kernel: sit memory leak

Memory leak in the ipip6rcv function in net/ipv6/sit.c in the Linux kernel 2.4 before 2.4.36.5 and 2.6 before 2.6.25.3 allows remote attackers to cause a denial of service memory consumption via network traffic to a Simple Internet Transition SIT tunnel interface, related to the pskbmaypull and...

kernel: sit memory leak

Memory leak in the ipip6rcv function in net/ipv6/sit.c in the Linux kernel 2.4 before 2.4.36.5 and 2.6 before 2.6.25.3 allows remote attackers to cause a denial of service memory consumption via network traffic to a Simple Internet Transition SIT tunnel interface, related to the pskbmaypull and...

security flaw

The DefineConstantPool action in the ActionScript 2 virtual machine in Adobe Flash Player 10.x before 10.0.12.36 and 9.x before 9.0.151.0, and Adobe AIR before 1.5, accepts an untrusted input value for a "constant count," which allows remote attackers to read sensitive data from process memory vi...

Mozilla crashes with evidence of memory corruption

Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related...

FreeBSD Security Advisory (FreeBSD-SA-03:16.filedesc.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-03:16.filedesc.asc ADV FreeBSD-SA-03:16.filedesc.asc OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008...

FreeBSD Security Advisory (FreeBSD-SA-03:16.filedesc.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-03:16.filedesc.asc SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Windows Vulnerability in Microsoft Jet Database Engine

The remote host is probably affected by the vulnerability described in CVE-2007-6026 Impact Stack-based buffer overflow in Microsoft msjet40.dll 4.0.8618.0 aka Microsoft Jet Engine, as used by Access 2003 in Microsoft Office 2003 SP3, allows user-assisted attackers to execute arbitrary code via a...

kernel: sit memory leak

Memory leak in the ipip6rcv function in net/ipv6/sit.c in the Linux kernel 2.4 before 2.4.36.5 and 2.6 before 2.6.25.3 allows remote attackers to cause a denial of service memory consumption via network traffic to a Simple Internet Transition SIT tunnel interface, related to the pskbmaypull and...

VulnCheck KEV: CVE-2007-0071

Integer overflow in Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, allows remote attackers to execute arbitrary code via a crafted SWF file with a negative Scene Count value, which passes a signed comparison, is used as an offset of a NULL pointer, and triggers a buffer...

CVE-2008-2136

Memory leak in the ipip6rcv function in net/ipv6/sit.c in the Linux kernel 2.4 before 2.4.36.5 and 2.6 before 2.6.25.3 allows remote attackers to cause a denial of service memory consumption via network traffic to a Simple Internet Transition SIT tunnel interface, related to the pskbmaypull and...

CVE-2008-2136

Memory leak in the ipip6rcv function in net/ipv6/sit.c in the Linux kernel 2.4 before 2.4.36.5 and 2.6 before 2.6.25.3 allows remote attackers to cause a denial of service memory consumption via network traffic to a Simple Internet Transition SIT tunnel interface, related to the pskbmaypull and...

Flash Player input validation error

Integer overflow in Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, allows remote attackers to execute arbitrary code via a crafted SWF file with a negative Scene Count value, which passes a signed comparison, is used as an offset of a NULL pointer, and triggers a buffer...

QuickTicket 1.5 - qti_usr.php SQL Injection

QuickTicket 1.5 - qtiusr.php SQL Injection Script name: QuickTicket Site: http://www.qt-cute.org Vulnerability: remote sql injection at qtiusr.php Download: v 1.4: http://www.qt-cute.org/download/qti14.zip v 1.5.0.3: http://www.qt-cute.org/download/qti15.zip Vulnerable code: 1.4 ; 1.5 is pretty t...

QuickTicket <= 1.5 (qti_usr.php id) SQL Injection Vulnerability

Exploit for unknown platform in category web applications =============================================================== QuickTicket if isset$GET'id' $id = $GET'id'; // -- COUNT TOPICS -- $oDB-Query'SELECT countid as countid FROM '.TABTOPIC.' WHERE firstpostuser='.$id; // -- COUNT MESSAGES --...

Netizen summed up the Vista crack method pooled-vulnerability warning-the black bar safety net

Listed below the users a summary of various crack vista method, according to the appearing time order. 1. The Replace method Principle: with the replacement of vista with some license file way to use the beta serial number to activate vista, is the earliest way to Disadvantages: the license becom...

Linux Kernel 2.6.x sys_timer_create() Local Denial of Service Exploit

No description provided by source. ;nasm -f elf noHeaven.asm ;ld -s -o noHeaven noHeaven.o section .text global start count equ 8 ; threads count - do it quicker start: mov ebx, count call createthreads jmp done pause: mov eax,29 int 0x80 ret createthreads: mov eax,2 int 0x80 test eax,eax jz...

SuSE 10 Security Update : novell-lum (ZYPP Patch Number 2053)

This patch provides fixes for : - overwriting user surename with cn - memory leek - redundant calls to LDAP - security vulnerability - issue with returning partial list for group members if buffer size passed to LUM is too small - issues related to uninitialized structure/variable when LUM runs...

pam security, bug fix, and enhancement update

0.77-66.23 - pamcracklib should count the last char when computing difference 267201 0.77-66.22 - add pamtally2 module 228044 - unset XAUTHORITY when appropriate 228980 - CVE-2007-1716 always decrement use count 230823 - reset priority only when specified in limits.conf 232407 - CVE-2007-3102...

pam security, bug fix, and enhancement update

0.99.6.2-3.26 - removed realtime default limits 240123 from the package as it caused regression on machines with nonexistent realtime group 0.99.6.2-3.25 - added and improved translations 219124 - adjusted the default limits for realtime users 240123 0.99.6.2-3.23 - pamunix: truncated MD5 passwor...

动易网站管理系统Count\Counter.asp页面存在SQL注入漏洞

动易网站管理系统是一个采用 ASP 和 MSSQL 等其他多种数据库构建的高效网站内容管理解决方案产品。 Count\Counter.asp文件第19行 Mozilla=replaceRequest.ServerVariables"HTTPUSERAGENT","'","" Mozilla=leftMozilla,100 Agent=Request.ServerVariables"HTTPUSERAGENT" Agent=SplitAgent,";" BcType=0 If InstrAgent1,"U" Or InstrAgent1,"I" Then BcType=1 If...