CVE-2006-3869

Heap-based buffer overflow in URLMON.DLL in Microsoft Internet Explorer 6 SP1 on Windows 2000 and XP SP1, with versions the MS06-042 patch before 20060824, allows remote attackers to cause a denial of service crash or execute arbitrary code via a long URL on a website that uses HTTP 1.1 compressi...

CVE-2006-3869

Heap-based buffer overflow in URLMON.DLL in Microsoft Internet Explorer 6 SP1 on Windows 2000 and XP SP1, with versions the MS06-042 patch before 20060824, allows remote attackers to cause a denial of service crash or execute arbitrary code via a long URL on a website that uses HTTP 1.1 compressi...

Microsoft Security Advisory (923762) Microsoft Security Advisory (923762): Long URLs to sites using HTTP 1.1 and compression Could Cause Internet Explorer 6 Service Pack 1 to Unexpectedly Exit

Microsoft Security Advisory 923762 Microsoft Security Advisory 923762: Long URLs to sites using HTTP 1.1 and compression Could Cause Internet Explorer 6 Service Pack 1 to Unexpectedly Exit Published: August 22, 2006 On August 15, 2006 Microsoft announced that it would be re-releasing MS06-042...

CVE-2006-3497

CVE-2006-3497 : A memory corruption vulnerability in Mac OS X’s Bom caused by the compression state handling of ZIP archives. A crafted ZIP file could crash the application or allow arbitrary code execution with the user’s privileges. Affected systems include Mac OS X 10.3.9 and 10.4.7. Remediati...

CVE-2006-3497

Unspecified vulnerability in the "compression state handling" in Bom for Apple Mac OS X 10.3.9 and 10.4.7 allows user-assisted attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted Zip archive...

CentOS 4 : zlib (CESA-2005:569)

Updated Zlib packages that fix a buffer overflow are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. Zlib is a general-purpose lossless data compression library which is used by many different...

CentOS 4 : zlib (CESA-2005:584)

Updated zlib packages that fix a buffer overflow are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. Zlib is a general-purpose lossless data compression library that is used by many different...

Crack the password file with spear and shield encryption and decryption battle-vulnerability warning-the black bar safety net

Currently on the network encryption software have mushroomed General everywhere, their price is often in the 3 0 yuan, and many friends also have to fork out money to buy these encryption software, but they really can play the role of encryption? Author Super rabbit and WinRAR both software for...

ASP database plug horse small conference-vulnerability warning-the black bar safety net

lake2 （ http://lake2.0x54.org ） With the development of technology, ASP database plug horse also is not what fresh stuff, believe you played this. Oh, and that you have not met insert the asp code is spaces apart case? i.e. insertion of each of the characters between the There are spaces for? Now...

ASP database plug horse small conference-vulnerability warning-the black bar safety net

With the development of technology, ASP database plug horse also is not what fresh stuff, believe you played this. Oh, and that you have not met insert the asp code is spaces apart case? i.e. insertion of each of the characters between the There are spaces for? Now, let us to solve this problem...

[Overflow.pl] Clam AntiVirus Win32-UPX Heap Overflow (not default configuration)

Overflow.pl Security Advisory 5 Clam AntiVirus Win32-UPX Heap Overflow not default configuration Vendor: Clam AntiVirus Affected version: Prior to 0.88.1 Vendor status: Fixed version released 0.88.1 Author: Damian Put [email protected] URL: http://www.overflow.pl/adv/clamavupxinteger.txt Date:...

DSA-1026-1 sash - buffer overflows

Bulletin has no description...

Design/Logic Flaw

Unspecified vulnerability in the HTTP compression functionality in Cisco CSS 11500 Series Content Services switches allows remote attackers to cause a denial of service device reload via 1 "valid, but obsolete" or 2 "specially crafted" HTTP requests...

CVE-2006-1631

The CVE-2006-1631 entry refers to a vulnerability in Cisco 11500 Series Content Services switches where the HTTP compression feature can be abused to trigger a denial-of-service (device reload) by sending certain HTTP requests (either valid but obsolete or specially crafted). Exploitation details...

CVE-2006-1631

Unspecified vulnerability in the HTTP compression functionality in Cisco CSS 11500 Series Content Services switches allows remote attackers to cause a denial of service device reload via 1 "valid, but obsolete" or 2 "specially crafted" HTTP requests...

[VulnWatch] Cisco Security Advisory: Cisco 11500 Content Services Switch HTTP Request Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco 11500 Content Services Switch HTTP Request Vulnerability Advisory ID: cisco-sa-20060405-css http://www.cisco.com/warp/public/707/cisco-sa-20060405-css.shtml Revision 1.0 For Public Release 2006 April 05 1500 GMT UTC -...

Out of memory crash in Freeciv 2.0.7

Luigi Auriemma Application: Freeciv http://www.freeciv.org Versions: = 2.0.7 Platforms: Windows, nix, BSD, MacOS and more Bug: bad memory allocation Exploitation: remote, versus server Date: 06 Mar 2006 Author: Luigi Auriemma e-mail: [email protected] web: http://aluigi.altervista.org 1...

StuffIt and ZipMagic Family of products Directory traversal

StuffIt and ZipMagic Family of products Directory traversal The StuffIt and ZipMagic Family of products is designed to meet any level of compression needs; from basic expansion to advanced archive manipulation, to automating routine compression tasks, and even building compression into a software...

Archive_Tar v 1.2(Tested) (Tar file management class) Directory traversal

ArchiveZipr Zip file management class Directory traversal This class provides handling of tar files in PHP. It supports creating, listing, extracting and adding to tar files. Gzip support is available if PHP has the zlib extension built-in or loaded. Bz2 compression is also supported with the bz2...

zoo contains exploitable buffer overflows

Topic: zoo contains exploitable buffer overflows Announced: 2006-02-22 Product: zoo Category: Applications/Archiving Impact: Remote code execution Credits: Jean-Sbastien Guay-Leroux I. BACKGROUND zoo is a file archiving utility for maintaining collections of files. It uses Lempel-Ziv compression ...