security flaw

Certain USB drivers in the Linux 2.4 kernel use the copytouser function on uninitialized structures, which could allow local users to obtain sensitive information by reading memory that was not cleared from previous usage...

carboncopy.txt

The only reason this was never disclosed was originally in hopes of proper vendor response... I spoke to their tech support about 5 times but they were just total morons. I eventually gave up. I was going to write a shatter like attack so this could be exploited ala .exe file but I never had time...

CVE-2004-1624

Carbon Copy 6.0.5257 does not drop system privileges when opening external programs through the help topic interface, which allows local users to gain privileges via 1 the help topic interface in CCW32.exe, which launches Notepad, or 2 the help button in the Carbon Copy Scheduler CCSched.exe...

security flaw

The mysqlhotcopy script in mysql 4.0.20 and earlier, when using the scp method from the mysql-server package, allows local users to overwrite arbitrary files via a symlink attack on temporary files...

gaim -- buffer overflow in MSN protocol support

Due to a buffer overflow in the MSN protocol support for gaim 0.79 to 1.0.1, it is possible for remote clients to do a denial-of-service attack on the application. This is caused by an unbounded copy operation, which writes to the wrong buffer...

linux/x86 cp /bin/sh /tmp/katy ; chmod 4555 katy 126 bytes

linux/x86 cp /bin/sh /tmp/katy ; chmod 4555 katy 126 bytes. Shellcode exploit for linx86 platform / Linux/x86 /bin/cp /bin/sh /tmp/katy ; chmod 4555 /tmp/sh using fork / include char shellcode = "\xeb\x5e\x5f\x31\xc0\x88\x47\x07\x88\x47\x0f\x88\x47\x19\x89\x7f"...

linux/x86 cp /bin/sh /tmp/katy ; chmod 4555 katy 126 bytes

Exploit for linux/x86 platform in category shellcode ========================================================== linux/x86 cp /bin/sh /tmp/katy ; chmod 4555 katy 126 bytes ========================================================== / Linux/x86 /bin/cp /bin/sh /tmp/katy ; chmod 4555 /tmp/sh using fo...

CVE-2004-0200

Buffer overflow in the JPEG JPG parsing engine in the Microsoft Graphic Device Interface Plus GDI+ component, GDIPlus.dll, allows remote attackers to execute arbitrary code via a JPEG image with a small JPEG COM field length that is normalized to a large integer length before a memory copy...

[SECURITY] [DSA 538-1] New rsync packages fix unauthorised directory traversal and file access

-------------------------------------------------------------------------- Debian Security Advisory DSA 538-1 [email protected] http://www.debian.org/security/ Martin Schulze August 17th, 2004 http://www.debian.org/security/faq -...

DSA-538 rsync - unauthorised directory traversal and file access

Bulletin has no description...

ArGoSoft FTP Server 1.0/1.2/1.4 - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/9770/info ArGoSoft has released version 1.4.1.6 of their FTP Server to address multiple unspecified security vulnerabilities. These issues include three buffer overruns when handling overly long FTP SITE ZIP and SITE COPY commands, a file enumeration issu...

security flaw

Buffer overflow in the ReadFontAlias function in XFree86 4.1.0 to 4.3.0, when using the CopyISOLatin1Lowered function, allows local or remote authenticated users to execute arbitrary code via a malformed entry in the font alias font.alias file, a different vulnerability than CVE-2004-0083 and...

security flaw

Various routines for the ppc64 architecture on Linux kernel 2.6 prior to 2.6.2 and 2.4 prior to 2.4.24 do not use the copyfromuser function when copying data from userspace to kernelspace, which crosses security boundaries and allows local users to cause a denial of service...

DEBIAN-CVE-2003-0967

raddecode in FreeRADIUS 0.9.2 and earlier allows remote attackers to cause a denial of service crash via a short RADIUS string attribute with a tag, which causes memcpy to be called with a -1 length argument, as demonstrated using the Tunnel-Password attribute...

Remote Linux Kernel < 2.4.21 DoS in XDR routine.

Hello all, I have discovered a signed/unsigned issue in a routine responsible for demarshalling XDR data for NFSv3 procedure calls. As far as I can tell, this bug has existed since NFSv3 support was integrated. It has been silently fixed in 2.4.21. The bug is in the decodefh routine of...

Internet Explorer buffer overflow

Buffer overflow on copying HR tag with oversized align to clipboard...

RedHat 9.0 Slackware 8.1 - binmail Carbon Copy Field Buffer Overrun

RedHat 9.0 Slackware 8.1 - binmail Carbon Copy Field Buffer Overrun source: https://www.securityfocus.com/bid/7760/info A vulnerability has been discovered in the Linux /bin/mail utility. The problem occurs when processing excessive data within the carbon copy field. Due to insufficient bounds...

truegalerie.txt

Informations : °°°°°°°°°°°°°° Language : PHP Website : http://www.truelogik.net Version : 1.0 Problems : - Admin Access - File Copy PHP Code/Location : °°°°°°°°°°°°°°°°°°° verifadmin.php, checkadmin.php : ------------------------------------------------------------------------ "; echo ""; echo...

FreeBSD-SA-03:05.xdr

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-03:05.xdr Security Advisory The FreeBSD Project Topic: remote denial-of-service in XDR encoder/decoder Category: core Module: libc Announced: 2003-03-20 Credits:...

DEBIAN-CVE-2002-1368

Common Unix Printing System CUPS 1.1.14 through 1.1.17 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code by causing negative arguments to be fed into memcpy calls via HTTP requests with 1 a negative Content-Length value or 2 a negative length in a...