Free Download Manager Remote Control Server HTTP Authorization buffer overflow

Added: 02/04/2009 CVE: CVE-2009-0183 BID: 33554 OSVDB: 51745 Background Free Download Manager is a download accelerator and manager for Windows systems. Problem A buffer overflow vulnerability in the Free Download Manager Remote Control Server allows remote attackers to execute arbitrary commands...

CVE-2009-0183

Stack-based buffer overflow in Remote Control Server in Free Download Manager FDM 2.5 Build 758 and 3.0 Build 844 allows remote attackers to execute arbitrary code via a long Authorization header in an HTTP request...

Stack overflow

Stack-based buffer overflow in Remote Control Server in Free Download Manager FDM 2.5 Build 758 and 3.0 Build 844 allows remote attackers to execute arbitrary code via a long Authorization header in an HTTP request...

CVE-2009-0183

Stack-based buffer overflow in Remote Control Server in Free Download Manager FDM 2.5 Build 758 and 3.0 Build 844 allows remote attackers to execute arbitrary code via a long Authorization header in an HTTP request...

CVE-2009-0183

Stack-based buffer overflow in Remote Control Server in Free Download Manager FDM 2.5 Build 758 and 3.0 Build 844 allows remote attackers to execute arbitrary code via a long Authorization header in an HTTP request...

Free Download Manager Remote Control Server Buffer Overflow

This module exploits a stack buffer overflow in Free Download Manager Remote Control 2.5 Build 758. When sending a specially crafted Authorization header, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...

Cisco Secure Access Control Server Detection

Binary data 4633.prm...

Cisco Secure Access Control Server (ACS) CSUserCGI.exe Help Facility XSS

Binary data ciscoacsucpxss.nbin...

Cisco Secure Access Control Server UCP service Detection

Binary data ciscoacsucpdetect.nbin...

Cisco Secure Access Control Server Detection

Binary data ciscoacsdetect.nbin...

Blue Coat K9 Web Protection buffer overflow

Buffer overflow on Referer header parsing. Buffer overflow on control server response parsing...

Update Protection against Cisco Secure Access Control Server UCP Application CSuserCGI.exe Buffer Overflow Vulnerability

A buffer overflow vulnerability has been discovered in Cisco User-Changeable Password UCP application. The Cisco UCP application is used by Cisco Secure Access Control Server ACS. It allows users to change their ACS passwords with a web-based utility. A remote attacker may exploit this issue to...

Cisco Secure ACS UCP CSuserCGI.exe buffer overflow

Added: 04/07/2008 CVE: CVE-2008-0532 BID: 28222 OSVDB: 42961 Background Cisco Secure Access Control Server ACS is a centralized user access control framework which can be used with routers, switches, firewalls, VPNs, and other devices. User Changeable Passwords UCP, a utility implemented by Cisco...

Buffer overflow

Multiple buffer overflows in securecgi-bin/CSuserCGI.exe in User-Changeable Password UCP before 4.2 in Cisco Secure Access Control Server ACS for Windows and ACS Solution Engine allow remote attackers to execute arbitrary code via a long argument located immediately after the Logout argument, and...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in securecgi-bin/CSuserCGI.exe in User-Changeable Password UCP before 4.2 in Cisco Secure Access Control Server ACS for Windows and ACS Solution Engine allow remote attackers to inject arbitrary web script or HTML via an argument located immediate...

CVE-2008-0533

Multiple cross-site scripting XSS vulnerabilities in securecgi-bin/CSuserCGI.exe in User-Changeable Password UCP before 4.2 in Cisco Secure Access Control Server ACS for Windows and ACS Solution Engine allow remote attackers to inject arbitrary web script or HTML via an argument located immediate...

CVE-2008-0532

Multiple buffer overflows in securecgi-bin/CSuserCGI.exe in User-Changeable Password UCP before 4.2 in Cisco Secure Access Control Server ACS for Windows and ACS Solution Engine allow remote attackers to execute arbitrary code via a long argument located immediately after the Logout argument, and...

CVE-2008-0532

CVE-2008-0532 describes a vulnerability in Cisco Secure Access Control Server (ACS) UCP, where multiple buffer overflows in CSuserCGI.exe allow remote code execution. An attacker can exploit a long argument following the Logout parameter to inject and run arbitrary code on affected systems. Affec...

RecurityLabs_Cisco_ACS_UCP_advisory.txt

Recurity Labs GmbH http://www.recurity-labs.com [email protected] Date: 12.03.2008 Vendor: Cisco Systems Product: Cisco Secure Access Control Server ACS for Windows User-Changeable Password UCP application Vulnerability: Multiple remote pre-authentication buffer overflows Cross Site...

Cisco Secure Access Control Server for Windows User-Changeable Password Vulnerabilities

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...