vanilla-sql.txt

= 4.1, magicquotesgpc=Off Tested on versions 1.1.3, 1.1.2, 1.0.1 echo "------------------------------------------------------------\n"; echo "Vanilla - use specific prefix default LUM\n"; echo "-id= - use specific user id default 1\n"; echo "-c= - benchmark's loop count default 300000\n"; echo "-...

CVE-2007-4280

The Skinny channel driver chanskinny in Asterisk Open Source before 1.4.10, AsteriskNOW before beta7, Appliance Developer Kit before 0.7.0, and Appliance s800i before 1.0.3 allows remote authenticated users to cause a denial of service application crash via a CAPABILITIESRESMESSAGE packet with a...

DEBIAN-CVE-2007-4200

ntfs.c in fsstat in Brian Carrier The Sleuth Kit TSK before 2.09 interprets a certain variable as a byte count rather than a count of 32-bit integers, which allows user-assisted remote attackers to cause a denial of service application crash and prevent examination of certain NTFS files via a...

DRDoS - Distributed Reflection Denial of Service

!/usr/bin/perl written by whoppix c 2007 This Piece of software may be freely re-distributed under the Terms of the LGPL. for a short usage type ./script --help this program requires: perl, Net::RawIP depends on libpcap, Getopt::Long which should be shipped along with your perl core distribution ...

NavBoard 2.6.0 - Remote Code Execution

"; print ""; print ""; print "Main forum settings"; print ""; print "Board Title"; print ""; print ""; print ""; print "Admin email address blank will not display"; print ""; print "input ty...

Sienzo Digital Music Mentor 2.6.0.4 - SetEvalExpiryDate Overwrite (SEH)

shellcode=unescape"%eb%03%59%eb%05%e8%f8%ff%ff%ff%4f%49%49%49%49%49%49%51%5a%56%54%58%36%33%30%56%58%34%41%30%42%36" shellcode=shellcode+unescape"%48%48%30%42%33%30%42%43%56%58%32%42%44%42%48%34%41%32%41%44%30%41%44%54%42%44%51%42%30%41%44%41"...

SOL6737 - SHMAT vulnerabilities CVE-2004-0114

This security advisory describes a reference count overflow in SHMAT CVE-2004-0114. Information about this advisory is available at the following location: Note: This link takes you to a resource outside of AskF5, and it is possible that the information may be removed without our knowledge...

PHP 3.0.16/4.0.2 Remote Format Overflow Exploit

No description provided by source. / PHP 3.0.16/4.0.2 remote format overflow exploit. Copyright c 2000 Field Marshal Count August Anton Wilhelm Neithardt von Gneisenau [email protected] my regards to sheib and darkx All rights reserved Pascal Boucheraine's paper was enlightening THERE IS NO...

CVE-2006-4336

Buffer underflow in the buildtree function in unpack.c in gzip 1.3.5 allows context-dependent attackers to execute arbitrary code via a crafted leaf count table that causes a write to a negative index...

DEBIAN-CVE-2006-4336

Buffer underflow in the buildtree function in unpack.c in gzip 1.3.5 allows context-dependent attackers to execute arbitrary code via a crafted leaf count table that causes a write to a negative index...

CVE-2006-4336

CVE-2006-4336 affects gzip 1.3.5: a buffer underflow in gzip’s build_tree function (unpack.c) can be triggered by a crafted leaf count table, causing a write to a negative index and enabling potential code execution. Connected advisories indicate multiple vendor patches were released (e.g., Red H...

CVE-2006-4336

Buffer underflow in the buildtree function in unpack.c in gzip 1.3.5 allows context-dependent attackers to execute arbitrary code via a crafted leaf count table that causes a write to a negative index...

DEBIAN-CVE-2006-3668

Heap-based buffer overflow in the itreadenvelope function in Dynamic Universal Music Bibliotheque DUMB 0.9.3 and earlier and current CVS as of 20060716, including libdumb, allows user-assisted attackers to execute arbitrary code via a ".it" Impulse Tracker file with an envelope with a large numbe...

Sophos Anti-Virus CAB Unpacking Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sophos AntiVirus. Authentication is not required to exploit this vulnerability. The specific flaw exists within the unpacking of Microsoft Cabinet files that contain invalid folder count values...

Dia multiple buffer overflows

Multiple buffer overflows in the xfig import code xfig-import.c in Dia 0.87 and later before 0.95-pre6 allow user-assisted attackers to have an unknown impact via a crafted xfig file, possibly involving an invalid 1 color index, 2 number of points, or 3 depth...

CVE-2006-2080

SQL injection vulnerability in portfoliophotopopup.php in Verosky Media Instant Photo Gallery 1.0.2 allows remote attackers to execute arbitrary SQL commands via the id parameter, which is not cleansed before calling the countclick function in includes/functions/fnsstd.php. NOTE: this issue could...

DEBIAN-CVE-2006-1550

Multiple buffer overflows in the xfig import code xfig-import.c in Dia 0.87 and later before 0.95-pre6 allow user-assisted attackers to have an unknown impact via a crafted xfig file, possibly involving an invalid 1 color index, 2 number of points, or 3 depth...

Code injection

PHP-Ping 1.3 does not properly validate ping counts, which allows remote attackers to cause a denial of service ping flood via a negative count parameter...

Ubuntu 4.10 : krb5 vulnerability (USN-58-1)

Michael Tautschnig discovered a possible buffer overflow in the addtohistory function in the MIT Kerberos 5 implementation. Performing a password change did not properly track the password policy's history count and the maximum number of keys. This could cause an array overflow and may have allow...

DEBIAN-CVE-2005-3191

Multiple heap-based buffer overflows in the 1 DCTStream::readProgressiveSOF and 2 DCTStream::readBaselineSOF functions in the DCT stream parsing code Stream.cc in xpdf 3.01 and earlier, as used in products such as a Poppler, b teTeX, c KDE kpdf, d pdftohtml, e KOffice KWord, f CUPS, and g...