108 matches found
MySQL 5.1 < 5.1.62 Multiple Vulnerabilities
The version of MySQL 5.1 installed on the remote host is earlier than 5.1.62. It is, therefore, affected by the following vulnerabilities : - An error exists related to the included yaSSL component that could allow arbitrary code execution. CVE-2012-0882 - Errors exist related to 'Server...
Debian DSA-2102-1 : barnowl - unchecked return value
It has been discovered that in barnowl, a curses-based instant-messaging client, the return codes of calls to the ZPending and ZReceiveNotice functions in libzephyr were not checked, allowing attackers to cause a denial of service crash of the application, and possibly execute arbitrary code...
CVE-2010-2102
CVE-2010-2102 describes a buffer overflow in Webby Webserver 1.01 triggered by a long HTTP GET request, enabling remote execution of arbitrary code. This is documented across multiple sources (NVD, CVE list) with a high impact score. The connected documents confirm the affected product/version an...
CVE-2010-2102
creationtimestamp| type| source ---|---|--- 2010-05-25 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/12740...
openSUSE Security Update : cups (cups-2102)
lppasswd when running setuid or setgid still honors environment variables that specify the location of message files. Local attackers could exploit that to gather information by using crafted format strings CVE-2010-0393. The previous fix for a use-after-free vulnerability CVE-2009-3553 was...
CVE-2009-2102
SQL injection vulnerability in the Jumi comjumi component 2.0.3 and possibly other versions for Joomla allows remote attackers to execute arbitrary SQL commands via the fileid parameter to index.php...
CVE-2009-2102
The CVE relates to the Jumi (com_jumi) Joomla extension, specifically version 2.0.3 and possibly earlier/newer ones. The underlying issue is an SQL injection in the fileid parameter of index.php, allowing an unauthenticated, remote attacker to manipulate database queries and potentially disclose ...
CVE-2009-2102
creationtimestamp| type| source ---|---|--- 2009-06-15 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/8968...
Gentoo Security Advisory GLSA 200508-06 (Gaim)
The remote host is missing updates announced in advisory GLSA 200508-06. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Code injection
Linksys SPA-2102 Phone Adapter 3.3.6 allows remote attackers to cause a denial of service crash via a long ping packet "ping of death". NOTE: the severity of this issue has been disputed since there are limited attack scenarios...
CVE-2008-2092
Linksys SPA-2102 Phone Adapter 3.3.6 allows remote attackers to cause a denial of service crash via a long ping packet "ping of death". NOTE: the severity of this issue has been disputed since there are limited attack scenarios...
CVE-2008-2092
Linksys SPA-2102 Phone Adapter 3.3.6 allows remote attackers to cause a denial of service crash via a long ping packet "ping of death". NOTE: the severity of this issue has been disputed since there are limited attack scenarios...
CVE-2008-2092
The CVE-2008-2092 issue affects the Linksys SPA-2102 Phone Adapter with firmware 3.3.6, where a remote attacker can cause a denial-of-service (crash) by sending a long ping packet (ping of death) over the network. The available records state this is a network-facing flaw with high impact (CVSS v2...
Linksys SPA-2102 wireless IP phones DoS
Large ICMP packets cause device to crash...
Linksys phone adapter denial of service
Linksys phone adapter denial of service Product Information Product Name: SPA-2102 Serial Number: FM500G582390 Software Version: 3.3.6 Hardware Version: 1.2.5a Another device hit with the PoD! ping -l 65500 192.168.0.1 Only seems to work on the internal network. discovered by sipher...
Linksys SPA-2102 Phone Adapter Packet Handling - Denial of Service
Linksys SPA-2102 Phone Adapter Packet Handling - Denial of Service source: https://www.securityfocus.com/bid/28414/info Linksys SPA-2102 Phone Adapter is prone to a denial-of-service vulnerability when handling multiple packets in quick succession. Attackers can exploit this issue to deny access ...
Linksys SPA-2102 Phone Adapter Packet Handling - Denial of Service
source: https://www.securityfocus.com/bid/28414/info Linksys SPA-2102 Phone Adapter is prone to a denial-of-service vulnerability when handling multiple packets in quick succession. Attackers can exploit this issue to deny access to the device's control center for legitimate users. Reports indica...
SuSE 10 Security Update : PHP5 (ZYPP Patch Number 2102)
the CURL module lacked checks for control characters CVE-2006-2563 - strrepeat contained an integer overflow - ext/wddx contained a buffer overflow - memorylimit lacked checks for integer overflows - a bug in sscanf could potentially be exploited to execute arbitrary code. CVE-2006-4020 - an...
CVE-2007-2102
CVE-2007-2102 is a cross-site scripting (XSS) vulnerability in the weblog.php component of my little weblog . The provided details specify that the vulnerability can be triggered by supplying a crafted value to the id parameter, allowing remote attackers to inject arbitrary web script or HTML. Th...
CVE-2007-2102
Cross-site scripting XSS vulnerability in weblog.php in my little weblog allows remote attackers to inject arbitrary web script or HTML via the id parameter, a different vector than CVE-2006-6087...