DEBIAN-CVE-2007-5007

Stack-based buffer overflow in the irfetchseq function in balsa before 2.3.20 might allow remote IMAP servers to execute arbitrary code via a long response to a FETCH command...

DEBIAN-CVE-2007-5934

The LOB functionality in PEAR MDB2 before 2.5.0a1 interprets a request to store a URL string as a request to retrieve and store the contents of the URL, which might allow remote attackers to use MDB2 as an indirect proxy or obtain sensitive information via a URL into a form field in an MDB2...

CVE-2007-5007

Stack-based buffer overflow in the irfetchseq function in balsa before 2.3.20 might allow remote IMAP servers to execute arbitrary code via a long response to a FETCH command...

CVE-2007-5007

Stack-based buffer overflow in the irfetchseq function in balsa before 2.3.20 might allow remote IMAP servers to execute arbitrary code via a long response to a FETCH command...

SLAD Run

This script connects to SLAD on a remote host to run remote scanners. To work properly, this script requires to be provided with a valid SSH login by means of an SSH key with pass- phrase if the SSH public key is passphrase-protected, or a password to log in. OpenVAS Vulnerability Test Fetch...

SLAD Fetch Results

This script connects to SLAD on a remote host to fetch the result from scripts started earlier. To work properly, this script requires to be provided with a valid SSH login by means of an SSH key with pass- phrase if the SSH public key is passphrase-protected, or a password to log in. OpenVAS...

Design/Logic Flaw

Unspecified vulnerability in the fetch function in MDB2.php in PEAR Structures-DataGrid-DataSource-MDB2 0.1.9 and earlier allows attackers to "manipulate the generated sorting queries."...

CVE-2007-3628

Unspecified vulnerability in the fetch function in MDB2.php in PEAR Structures-DataGrid-DataSource-MDB2 0.1.9 and earlier allows attackers to "manipulate the generated sorting queries."...

CVE-2007-3628

CVE-2007-3628 affects PEAR Structures-DataGrid-DataSource-MDB2 up to version 0.1.9, specifically the fetch function in MDB2.php. The vulnerability allows attackers to manipulate generated sorting queries. The connected documents confirm the affected component and the general impact, but do not pr...

SUSE-SA:2007:014: bind

The remote host is missing the patch for the advisory SUSE-SA:2007:014 bind. Two security problems were fixed in the ISC BIND nameserver version 9.3.4, which are addressed by this advisory: CVE-2007-0493: If recursion is enabled, a remote attacker can dereference a freed fetch context causing the...

ZebraFeeds 1.0 - 'zf_path' Remote File Inclusion

To ConTacT mE @ wWw.Asb-May.net/bb ScRiPt:-http://cazalet.org/zebrafeeds/releases/zebrafeeds-current.zip Discovered By:- ThE dE@Th aggregator.php:- requireonce$zfpath . 'includes/feed.php'; requireonce$zfpath . 'includes/view.php'; requireonce$zfpath . 'includes/template.php'; requireonce$zfpath...

Fedora Core 6 : bind-9.3.4-1.fc6 (2007-147)

Updated to version 9.3.4 which contains two security bugfixes - Serialise validation of type ANY responses. RT 16555 - It was possible to dereference a freed fetch context. RT 16584 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security...

ISC BIND远程Fetch上下文拒绝服务漏洞

ISC BIND是一款开放源代码的Internet域名名字系统实现。 ISC BIND存在可能引用释放的Fetch上下问存在问题，远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。 目前没有解决方案提供。 ISC BIND 9.5 a1 ISC BIND 9.4 rc1 ISC BIND 9.4 b4 ISC BIND 9.4 b3 ISC BIND 9.4 b2 ISC BIND 9.4 b1 ISC BIND 9.4 a6 ISC BIND 9.4 a5 ISC BIND 9.4 a4 ISC BIND 9.4 a3 ISC BIND 9.4 a2 ISC BIND 9.4 a1 I...

DEBIAN-CVE-2007-0493

Use-after-free vulnerability in ISC BIND 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 Bind Forum only allows remote attackers to cause a denial of service named daemon crash via unspecified vectors that cause named to "dereference a freed fetch context."...

PT-2007-1953 · Isc +1 · Isc Bind +1

Name of the Vulnerable Software and Affected Versions: ISC BIND versions 9.3.0 through 9.3.3 ISC BIND versions 9.4.0a1 through 9.4.0a6 ISC BIND versions 9.4.0b1 through 9.4.0b4 ISC BIND version 9.4.0rc1 ISC BIND version 9.5.0a1 Description: The issue allows remote attackers to cause a denial of...

dokuwiki -- multiple vulnerabilities

Secunia reports: Some vulnerabilities have been reported in DokuWiki, which can be exploited by malicious people to cause a DoS Denial of Service or potentially compromise a vulnerable system. Input passed to the "w" and "h" parameters in lib/exec/fetch.php is not properly sanitised before being...

security flaw

Multiple vulnerabilities in libtiff before 3.8.1 allow context-dependent attackers to cause a denial of service via a TIFF image that triggers errors in 1 the TIFFFetchAnyArray function in a tifdirread.c; 2 certain "codec cleanup methods" in b tiflzw.c, c tifpixarlog.c, and d tifzip.c; 3 and...

DEBIAN-CVE-2006-2025

Integer overflow in the TIFFFetchData function in tifdirread.c for libtiff before 3.8.1 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via a crafted TIFF image...

security flaw

Buffer overflow in the imapfetchoverview function in the IMAP functionality phpimap.c in PHP before 4.3.3 allows remote attackers to cause a denial of service segmentation fault and possibly execute arbitrary code via a long e-mail address in a 1 To or 2 From header...

CVE-2006-0051

Buffer overflow in playlistimport.cpp in Kaffeine Player 0.4.2 through 0.7.1 allows user-assisted attackers to execute arbitrary code via long HTTP request headers when Kaffeine is "fetching remote playlists", which triggers the overflow in the httppeek function...