379 matches found
Debian: Security Advisory (DSA-592-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
2WIRE Routers - Cross-Site Request Forgery
source: https://www.securityfocus.com/bid/27246/info Multiple 2Wire routers are prone to a cross-site request-forgery vulnerability. Exploiting this issue may allow a remote attacker to execute arbitrary actions on an affected device. Set a password NUEVOPASS:...
2wire-csrf.txt
Cross Site Request Forgery in 2wire routers Vulnerable Routers: 1701HG, 2071 Gateway Software: v3.17.5, 5.29.51 Password Not Set default Greetz a la Comunidad Underground de México, y a los que me ayudaron a probarlo: Preth00nker, nitr0us, ... [email protected] I. Background ------------- This is the...
MyDNS buffer overflow
Heap buffer overflow on dynamic DNS update request parsing...
MS Windows DNS RPC Remote Buffer Overflow Exploit (port 445) v2
Exploit for unknown platform in category remote exploits =============================================================== MS Windows DNS RPC Remote Buffer Overflow Exploit port 445 v2 =============================================================== Exploit v2 features: - Target Remote port 445 by...
CVE-2007-1644
The CVE-2007-1644 entry concerns the dynamic DNS update mechanism in the Microsoft Windows DNS Server. The issue is that the DNS server’s dynamic update process does not properly authenticate clients in certain deployments/configurations, enabling a remote attacker to modify DNS records for a web...
Microsoft DNS Server - Dynamic DNS UpdateChange
Microsoft DNS Server - Dynamic DNS UpdateChange / Exploiting Microsoft DNS Dynamic Updates for Fun and profit Andres Tarasco Acuña - c 2007 Url: http://www.514.es By default, most Microsoft DNS servers integrated with active directory allow insecure dynamic updates for dns records. This feature...
Microsoft DNS Server (Dynamic DNS Updates) Remote Exploit
Exploit for unknown platform in category remote exploits ========================================================= Microsoft DNS Server Dynamic DNS Updates Remote Exploit ========================================================= / Exploiting Microsoft DNS Dynamic Updates for Fun and profit Andres...
Multiple Apple iChat Bonjour DoS conditions
Multiple problems because of insecure dynamic DNS usage...
Dynamic DNS Dynamic Update Client (DUC) Detection
Binary data 3644.prm...
IPUpdate dynamic DNS client buffer overflow
Buffer overflow on DNS server reply parsing...
PeanutHull Dynamic DNS client privilege escalation
Help subsystem is launched with local system privileges...
ez-ipupdate: Format string vulnerability
Background ez-ipupdate is a utility for updating host name information for a large number of dynamic DNS services. Description Ulf Harnhammar from the Debian Security Audit Project discovered a format string vulnerability in ez-ipupdate. Impact An attacker could exploit this to execute arbitrary...
SUSE-SA:2003:0006: dhcp
The remote host is missing the patch for the advisory SUSE-SA:2003:0006 dhcp. The ISC Internet Software Consortium dhcp package is an imple- mentation of the 'Dynamic Host Configuration Protocol' DHCP. An internal source code audit done by ISC revealed several buffer overflows in the code which i...
ISC DHCPD minires library contains multiple buffer overflows
Overview The Internet Software Consortium ISC has discovered several buffer overflow vulnerabilities in their implementation of DHCP ISC DHCPD. These vulnerabilities may allow remote attackers to execute arbitrary code on affected systems. At this time, we are not aware of any exploits. Descripti...
ZoneEdit Account Hijack Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ===================================================================== secondmotion-SM-SA-02-02 Security Advisory ===================================================================== Topic: ZoneEdit Account Hijack Vulnerability Announced: 2002-11-05...
CVE-2001-0497
CVE-2001-0497 concerns BIND: dnskeygen (<=8.2.4) and dnssec-keygen (
ISS Advisory: BIND Inadvertent Local Exposure of HMAC-MD5 (TSIG) Keys
TO UNSUBSCRIBE: email "unsubscribe alert" in the body of your message to [email protected] Contact [email protected] for help with any problems! --------------------------------------------------------------------------- -----BEGIN PGP SIGNED MESSAGE----- Internet Security Systems Security...
CVE-1999-0184
When compiled with the -DALLOWUPDATES option, bind allows dynamic updates to the DNS server, allowing for malicious modification of DNS records...