176 matches found
ZeroAccess Peer To Peer Botnet Takedown Incomplete
Microsoft trumpeted its disruption of the ZeroAccess peer-to-peer botnet late last week, but some experts are holding off on scheduling a celebratory ticker-tape parade. With numerous successful takedowns of botnets with a centralized command and control infrastructure in its back pocket, Microso...
WebDAV aeration directory write permissions vulnerability-vulnerability warning-the black bar safety net
Recently, the 3 6 0 Web sitessecurity testingplatform issued an emergency Safety notice, widely used communication Protocol WebDAV there is a directory write permission to the high-risk vulnerabilities, an attacker can upload arbitrary text files, and combined with the server to resolve the...
NetSupport Client Handshake Hostname Overflow
Added: 10/11/2011 CVE: CVE-2011-0404 BID: 45728 OSVDB: 70408 Background NetSupport Manager is a remote desktop support solution. Problem The NetSupport client/server communication is carried out over a proprietary communications protocol. This protocol begins with a handshake between the client a...
Symantec Backup Exec Products Arbitrary Command Execution vulnerability
This host is installed with Symantec Backup Exec Products and is prone to arbitrary command execution vulnerability. OpenVAS Vulnerability Test $Id: gbsymantecbackupexecprdtscmdexecvulnwin.nasl 8199 2017-12-20 13:37:22Z cfischer $ Symantec Backup Exec Products Arbitrary Command Execution...
Symantec Backup Exec Products Arbitrary Command Execution vulnerability
Symantec Backup Exec Products is prone to an arbitrary command execution vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Zend Server Java Bridge Design Flaw Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Zend Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Zend Java Bridge v3.1 component of the Zend Server framework. The javamw.jar service...
[SECURITY] [DSA 2095-1] New lvm2 packages fix denial of service
------------------------------------------------------------------------ Debian Security Advisory DSA-2095-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano August 23, 2010 http://www.debian.org/security/faq -...
How to identify and clean Conficker infections
As the world prepares for the complete destruction of the Internet tomorrow when the Conficker worm makes a small change in its communication protocol, a voice of reason has emerged from the wilderness. The Honeynet Project on Monday released a paper with a detailed analysis of the worm as well a...
Buffer overflow
Buffer overflow in x87 before 3.5.5 in ABB Process Communication Unit 400 PCU400 4.4 through 4.6 allows remote attackers to execute arbitrary code via a crafted packet using the 1 IEC60870-5-101 or 2 IEC60870-5-104 communication protocol to the X87 web interface...
CVE-2008-2474
Buffer overflow in x87 before 3.5.5 in ABB Process Communication Unit 400 PCU400 4.4 through 4.6 allows remote attackers to execute arbitrary code via a crafted packet using the 1 IEC60870-5-101 or 2 IEC60870-5-104 communication protocol to the X87 web interface...
CVE-2008-2474
CVE-2008-2474 describes a buffer overflow in the ABB PCU400 x87 web interface. The vulnerability affects ABB PCU400 versions 4.4–4.6, where a specially crafted packet sent via IEC60870-5-101 or IEC60870-5-104 to the X87 web interface can allow a remote attacker to execute arbitrary code. The issu...
CVE-2005-0396
Desktop Communication Protocol DCOP daemon, aka dcopserver, in KDE before 3.4 allows local users to cause a denial of service dcopserver consumption by "stalling the DCOP authentication process."...
security flaw
Desktop Communication Protocol DCOP daemon, aka dcopserver, in KDE before 3.4 allows local users to cause a denial of service dcopserver consumption by "stalling the DCOP authentication process."...
kdelibs -- local DCOP denial of service vulnerability
A KDE Security Advisory reports: Sebastian Krahmer of the SUSE LINUX Security Team reported a local denial of service vulnerability in KDE's Desktop Communication Protocol DCOP daemon better known as dcopserver. A local user can lock up the dcopserver of arbitrary other users on the same machine...
security flaw
Buffer overflow in wccp.c in Squid 2.5 before 2.5.STABLE7 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long WCCP packet, which is processed by a recvfrom function call that uses an incorrect length parameter...
USN-67-1: Squid vulnerabilities
infamous41md discovered several Denial of Service vulnerabilities in squid. A malicious Gopher server could crash squid by sending a line bigger than 4096 bytes. CAN-2005-0094 If squid is configured to send WCPP Web Cache Communication Protocol messages to a "home router", an attacker who was abl...