Wireshark多个协议处理模块远程拒绝服务漏洞

BUGTRAQ ID: 24662 CVECAN ID: CVE-2007-3389,CVE-2007-3390,CVE-2007-3391,CVE-2007-3392,CVE-2007-3393 Wireshark以前名为Ethereal，是一款非常流行的网络协议分析工具。 Wireshark的多个协议解析模块实现上存在漏洞，远程攻击者可能利用此漏洞导致控制用户机器。 如果处理了HTTP响应中的分块编码、特制iSeries抓包文件、畸形DCP...

CVE-2007-3390

Wireshark 0.99.5 and 0.10.x up to 0.10.14, when running on certain systems, allows remote attackers to cause a denial of service crash via crafted iSeries capture files that trigger a SIGTRAP...

Code injection

Wireshark 0.99.5 and 0.10.x up to 0.10.14, when running on certain systems, allows remote attackers to cause a denial of service crash via crafted iSeries capture files that trigger a SIGTRAP...

CVE-2007-3390

Wireshark 0.99.5 and 0.10.x up to 0.10.14, when running on certain systems, allows remote attackers to cause a denial of service crash via crafted iSeries capture files that trigger a SIGTRAP...

CVE-2007-3390

Wireshark 0.99.5 and 0.10.x up to 0.10.14, when running on certain systems, allows remote attackers to cause a denial of service crash via crafted iSeries capture files that trigger a SIGTRAP...

[SECURITY] Fedora 7 Update: zvbi-0.2.25-1.fc7

ZVBI provides functions to capture and decode VBI data. The vertical blanki ng interval VBI is an interval in a television signal that temporarily suspe nds transmission of the signal for the electron gun to move back up to the first line of the television screen to trace the next screen field. T...

Sql injection

Unspecified vulnerability in the Change Data Capture CDC component in Oracle Database 9.2.0.7, 10.1.0.5, and 10.2.0.2 has unknown impact and attack vectors, aka DB09. NOTE: as of 20070424, oracle has not disputed reliable claims that this issue involves multiple SQL injection vulnerabilities in t...

CVE-2007-2114

Multiple unspecified vulnerabilities in Oracle Database 10.1.0.5 and 10.2.0.2 have unknown impact and remote authenticated attack vectors, related to 1 Change Data Capture CDC, aka DB08, and 2 Oracle Instant Client, aka DB11. NOTE: as of 20070424, oracle has not disputed reliable claims that thes...

Buffer overflow

Multiple unspecified vulnerabilities in Oracle Database 10.1.0.5 and 10.2.0.2 have unknown impact and remote authenticated attack vectors, related to 1 Change Data Capture CDC, aka DB08, and 2 Oracle Instant Client, aka DB11. NOTE: as of 20070424, oracle has not disputed reliable claims that thes...

CVE-2007-2115

Unspecified vulnerability in the Change Data Capture CDC component in Oracle Database 9.2.0.7, 10.1.0.5, and 10.2.0.2 has unknown impact and attack vectors, aka DB09. NOTE: as of 20070424, oracle has not disputed reliable claims that this issue involves multiple SQL injection vulnerabilities in t...

CVE-2007-2114

Multiple unspecified vulnerabilities in Oracle Database 10.1.0.5 and 10.2.0.2 have unknown impact and remote authenticated attack vectors, related to 1 Change Data Capture CDC, aka DB08, and 2 Oracle Instant Client, aka DB11. NOTE: as of 20070424, oracle has not disputed reliable claims that thes...

CVE-2007-2115

Unspecified vulnerability in the Change Data Capture CDC component in Oracle Database 9.2.0.7, 10.1.0.5, and 10.2.0.2 has unknown impact and attack vectors, aka DB09. NOTE: as of 20070424, oracle has not disputed reliable claims that this issue involves multiple SQL injection vulnerabilities in t...

CVE-2007-2114

CVE-2007-2114 refers to multiple unspecified vulnerabilities in Oracle Database 10.1.0.5 and 10.2.0.2, specifically affecting Change Data Capture (CDC, DB08) and Oracle Instant Client (DB11). The description notes reliable claims that these issues are buffer overflows involving a long CHANGE_TABL...

CVE-2006-6953

The virtual keyboard implementation in GlobeTrotter Mobility Manager changes the color of a key as it is pressed, which allows local users to capture arbitrary keystrokes, such as for passwords, by shoulder surfing or grabbing periodic screenshots...

CVE-2007-0269

Unspecified vulnerability in Oracle Database 9.2.0.8, 10.1.0.5, and 10.2.0.3 has unknown impact and attack vectors related to the Change Data Capture and sys.dbmscdcsubscribe privileges, aka DB02...

Design/Logic Flaw

Unspecified vulnerability in Oracle Database 9.2.0.8, 10.1.0.5, and 10.2.0.3 has unknown impact and attack vectors related to the Change Data Capture and sys.dbmscdcsubscribe privileges, aka DB02...

CVE-2007-0269

CVE-2007-0269 affects Oracle Database 9.2.0.8, 10.1.0.5, and 10.2.0.3. The description specifies an unspecified vulnerability with unknown impact and attack vectors linked to Change Data Capture and the sys.dbms_cdc_subscribe privileges (aka DB02). The connected documents provide no concrete expl...

CVE-2007-0269

Unspecified vulnerability in Oracle Database 9.2.0.8, 10.1.0.5, and 10.2.0.3 has unknown impact and attack vectors related to the Change Data Capture and sys.dbmscdcsubscribe privileges, aka DB02...

In the benefits letter news system application file upload vulnerability-vulnerability warning-the black bar safety net

Recently everyone for dvbbs file upload vulnerability excited, thinking about other inside the system can not be used on? I will for the benefit of the letter of information systems to the topic! System environment: benefits letter press system 3. 1, Windows2000+sp4. Look at this line of code: |...

mAlbum v0.3 local file inclusion

25/11/06 @@ Produit Vulnrable : mAlbum v0.3 Site officiel du produit : http://satz.free.fr/ Vulnrabilitiezz : 1 Local file inclusion : http://127.0.0.1/malbum/index.php?gal=../../../../../../BOOT.INI00 Screen capturzz : http://anas.maslouhy.net/03.JPG Tux25 - tux025atgmailpointcom :...