6679 matches found
Multiple Firebird vulnerabilities
Few executable files are installed suid firebird, one of them has buffer overflow...
Fedora Core 4 : kernel-2.6.15-1.1833_FC4 (2006-131)
This update rebases to the latest -stable release 2.6.15.5, which fixes a number of security problems. - sysmbind failed to sanity check its arguments, leading to a potential local DoS. - A specially crafted ELF executable could cause Intel EM64T boxes to crash. CVE-2006-0741 - Normal users could...
Hauri Virobot antivirus privilege esalation
Local user can obtain unrestricted access with suid CGI executable...
CVE-2006-0787
wimpytrackplays.php in Plaino Wimpy MP3 Player, possibly 5.2 and earlier, allows remote attackers to insert arbitrary strings into trackme.txt via the 1 trackFile, 2 trackArtist, and 3 trackTitle parameters, which can result in providing false information about songs, occupying excessive disk spa...
CVE-2006-0787
wimpytrackplays.php in Plaino Wimpy MP3 Player, possibly 5.2 and earlier, allows remote attackers to insert arbitrary strings into trackme.txt via the 1 trackFile, 2 trackArtist, and 3 trackTitle parameters, which can result in providing false information about songs, occupying excessive disk spa...
Microsoft Windows Media Player Plugin Buffer Overflow Vulnerability
Description The Microsoft Windows Media Player plugin for non-Microsoft browsers is prone to a buffer-overflow vulnerability. The application fails to do proper boundary checks on user-supplied data before using it in a finite-sized buffer. An attacker can exploit this issue to execute arbitrary...
[Full-disclosure] [USN-245-1] KDE library vulnerability
=========================================================== Ubuntu Security Notice USN-245-1 January 20, 2006 kdelibs vulnerability CVE-2006-0019 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 5.04 Hoary Hedgehoga Ubuntu...
Ubuntu 4.10 / 5.04 : binutils vulnerability (USN-136-1)
Tavis Ormandy found an integer overflow in the Binary File Descriptor BFD parser in the GNU debugger. The same vulnerable code is also present in binutils. By tricking an user into processing a specially crafted executable with the binutils tools strings, objdump, nm, readelf, etc., an attacker...
eStara Softphone <= 3.0.1.46 (SIP) Remote Buffer Overflow Exploit (2)
No description provided by source. !/usr/bin/perl -s damn-hippie.pl by kokanin google estara, it shows sip stuff and a hippie Remote "estara softphone" exploit, executable version info = 3.0.1.2 kokanin did the research, metasploit.com did the encoded bindshell on tcp/5060 Lets face it, most user...
Apple QuickTime 6.4/6.5/7.0.x - PictureViewer '.JPEG'/.PICT' File Buffer Overflow
source: https://www.securityfocus.com/bid/16212/info Apple QuickTime is prone to a buffer-overflow vulnerability because the application fails to do proper bounds checking on user-supplied data before copying it to finite-sized process buffers. An attacker may be able to exploit this issue to...
clamav -- possible heap overflow in the UPX code
The Zero Day Initiative reports: This vulnerability allows remote attackers to execute arbitrary code on vulnerable Clam AntiVirus installations. Authentication is not required to exploit this vulnerability. This specific flaw exists within libclamav/upx.c during the unpacking of executable files...
DiscusWare Discus 3.10 - Error Message Cross-Site Scripting
source: https://www.securityfocus.com/bid/16119/info DiscusWare Discus is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting us...
CVE-2005-4526
Clearswift MIMEsweeper For Web a.k.a. WEBsweeper 4.0 through 5.1 allows remote attackers to bypass filtering via a URL that does not include a .exe extension but returns an executable file...
CVE-2005-4526
Clearswift MIMEsweeper For Web a.k.a. WEBsweeper 4.0 through 5.1 allows remote attackers to bypass filtering via a URL that does not include a .exe extension but returns an executable file...
CVE-2005-4526
CVE-2005-4526 affects Clearswift MIMEsweeper For Web (WEBsweeper) versions 4.0–5.1. The vulnerability allows remote attackers to bypass content filtering by using a URL that does not contain a ".exe" extension but returns an executable file. The connected PT-Security entry notes the affected vers...
PT-2005-5208 · Clearswift · Clearswift Mimesweeper For Web
Name of the Vulnerable Software and Affected Versions: Clearswift MIMEsweeper For Web a.k.a. WEBsweeper versions 4.0 through 5.1 Description: The issue allows remote attackers to bypass filtering via a URL that does not include a .exe extension but returns an executable file. Recommendations: For...
CVE-2005-4422
Unrestricted file upload vulnerability in toendaCMS before 0.6.2 Stable allows remote authenticated administrators to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in data/images/albums...
Microsoft IIS - HTTP Request Denial of Service (2)
!/usr/bin/perl really bored kokanin / IIS 5.1 dos thing, Inge says to use a browser at http://ingehenriksen.blogspot.com/2005/12/microsoft-iis-remote-dos-dll-url.html kokanin not like puny browser!!"1 I hoped Inge was a leet haxx0r ch1ck, but it's apparently a dude, bummer. According to Inge...
MS Windows IIS Malformed HTTP Request Denial of Service Exploit (pl)
Exploit for unknown platform in category dos / poc ==================================================================== MS Windows IIS Malformed HTTP Request Denial of Service Exploit pl ==================================================================== !/usr/bin/perl really bored kokanin / IIS...
TelCondex Simple Webserver Buffer Overflow
The TelCondex SimpleWebserver is vulnerable to a remote executable buffer overflow, due to missing length check on the referer-variable of the HTTP-header. OpenVAS Vulnerability Test $Id: telcondex.nasl 6063 2017-05-03 09:03:05Z teissa $ Description: TelCondex Simple Webserver Buffer Overflow...