Lucene search
+L

76 matches found

UbuntuCve
UbuntuCve
added 2008/12/01 5:30 p.m.27 views

CVE-2008-5301

Directory traversal vulnerability in the ManageSieve implementation in Dovecot 1.0.15, 1.1, and 1.2 allows remote attackers to read and modify arbitrary .sieve files via a ".." dot dot in a script name...

6.4CVSS5.9AI score0.01829EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2008/12/01 5:0 p.m.49 views

CVE-2008-5301

Directory traversal vulnerability in the ManageSieve implementation in Dovecot 1.0.15, 1.1, and 1.2 allows remote attackers to read and modify arbitrary .sieve files via a ".." dot dot in a script name...

6.4CVSS6.3AI score0.01829EPSS
Exploits0
CVE
CVE
added 2008/12/01 5:0 p.m.86 views

CVE-2008-5301

CVE-2008-5301 affects the Dovecot ManageSieve component with versions 1.0.15, 1.1, and 1.2. The vulnerability is a directory traversal: an attacker can supply a script name containing ".." to read and modify arbitrary .sieve files on the server. This is the explicit root cause identified in the c...

6.4CVSS7.3AI score0.01829EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2008/12/01 5:0 p.m.29 views

CVE-2008-5301

Directory traversal vulnerability in the ManageSieve implementation in Dovecot 1.0.15, 1.1, and 1.2 allows remote attackers to read and modify arbitrary .sieve files via a ".." dot dot in a script name...

7.3AI score0.01829EPSS
Exploits0References7
seebug.org
seebug.org
added 2008/04/11 12:0 a.m.24 views

Alsaplayer < 0.99.80-rc3 Vorbis Input Local Buffer Overflow Exploit

No description provided by source. I have released this exploit for the alsaplayer bug CVE-2007-5301. You can find all the needed files at http://www.wekk.net/research/CVE-2007-5301/ With my modified version of vorbiscomment, you can generate a ogg exploit like this: whats@debian:$...

6.8CVSS0.6AI score0.10238EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2008/04/11 12:0 a.m.18 views

Debian DSA-1538-1 : alsaplayer - buffer overrun

Erik Sjolund discovered a buffer overflow vulnerability in the Ogg Vorbis input plugin of the alsaplayer audio playback application. Successful exploitation of this vulnerability through the opening of a maliciously crafted Vorbis file could lead to the execution of arbitrary code. %NASLMINLEVEL...

6.8CVSS5.9AI score0.10238EPSS
Exploits6References3
securityvulns
securityvulns
added 2008/04/10 12:0 a.m.53 views

[CVE-2007-5301] alsaplayer PoC - exploit

Hello, I have released this PoC for the alsaplayer bug CVE-2007-5301. You can find all the needed files at http://www.wekk.net/research/CVE-2007-5301/ !/bin/sh http://www.wekk.net/research/CVE-2007-5301/CVE-2007-5301-exploit.sh Exploit for alsaplayer before 0.99.80-rc3. Tested with the debian etc...

6.8CVSS0.3AI score0.10238EPSS
Exploits6
Circl
Circl
added 2008/04/10 12:0 a.m.6 views

CVE-2007-5301

creationtimestamp| type| source ---|---|--- 2008-04-10 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/5424...

6.8CVSS5.7AI score0.10238EPSS
Exploits6References1
0day.today
0day.today
added 2008/04/10 12:0 a.m.49 views

Alsaplayer < 0.99.80-rc3 Vorbis Input Local Buffer Overflow Exploit

Exploit for linux platform in category local exploits =================================================================== Alsaplayer 0.99.80-rc3 Vorbis Input Local Buffer Overflow Exploit =================================================================== I have released this exploit for the...

6.8AI score0.10238EPSS
Exploits6
Packet Storm
Packet Storm
added 2008/04/10 12:0 a.m.30 views

alsaplayer-overflow.txt

I have released this exploit for the alsaplayer bug CVE-2007-5301. You can find all the needed files at http://www.wekk.net/research/CVE-2007-5301/ With my modified version of vorbiscomment, you can generate a ogg exploit like this: whats@debian:$ vorbiscomment.whats -w -t "TITLE=$perl -e 'print...

6.8CVSS6.4AI score0.10238EPSS
Exploits6
exploitpack
exploitpack
added 2008/04/10 12:0 a.m.46 views

AlsaPlayer 0.99.80-rc3 - Vorbis Input Local Buffer Overflow

AlsaPlayer 0.99.80-rc3 - Vorbis Input Local Buffer Overflow I have released this exploit for the alsaplayer bug CVE-2007-5301. You can find all the needed files at http://www.wekk.net/research/CVE-2007-5301/ With my modified version of vorbiscomment, you can generate a ogg exploit like this:...

6.8CVSS0.6AI score0.10238EPSS
Exploits6
Exploit DB
Exploit DB
added 2008/04/10 12:0 a.m.39 views

AlsaPlayer &lt; 0.99.80-rc3 - Vorbis Input Local Buffer Overflow

I have released this exploit for the alsaplayer bug CVE-2007-5301. You can find all the needed files at http://www.wekk.net/research/CVE-2007-5301/ With my modified version of vorbiscomment, you can generate a ogg exploit like this: whats@debian:$ vorbiscomment.whats -w -t "TITLE=$perl -e 'print...

6.8CVSS6.4AI score0.10238EPSS
Exploits6
Debian
Debian
added 2008/04/04 8:27 p.m.75 views

[SECURITY] [DSA 1538-1] New alsaplayer packages fix arbitrary code execution

------------------------------------------------------------------------ Debian Security Advisory DSA-1538-1 [email protected] http://www.debian.org/security/ Devin Carraway April 04, 2008 http://www.debian.org/security/faq -...

6.8CVSS6.6AI score0.10238EPSS
Exploits6
Debian CVE
Debian CVE
added 2007/10/09 6:0 p.m.62 views

CVE-2007-5301

Buffer overflow in the vorbisstreaminfo function in input/vorbis/vorbisengine.c aka the vorbis input plugin in AlsaPlayer before 0.99.80-rc3 allows remote attackers to execute arbitrary code via a .OGG file with long comments...

6.8CVSS7.5AI score0.10238EPSS
Exploits6
CVE
CVE
added 2007/10/09 6:0 p.m.61 views

CVE-2007-5301

CVE-2007-5301 affects Alsaplayer's Ogg Vorbis input plugin. The vulnerability is a buffer overflow in vorbis_stream_info/vorbis_engine.c that can allow remote code execution when a malicious .OGG file with long comments is opened. Debian fixed it in DSA-1538-1 (ups/patches for 0.99.76-9+etch1 and...

6.8CVSS7.5AI score0.10238EPSS
Exploits6References11Affected Software1
CVE
CVE
added 2006/10/17 3:0 p.m.48 views

CVE-2006-5301

CVE-2006-5301 is a PHP remote file inclusion vulnerability affecting the SpamBlockerMODv 1.0.2 (and earlier) module for phpBB. The flaw resides in includes/antispam.php where untrusted input supplied to the phpbb_root_path parameter can cause the server to include and execute arbitrary PHP code s...

6.8CVSS7.6AI score0.05513EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder