7640 matches found
HP-UX 10.x - stmkfont Alternate Typeface Library Buffer Overflow (1)
// source: https://www.securityfocus.com/bid/6836/info A buffer overflow vulnerability has been reported in the stmkfont utility shipped with HP-UX systems. The problem occurs due to insufficient bounds checking on user-suplied data to the alternate typeface library command-line option. A local...
RARLAB FAR 1.651.70 - File Manager Buffer Overflow
RARLAB FAR 1.651.70 - File Manager Buffer Overflow source: https://www.securityfocus.com/bid/6822/info A buffer overflow vulnerability has been reported for FAR that may result in a denial of service condition. The vulnerability exists due to insufficient bounds checking performed by FAR when...
RARLAB FAR 1.65/1.70 - File Manager Buffer Overflow
source: https://www.securityfocus.com/bid/6822/info A buffer overflow vulnerability has been reported for FAR that may result in a denial of service condition. The vulnerability exists due to insufficient bounds checking performed by FAR when parsing directory paths. Specifically, when FAR attemp...
Celestial Software AbsoluteTelnet 2.0/2.11 - Title Bar Buffer Overflow
source: https://www.securityfocus.com/bid/6785/info A buffer overflow vulnerability was reported for AbsoluteTelnet. The vulnerability exists due to insufficient bounds checking performed when setting the title bar of the client. An attacker can exploit this vulnerability by enticing a victim use...
a.shopKart Shopping Cart remote vulnerabilities
Centaura Technologies Security Research Lab Advisory Product Name: a.shopKart Web Shopping Cart Systems: Windows NT/2000/.NET Server Severity: High Risk Remote: Yes Category: Insuficient input checking Vendor URL: http://www.urlogy.com Advisory Author: Ignacio Vazquez Advisory URL:...
multiple buffer overflows in xboing
Steve Kemp reports in a Debian bug submission: Due to improper bounds checking it is possible for a malicious user to gain a shell with membership group 'games'. The binary is installed setgid games. Environmental variables are used without being bounds-checked in any way, from the source code:...
[SECURITY] [DSA-206-1] tcpdump BGP decoding error
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-206-1 [email protected] http://www.debian.org/security/ Wichert Akkerman December 10, 2002 -...
Cyrus SASL library buffer overflows
These overflows are found at least in version 2.1.9, none of them are present in 1.5.28. 2.1.10 was just released which fixed the problems. Note that besides the Cyrus project itself, the SASL library is also used by Postfix-TLS patch, OpenLDAP and probably some other servers. Problem 1 ---------...
TracerouteNG - never ending story
Hi everyone, I want to provide some additional information about the recently discovered traceroute-ng flaw. I decided to disclose to details right now because I do not believe that the flaw is easily exploitable. 1 The vulnerablilty. The patch provided by vendors like SuSE is not sufficient. It...
WSMP3 0.0.10.0.2 - Remote Heap Corruption (2)
WSMP3 0.0.10.0.2 - Remote Heap Corruption 2 // source: https://www.securityfocus.com/bid/6240/info A remotely exploitable heap corruption vulnerability has been reported for WSMP3. Due to insufficient bounds checking of user-supplied input, it is possible for a remote attacker to corrupt heap...
WSMP3 0.0.10.0.2 - Multiple Buffer Overflow Vulnerabilities
WSMP3 0.0.10.0.2 - Multiple Buffer Overflow Vulnerabilities source: https://www.securityfocus.com/bid/6239/info Several buffer overflow conditions have been reported for WSMP3. The vulnerability is due to improper bounds checking when copying data to local buffers. An attacker can exploit this...
WSMP3 0.0.10.0.2 - Remote Heap Corruption (1)
WSMP3 0.0.10.0.2 - Remote Heap Corruption 1 source: https://www.securityfocus.com/bid/6240/info A remotely exploitable heap corruption vulnerability has been reported for WSMP3. Due to insufficient bounds checking of user-supplied input, it is possible for a remote attacker to corrupt heap memory...
WSMP3 0.0.1/0.0.2 - Multiple Buffer Overflow Vulnerabilities
source: https://www.securityfocus.com/bid/6239/info Several buffer overflow conditions have been reported for WSMP3. The vulnerability is due to improper bounds checking when copying data to local buffers. An attacker can exploit this vulnerability by sending an overly long request to the...
WSMP3 0.0.1/0.0.2 - Remote Heap Corruption (1)
source: https://www.securityfocus.com/bid/6240/info A remotely exploitable heap corruption vulnerability has been reported for WSMP3. Due to insufficient bounds checking of user-supplied input, it is possible for a remote attacker to corrupt heap memory. By corrupting allocated memory headers, it...
MailEnable 1.501x - Email Server Buffer Overflow
MailEnable 1.501x - Email Server Buffer Overflow // source: https://www.securityfocus.com/bid/6197/info A buffer overflow vulnerability has been reported for MailEnable's POP3 server. The vulnerability is due to insufficent bounds checking of the USER login field. An attacker can exploit this...
HP CIFS9000 Server A.01.05A.01.06 - Local Buffer Overflow
HP CIFS9000 Server A.01.05A.01.06 - Local Buffer Overflow // source: https://www.securityfocus.com/bid/5088/info A vulnerability has been reported in the /opt/cifsclient/bin/cifslogin utility distributed with CIFS/9000. The utility is prone to several buffer overflow conditions and may lead to ro...
Alt-N MDaemon 6.0.x - POP Server Buffer Overflow
Alt-N MDaemon 6.0.x - POP Server Buffer Overflow source: https://www.securityfocus.com/bid/6053/info A buffer overflow vulnerability has been reported for MDaemon. The vulnerability is due to inadequate bounds checking on some POP server commands. An attacker can exploit this vulnerability by...
Alt-N MDaemon 6.0.x - POP Server Buffer Overflow
source: https://www.securityfocus.com/bid/6053/info A buffer overflow vulnerability has been reported for MDaemon. The vulnerability is due to inadequate bounds checking on some POP server commands. An attacker can exploit this vulnerability by submitting a very large integer value to some comman...
vpopmail CGIapps vpasswd vulnerabilities
Centaura Technologies Security Research Lab Advisory Product Name: vpopmail-CGIApps Systems: Linux/OpenBSD/FreeBSD/NetBSD Severity: High Risk Remote: Yes Category: Insuficient input checking Vendor URL: http://diario.buscadoc.org/index.php?topic=Programas Advisory Author: Ignacio Vazquez Advisory...
vpopmail CGIapps vadddomain multiple vulnerabilities
Centaura Technologies Security Research Lab Advisory Product Name: vpopmail-CGIApps Systems: Linux/OpenBSD/FreeBSD/NetBSD Severity: High Risk Remote: Yes Category: Insuficient input checking Vendor URL: http://diario.buscadoc.org/index.php?topic=Programas Advisory Author: Ignacio Vazquez Advisory...