559 matches found
Debian DSA-800-1 : pcre3 - integer overflow
An integer overflow with subsequent buffer overflow has been detected in PCRE, the Perl Compatible Regular Expressions library, which allows an attacker to execute arbitrary code. Since several packages link dynamically to this library you are advised to restart the corresponding services or...
CVE-2005-2675
CVE-2005-2675 corresponds to multiple SQL injection vulnerabilities in Land Down Under (LDU) 800/800-series in which remote attackers could manipulate SQL queries via various PHP script parameters (forums.php, list.php, journal.php, forums.php, links.php). OpenVAS/Nessus entries corroborate SQLi ...
CVE-2005-2674
Note: the vendor has disputed this issue. Multiple cross-site scripting XSS vulnerabilities in Land Down Under LDU 800 allow remote attackers to inject arbitrary web script or HTML via the 1 c or 2 m parameters to index.php or 3 w parameter to journal.php. NOTE: this issue has been disputed by th...
CVE-2005-2674
Affected product: Land Down Under (LDU) 800 series (
CVE-2005-2674
Note: the vendor has disputed this issue. Multiple cross-site scripting XSS vulnerabilities in Land Down Under LDU 800 allow remote attackers to inject arbitrary web script or HTML via the 1 c or 2 m parameters to index.php or 3 w parameter to journal.php. NOTE: this issue has been disputed by th...
PT-2005-3560 · Land Down Under · Land Down Under (Ldu) 800
Name of the Vulnerable Software and Affected Versions: Land Down Under LDU 800 Description: Multiple cross-site scripting XSS vulnerabilities allow remote attackers to inject arbitrary web script or HTML via the c or m parameters to "index.php" or the w parameter to "journal.php". The vendor has...
HP-UX PHCO_23178 : HPSBUX0101-138 Sec. Vulnerability in man(1) command (rev.1)
s700800 11.04 VVOS man1 patch : All HP9000 series 700/800 workstations and servers. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHCO23178. The text itself is copyright C Hewlett-Packard Development Company,...
DEBIAN-CVE-2004-1076
Multiple buffer overflows in the RtConfigLoad function in rt-config.c for Atari800 before 1.3.4 allow local users to execute arbitrary code via large values in the configuration file...
CVE-2003-0630
Multiple buffer overflows in the atari800.svgalib setuid program of the Atari 800 emulator atari800 before 1.2.2 allow local users to gain privileges via long command line arguments, as demonstrated with the -osarom argument...
CVE-2003-0630
Multiple buffer overflows in the atari800.svgalib setuid program of the Atari 800 emulator atari800 before 1.2.2 allow local users to gain privileges via long command line arguments, as demonstrated with the -osarom argument...
SynAtari800.pl
!perl PoC By OpTiKoOl, for Atari 800 Emulator, Version 1.3.0 based on http://www.securityfocus.com/archive/1/331518/2003-08-01/2003-08-07/0 - This PoC exploits a bof in parsing a very long config file 250 bytes As in the advisory there's other bofs. but i just researched this one to make a...
CVE-2002-0255
The default configuration of Arescom NetDSL 800 does not require authentication, which allows remote attackers to cause a denial of service or reconfigure the router...
CVE-2002-0255
The default configuration of Arescom NetDSL 800 does not require authentication, which allows remote attackers to cause a denial of service or reconfigure the router...
CVE-2002-0255
The CVE-2002-0255 entry concerns the Arescom NetDSL 800 where the default configuration does not require authentication. According to the provided documents, this enables remote attackers to cause a denial of service or reconfigure the router. No exploit details, affected firmware versions, or re...
CVE-1999-1163
Vulnerability in HP Series 800 S/X/V Class servers allows remote attackers to gain access to the S/X/V Class console via the Service Support Processor SSP Teststation...
CVE-1999-1163
CVE-1999-1163 describes a vulnerability in HP Series 800 S/X/V Class servers where the Service Support Processor (SSP) Teststation allows remote attackers to gain access to the S/X/V Class console. The NVD entry lists an attack vector of NETWORK with no authentication and indicates partial impact...
MetaProducts Offline Explorer 1.x - FileSystem Disclosure
MetaProducts Offline Explorer 1.x - FileSystem Disclosure source: https://www.securityfocus.com/bid/2084/info MetaProducts Offline Explorer is an application that allows a user to download the contents of a website or FTP site for offline browsing at a later time. It is possible to view the full...
MetaProducts Offline Explorer 1.0 x/1.1 x/1.2 x - Directory Traversal
source: https://www.securityfocus.com/bid/1231/info MetaProducts Offline Explorer is an application that allows a user to download the contents of a website or FTP site for offline browsing at a later time. It is possible to view known files on a system Offline Explorer resides on. By default,...
CVE-1999-1163
Vulnerability in HP Series 800 S/X/V Class servers allows remote attackers to gain access to the S/X/V Class console via the Service Support Processor SSP Teststation...