209 matches found
CVE-2001-0707
Denicomp RSHD 2.18 and earlier allows a remote attacker to cause a denial of service crash via a long string to port 514...
MS Windows Media Player ASF Marker Buffer Overflow
I dunno if I've sent this before. If you embed a marker long enough in an .ASF video file you can make WMP crash when a victim clicks the marker drop down list under the file during playback. Use ASFCHOP.EXE to embed the following script to any ASF file: ----8----cut-here-----8---- startmarkertab...
eEye Digital Security IRIS 1.0.1 - GET Denial of Service
// source: https://www.securityfocus.com/bid/2278/info A maliciously-formed packet sent to Iris by a remote attacker, upon opening in the program for analysis by a user, will cause Iris to terminate. The crash is caused by an inability of Iris to handle packets with malformed values in its header...
Sybergen SyGate 2.0/3.11 - Denial of Service
// source: https://www.securityfocus.com/bid/1420/info An exploit which causes a Denial of Service to Sybergen's Sygate when run from an internal machine has been released. The exploit sends a UDP packet to port 53 of the gateway. //Sygate Crash by: [email protected] April-00 //http://www.eEye.com...
Max Feoktistov Small HTTP server 1.212 - Buffer Overflow
source: https://www.securityfocus.com/bid/1355/info A buffer overflow is present in certain versions of the Small HTTP Server . The overflow in question is triggered by an overlong 65000 or more characters malformed HTTP GET request to the webserver. !/usr/bin/python Small HTTP Server DoS Proof o...
BeOS 5.0 - TCP Fragmentation Remote Denial of Service
source: https://www.securityfocus.com/bid/1222/info BeOS is vulnerable to a remote TCP fragmentation attack that will crash the target system, requiring a reboot. root@localhost isic-0.05 ./tcpsic -s 1.1.1.1 -d 10.0.1.46 -r 31337 -F100 -V0 -I0 -T0 -u0 -t0 Compiled against Libnet 1.0.1b Installing...
Real Networks Real Server 5.0 - ramgen Denial of Service
// source: https://www.securityfocus.com/bid/888/info RealServer 5.0 can be crashed by sending an overly long 4082+ bytes ramgen request. Regular functionality can be restored by restarting the RealServer software. / rmscrash.c - [email protected] Crash a RealMedia 5.0 server by sending a very long...
Microsoft Windows PPTP Server Malformed Control Packet Remote DoS (179107)
We could make the remote PPTP host crash by telnetting to port 1723, and sending garbage followed by the character ^D. control-d. An attacker may use this flaw to deny service. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10313; scriptversion"1.27";...
SunOS 4.1.3 - '/etc/crash' SetGID kmem Privilege Escalation
source: https://www.securityfocus.com/bid/59/info /etc/crash was installed setgid kmem and excutable by anyone. Any user can use the ! shell command escape to executes commands, which are then performed with group set to kmem. $ /etc/crash ! sh...