 and 2 PSIRT-0388256465. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is fr...
CVE-2007-5549
Unspecified vulnerability in Command EXEC in Cisco IOS allows local users to bypass command restrictions and obtain sensitive information via an unspecified "variation of an IOS command" involving "two different methods", aka CSCsk16129. NOTE: as of 20071016, the only disclosure is a vague...
CVE-2007-5548
Multiple stack-based buffer overflows in Command EXEC in Cisco IOS allow local users to gain privileges via unspecified vectors, aka 1 PSIRT-0474975756 and 2 PSIRT-0388256465. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is fr...