CVE-2003-0576

Unknown vulnerability in the NFS daemon nfsd in SGI IRIX 6.5.19f and earlier allows remote attackers to cause a denial of service kernel panic via certain packets that cause XDR decoding errors, a different vulnerability than CVE-2003-0619...

CVE-2003-0576

Unknown vulnerability in the NFS daemon nfsd in SGI IRIX 6.5.19f and earlier allows remote attackers to cause a denial of service kernel panic via certain packets that cause XDR decoding errors, a different vulnerability than CVE-2003-0619...

CVE-2003-0576

CVE-2003-0576 is a remote DoS in SGI IRIX 6.5.x via the NFS daemon (nfsd) stemming from XDR decoding errors that cause kernel panics. The SGI advisory (CAN-2003-0576) states IRIX 6.5.19f and earlier are affected and recommends upgrading to IRIX 6.5.20 or applying the listed patches. The connected...

Denial of Service Vulnerability in NFS on IRIX

-----BEGIN PGP SIGNED MESSAGE----- SGI Security Advisory Title : Denial of Service Vulnerability in NFS XDR decoding Number : 20030801-01-P Date : August 13, 2003 Reference: CVE 2003-0576 Reference: SGI BUG 894659 Fixed in : IRIX 6.5.20 or patches 5229, 5230, 5240, 5241, 5227, 5228 SGI provides...

MIT Kerberos V5 ASN.1 decoder fails to perform bounds checking on data element length fields

Overview The MIT Kerberos V5 implementation contains an ASN.1 decoding flaw that may allow remote attackers to crash affected Kerberos applications. Description Kerberos V5 protocol messages are defined using Abstract Syntax Notation One ASN.1, a formal language that allows protocol specification...

DEBIAN-CVE-2002-1350

The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial of service application crash...

CVE-2002-1350

The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial of service application crash...

CVE-2002-1350

The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial of service application crash...

[SECURITY] [DSA-206-1] tcpdump BGP decoding error

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-206-1 [email protected] http://www.debian.org/security/ Wichert Akkerman December 10, 2002 -...

[SECURITY] [DSA-206-1] tcpdump BGP decoding error

------------------------------------------------------------------------ Debian Security Advisory DSA-206-1 [email protected] http://www.debian.org/security/ Wichert Akkerman December 10, 2002 - ------------------------------------------------------------------------ Package : tcpdump Problem...

DSA-206 tcpdump - denial of service

Bulletin has no description...

Exploitable pine heap overflow (Re: Remote pine Denial of Service)

Dear Linus Sjberg, There is a classic and probably exploitable heap overflow in bldaddr.c addrliststring. else char charset = NULL; list = char fsgetsizetestsizeadrlist; list0 = '0'; rfc822writeaddressdecodelist, adrlist, verbose ? NULL : &charset, doquote; ifcharset fsgivevoid &charset; estsize...

MSIEv6 % encoding causes a problem again

it's about cross-site scripting at MSIEv6 client side using encoding, but not the same as the one by PeaceFire.org which doesn't work on my PC. testedMSIEv6CN version IEXPLORE.EXE file version: 6.0.2600.0000 MSHTML.DLL file version: 6.00.2600.0000 demo at...

CVE-2002-0452

Foundry Networks ServerIron switches do not decode URIs when applying "url-map" rules, which could make it easier for attackers to cause the switch to forward traffic to a different server than intended and exploit vulnerabilities that would otherwise be inaccessible...

Buffer overflow in PGP Outlook Encryption Plug-in

heap overflow on message decoding...

CVE-2002-0452

CVE-2002-0452 concerns Foundry Networks ServerIron switches where URIs are not decoded when applying a url-map rule. The root cause is improper URI decoding, which could allow an attacker to alter traffic routing so that requests are forwarded to a different server than intended. The documented i...

IBM Informix Web DataBlade: Auto-decoding HTML entities

IBM Informix Web DataBlade: Auto-decoding HTML entities By Simon Lodal, Denmark Vendor status: Notified months ago, said they would be working on updates, never heard anything. Software: Web DataBlade 4.12, IDS 9.20/9.21, Linux 2.2/2.4, SunOS 5.7 OS, IDS and WDB versions seem to be irrelevant...

Обход защиты URL в ServerIron (protection bypass)

При разборе URI не происходит декодирования, что может привести к неправильному определению типа файла...

CVE-2001-0720

Internet Explorer 5.1 for Macintosh on Mac OS X allows remote attackers to execute arbitrary commands by causing a BinHex or MacBinary file type to be downloaded, which causes the files to be executed if automatic decoding is enabled...

CVE-2001-0720

CVE-2001-0720 affects Internet Explorer 5.1 for Macintosh on Mac OS X. The issue allows remote execution of arbitrary commands by triggering the download of a BinHex or MacBinary file type that is executed if automatic decoding is enabled. The vulnerability arises in how the browser handles certa...