Maelstrom Player 3.0.x - Argument Buffer Overflow (2)

// source: https://www.securityfocus.com/bid/7632/info Maelstrom for Linux has been reported prone to a buffer overflow vulnerability. The issue is reportedly due to a lack of sufficient bounds checking performed on user-supplied data before it is copied into an internal memory space. It may be...

Maelstrom Server 3.0.x - Argument Buffer Overflow (3)

// source: https://www.securityfocus.com/bid/7630/info Maelstrom for Linux has been reported prone to a buffer overflow vulnerability. The issue is reportedly due to a lack of sufficient bounds checking performed on user-supplied data before it is copied into an internal memory space. It may be...

dsr-adv001.txt

on: attachment; filename="dsr-adv001.txt" -Dtors Security Research- - www.dtors.net - -Package: Firebird1.0.2 FreeBSD -Versions Affected: 1.0.2 -Website: http://firebird.sf.net -Exploit: Local Stack Overflow -Date: 22/03/2003 -Author: [email protected] && [email protected] ---BACKGROUND Firebird is a...

Youngzsoft CMailServer 4.0 - 'RCPT TO' Buffer Overflow

source: https://www.securityfocus.com/bid/7548/info A buffer overflow vulnerability has been reported for CMailServer. The vulnerability exists due to insufficient bounds checking when parsing e-mail headers. Specifically, an overly long RCPT TO e-mail header will cause CMailServer to crash and...

Microsoft SQL Server 7.02000 JET Database Engine 4.0 - Buffer Overrun

Microsoft SQL Server 7.02000 JET Database Engine 4.0 - Buffer Overrun source: https://www.securityfocus.com/bid/7541/info Microsoft SQL Server is prone to an exploitable buffer overrun vulnerability via the Jet Database Engine. This can occur while the JET 4.0 OLE DB data provider is querying dat...

Microsoft SQL Server 7.0/2000 JET Database Engine 4.0 - Buffer Overrun

source: https://www.securityfocus.com/bid/7541/info Microsoft SQL Server is prone to an exploitable buffer overrun vulnerability via the Jet Database Engine. This can occur while the JET 4.0 OLE DB data provider is querying data supplied via a remote source and is due to insufficient bounds...

HP-UX 11 RWrite - Buffer Overflow

HP-UX 11 RWrite - Buffer Overflow source: https://www.securityfocus.com/bid/7489/info HP-UX rwrite utility has been reported prone to a buffer overflow vulnerability. Although unconfirmed code execution with elevated privileges may be possible. The condition presents itself when excessive data is...

HP-UX 11 RWrite - Buffer Overflow

source: https://www.securityfocus.com/bid/7489/info HP-UX rwrite utility has been reported prone to a buffer overflow vulnerability. Although unconfirmed code execution with elevated privileges may be possible. The condition presents itself when excessive data is supplied as part of an argument...

3D-FTP Client 4.0 - Buffer Overflow

source: https://www.securityfocus.com/bid/7451/info It has been reported that 3D-FTP client may be prone to a buffer overflow condition. This issue is due to the client not implementing sufficient bounds checking on banner data copied into local memory buffers. It may be possible for remote...

Opera 6.0.x/7.0 - Long File Name Remote Heap Corruption

source: https://www.securityfocus.com/bid/7450/info A vulnerability has been reported for Opera versions 7.10 and earlier. The problem is said to occur due to insufficient bounds checking on filename extensions. As a result, it may be possible for an attacker to corrupt heap-based memory...

Libopt.a 3.1x - Error Logging Buffer Overflow (1)

Libopt.a 3.1x - Error Logging Buffer Overflow 1 / source: https://www.securityfocus.com/bid/7433/info Libopt library has been reported prone to a buffer overflow vulnerability. It has been reported that several Libopt.a error logging functions, may be prone to buffer overflow vulnerabilities when...

Libopt.a 3.1x - Error Logging Buffer Overflow (2)

source: https://www.securityfocus.com/bid/7433/info Libopt library has been reported prone to a buffer overflow vulnerability. It has been reported that several Libopt.a error logging functions, may be prone to buffer overflow vulnerabilities when handling excessive data. The data may be supplied...

Libopt.a 3.1x - Error Logging Buffer Overflow (1)

/ source: https://www.securityfocus.com/bid/7433/info Libopt library has been reported prone to a buffer overflow vulnerability. It has been reported that several Libopt.a error logging functions, may be prone to buffer overflow vulnerabilities when handling excessive data. The data may be suppli...

Coppermine Photo Gallery remote compromise

---AFFECTED SOFTWARE--- From the website, http://www.chezgreg.net/coppermine/: "Coppermine Photo Gallery is a picture gallery script. Users can upload pictures with a web browser thumbnails are created on the fly, add comments, send e-cards and view statistics about the pictures. " "The script us...

Sendmail: -1 gone wild

CVE: CAN-2003-0161 CERT: VU897604 FORCED RELEASE -- VENDOR NOTIFIED AS OF 03/18/03 There is a vulnerability in Sendmail versions 8.12.8 and prior. The address parser performs insufficient bounds checking in certain conditions due to a char to int conversion, making it possible for an attacker to...

GlobalScape CuteFTP 5.0 - LIST Response Buffer Overflow

GlobalScape CuteFTP 5.0 - LIST Response Buffer Overflow source: https://www.securityfocus.com/bid/6642/info A buffer overflow condition has been reported for the CuteFTP application. The vulnerability is due to insufficient bounds checking performed on certain FTP command responses. If CuteFTP is...

FreeBSD-SA-03:05.xdr

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-03:05.xdr Security Advisory The FreeBSD Project Topic: remote denial-of-service in XDR encoder/decoder Category: core Module: libc Announced: 2003-03-20 Credits:...

Dr.Web 4.x - Virus Scanner Folder Name Buffer Overflow (PoC)

source: https://www.securityfocus.com/bid/7022/info A buffer overflow vulnerability has been reported for Dr. Web virus scanner. The vulnerability is due to insufficient bounds checking when processing folder names. An attacker is able to exploit this vulnerability by creating a malicious folder...

Microsoft Windows XP/ME - Help and Support Center Buffer Overflow

// source: https://www.securityfocus.com/bid/6966/info The Microsoft Windows ME Help and Support Center is prone to a buffer overflow. This is due to insufficient bounds checking on input supplied through the HCP URI parameter. An attacker can exploit this vulnerability by making a HCP request wi...

sircd proof-of-concept / advisory

I. BACKGROUND According to the vendor "The 'sircd' project started as an idea from the QuakeNet IRC Network coding team to develop a completely new irc server that had none of the problems of the original ircd, such as instability, scalability issues, redundant, badly written code and other nasty...