Convert-UUlib 1.04/1.05 Perl Module Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13401/info Convert-UUlib Perl module is prone to a remotely exploitable buffer-overflow vulnerability. A remote attacker may leverage this condition to overwrite sensitive program control variables and thus gain control o...

Microsoft Windows Media Player 7.0 .WMS Arbitrary Script Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1976/info Windows Media Player is an application used for digital audio, and video content viewing. It is possible for a user running Windows Media Player 7 to enable a skin .wms file and unknowingly execute an embedded...

Tarantella Enterprise 3 Symbolic Link Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4115/info Tarantella Enterprise 3 contains a locally exploitable symbolic link vulnerability during it's installation procedure. This vulnerability can be exploited to elevate privileges. An attacker anticipating the...

Digital Unix 4.0 MSGCHK Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3311/info The msgchk utility under certain versions of Digital Unix contains a buffer overflow vulnerability which could yield root privilege. If a local user invokes the msgchk utility at the command line, argumented wit...

Webspell 4.2.1 asearch.php SQL Injection Vulnerability

No description provided by source. INFORMATION +Name : webspell 4.2.1 asearch.php SQL Injection Vulnerability +Author : silent vapor +Date : 29.09.2010 +Script : webspell 4.2.1 +Price : free +Language :PHP +Discovered by silent vapor +Underground Agents +Greetz to Team-Internet,...

Batalla Naval 1.0 4 Remote Buffer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/7699/info Batalla Naval is prone to a remotely exploitable buffer overflow when handling requests of excessive length. This could allow for execution of malicious instructions in the context of the game server. / by jsk f...

West Street Software LocalWEB HTTP Server 1.2 - Buffer Overflow

No description provided by source. source: http://www.securityfocus.com/bid/1423/info LocalWEB is a freeware HTTP server for the Windows suite of operating systems. Certain versions of this software are vulnerable to a remotely exploitable buffer overflow attack. This attack can instrumented by...

Webspell 4.x - safe_query Bypass Vulnerability

No description provided by source. INFORMATION +Name : Webspell 4.X safequery bypass Vulnerability +Author : silent vapor +Date : 29.09.2010 +Script : webspell +Price : free +Language :PHP +Discovered by silent vapor +Underground Agents +Greetz to Team-Internet, 4004-Security-Project, Easy Laster...

CubeCart PHP (shipkey parameter) <= 4.3.x - Remote SQL Injection

No description provided by source. SQL Injection in CubeCart PHP Free & Commercial Shopping Cart Application 1. Advisory Information Title: SQL Injection in CubeCart PHP Free & Commercial Shopping Cart Application Advisory Id: CORE-2010-0415 Advisory URL:...

BTD Studio Zom-Mail 1.0.9 - Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/761/info In certain versions of the BTD Zom-Mail server there exists a buffer overflow which may be remotely exploitable by malicious users. The problem in question is in the handling of overly past 256 chars long file...

Softbiz Jobs Multiple SQL Injection Vulnerabilities

No description provided by source. ----------------------------Information------------------------------------------------ +Name : Softbiz Jobs moredetails.php SQL injection +Autor : Easy Laster +Date : 23.02.2010 +Script : Softbiz Jobs +Download : ----- +Demo :http://pricebusterdeals.com/ +Price...

aradblog - Multiple Vulnerabilities

No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub10-aradblog-multiple-remote-vulnerabilities/ ''' Abysssec Inc Public Advisory Title : aradBlog Multiple...

Mercur 5.0 - IMAP SP3 SELECT Buffer Overflow

No description provided by source. $Id: mercurimapselectoverflow.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...

SumatraPDF 2.1.1/MuPDF 1.0 Integer Overflow

No description provided by source. Sumatra 2.1.1/MuPDF 1.0 Integer Overflow ======================================= There is an integer overflow on the MuPDF in the lexnumber function which can be triggered using a corrupt PDF file with ObjStm. I'm attaching a file that reproduces the problem wit...

SapporoWorks Black JumboDog 2.6.4/2.6.5 HTTP Proxy Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3858/info Black JumboDog 2.6.4 and 2.6.5 HTTP proxy is vulnerable to an exploitable buffer overflow. The buffer overflow can be exploited by sending excessively long expires, if-modified-since, and LastModified strings...

dreamlive auktionshaus script news.php - (id) SQL Injection Vulnerability

No description provided by source. ----------------------------Information------------------------------------------------ +Name : dreamlive Auktionshaus script news.php id SQL Injection +Autor : Easy Laster +Date : 12.03.2010 +Script : dreamlive Auktionshaus script +Language :PHP +Discovered by...

Light HTTPD 0.1 GET Request Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/6162/info Light httpd is prone to a remotely exploitable buffer overflow condition. This overflow can be triggered by sending the server an excessively long GET request. As Light httpd drops user privileges when running,...

Computer Associates Products Message Engine RPC Server Multiple Buffer Overflow Vulnerabilities (2)

No description provided by source. source: http://www.securityfocus.com/bid/20365/info Multiple Computer Associates products are prone to multiple buffer-overflow vulnerabilities because the applications using an affected library fail to properly bounds-check user-supplied input before copying it...

PHP 3.0/4.0 Error Logging Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1786/info PHP is a scripting language designed for CGI applications that is used on many websites. There exists a remotely exploitable format string vulnerability in all versions of PHP below PHP 4.0.3. The vulnerability...

Valve Software Half-Life 1.1 Client Connection Routine Buffer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/8299/info Half-Life Client has been reported prone to a remotely exploitable buffer overflow condition. The issue presents itself in the client connection routine, used by the client to negotiate a connection to the...