3601 matches found
Simple HTTPd 1.42 Denial Of Service
!/usr/bin/python Exploit Title: Simple HTTPd 1.42 PoC DoS Date: 8/10/2011 Author: G13 Software Link: http://sourceforge.net/projects/shttpd/files/shttpd/1.42/shttpd-1.42.tar.gz/download Version: 1.42 Tested on: WinXP SP1 CVE : 2011-2900 Since Mongoose HTTPd and Simple HTTPd share similar code, th...
system-config-firewall security update
system-config-firewall: 1.2.27-3.3 - fixed possible privilege escalation flaw via use of python pickle CVE-2011-2520, replaced pickle by json rhbz717985 - stop D-BUS firewall mechanism on update system-config-printer: 1.1.16-17:.2 - Build pycups with -fno-strict-aliasing compiler option to avoid...
MS11-044: Vulnerability in .NET Framework Could Allow Remote Code Execution (2538814)
The JIT compiler included with the version of the .NET Framework installed on the remote host incorrectly validates certain values within an object. An attacker may be able to leverage this vulnerability to run arbitrary code as the logged in user or the user account of ASP.NET on the affected...
Microsoft .NET Framework Remote Code Execution Vulnerability (2538814)
This host is missing a critical security update according to Microsoft Bulletin MS11-044. OpenVAS Vulnerability Test $Id: secpodms11-044.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft .NET Framework Remote Code Execution Vulnerability 2538814 Authors: Sooraj KS Copyright: Copyright c 2011 SecPod,...
Microsoft .NET Framework Remote Code Execution Vulnerability (2538814)
This host is missing a critical security update according to Microsoft Bulletin MS11-044. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Microsoft .Net Framework multiple security vulnerabilities
Array index overflow, JIT compiler code execution...
Ubuntu 10.04 LTS / 10.10 / 11.04 : libmodplug vulnerabilities (USN-1148-1)
It was discovered that libmodplug did not correctly handle certain malformed S3M media files. If a user or automated system were tricked into opening a crafted S3M file, an attacker could cause a denial of service or possibly execute arbitrary code with privileges of the user invoking the program...
USN-1148-1: libmodplug vulnerabilities
It was discovered that libmodplug did not correctly handle certain malformed S3M media files. If a user or automated system were tricked into opening a crafted S3M file, an attacker could cause a denial of service or possibly execute arbitrary code with privileges of the user invoking the program...
Microsoft .NET Framework Security Bypass Vulnerability
The host is installed with Microsoft .NET Framework and is prone to security bypass vulnerability This NVT has been replaced by NVT secpodms11-044.nasl OID:1.3.6.1.4.1.25623.1.0.902522. OpenVAS Vulnerability Test $Id: secpodmsdotnetsecuritybypassvuln.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft...
Microsoft .NET Framework Security Bypass Vulnerability
Microsoft .NET Framework is prone to a security bypass vulnerability. This VT has been deprecated and replaced by the VT with the OID: 1.3.6.1.4.1.25623.1.0.902522. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C b...
CVE-2011-1271
The JIT compiler in Microsoft .NET Framework 3.5 Gold and SP1, 3.5.1, and 4.0, when IsJITOptimizerDisabled is false, does not properly handle expressions related to null strings, which allows context-dependent attackers to bypass intended access restrictions, and consequently execute arbitrary...
Design/Logic Flaw
The JIT compiler in Microsoft .NET Framework 3.5 Gold and SP1, 3.5.1, and 4.0, when IsJITOptimizerDisabled is false, does not properly handle expressions related to null strings, which allows context-dependent attackers to bypass intended access restrictions, and consequently execute arbitrary...
CVE-2011-1271
The CVE describes a JIT optimization flaw in Microsoft .NET Framework that mishandles null-string expressions, enabling context-dependent attackers to execute arbitrary code. Affected products/variants include .NET Framework 3.5 Gold/SP1 (and 3.5.1) and 4.0 when IsJITOptimizerDisabled is false. E...
CVE-2011-1271
The JIT compiler in Microsoft .NET Framework 3.5 Gold and SP1, 3.5.1, and 4.0, when IsJITOptimizerDisabled is false, does not properly handle expressions related to null strings, which allows context-dependent attackers to bypass intended access restrictions, and consequently execute arbitrary...
CVE-2011-1271
The JIT compiler in Microsoft .NET Framework 3.5 Gold and SP1, 3.5.1, and 4.0, when IsJITOptimizerDisabled is false, does not properly handle expressions related to null strings, which allows context-dependent attackers to bypass intended access restrictions, and consequently execute arbitrary...
EUVD-2011-1279
The JIT compiler in Microsoft .NET Framework 3.5 Gold and SP1, 3.5.1, and 4.0, when IsJITOptimizerDisabled is false, does not properly handle expressions related to null strings, which allows context-dependent attackers to bypass intended access restrictions, and consequently execute arbitrary...
[SECURITY] Fedora 13 Update: ikiwiki-3.20100815.7-1.fc13
Ikiwiki is a wiki compiler. It converts wiki pages into HTML pages suitable for publishing on a website. Ikiwiki stores pages and history in a revision control system such as Subversion or Git. There are many other features, including support for blogging, as well as a large array of plugins...
Debian DSA-2224-1 : openjdk-6 - several vulnerabilities
Several security vulnerabilities were discovered in OpenJDK, an implementation of the Java platform. - CVE-2010-4351 The JNLP SecurityManager returns from the checkPermission method instead of throwing an exception in certain circumstances, which might allow context-dependent attackers to bypass...
CVE-2010-3958
The x86 JIT compiler in Microsoft .NET Framework 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0 does not properly compile function calls, which allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application aka XBAP, 2 a crafted ASP.NET application, or 3 a crafted .NET Framework...
Memory corruption
The x86 JIT compiler in Microsoft .NET Framework 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0 does not properly compile function calls, which allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application aka XBAP, 2 a crafted ASP.NET application, or 3 a crafted .NET Framework...