openSUSE Security Update : psi (psi-574)

Remote attackers could crash the Psi instant messaging client via the file transfer port CVE-2008-6393. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update psi-574. The text description of this...

openSUSE Security Update : psi (psi-574)

Remote attackers could crash the Psi instant messaging client via the file transfer port CVE-2008-6393. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update psi-574. The text description of this...

HTC / Windows Mobile OBEX FTP Service Directory Traversal

I shall complete the information related to Bugtraq ID: 33359 Title: HTC / Windows Mobile OBEX FTP Service Directory Traversal Author: Alberto Moreno Tablado Vendor: HTC Vulnerable Products: - HTC devices running Windows Mobile 6 - HTC devices running Windows Mobile 6.1 Non vulnerable products: -...

Audio Article Directory File Disclosure

Audio Article Directory Remote File Disclosure Vulnerability + Discovered By ThE g0bL!N Vendor:http://audioarticledirectory.com Poc --- Download.php one header'Content-Description: File Transfer'; header'Content-Type: application/force-download'; header"Content-Disposition: attachment;...

Audio Article Directory - file Remote File Disclosure

Audio Article Directory - file Remote File Disclosure + Audio Article Directory Remote File Disclosure Vulnerability + Discovered By ThE g0bL!N Vendor:http://audioarticledirectory.com Poc --- Download.php one header'Content-Description: File Transfer'; header'Content-Type:...

pidgin -- multiple vulnerabilities

Secunia reports: Some vulnerabilities and weaknesses have been reported in Pidgin, which can be exploited by malicious people to cause a DoS or to potentially compromise a user's system. A truncation error in the processing of MSN SLP messages can be exploited to cause a buffer overflow. A bounda...

CVE-2009-1373

Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...

CVE-2009-1373

Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...

CVE-2009-1373

Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...

Buffer overflow

Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...

CVE-2009-1373

Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...

Pidgin: Multiple vulnerabilities

Background Pidgin formerly Gaim is an instant messaging client for a variety of instant messaging protocols. Description Multiple vulnerabilities have been discovered in Pidgin: Veracode reported a boundary error in the "XMPP SOCKS5 bytestream server" when initiating an outgoing file transfer...

Important: Red Hat Security Advisory: pidgin security update

Updated pidgin packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Pidgin is an instant messaging program which can log in to multiple accounts on...

pidgin file transfer buffer overflow

Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...

pidgin file transfer buffer overflow

Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...

Important: Red Hat Security Advisory: pidgin security update

An updated pidgin package that fixes two security issues is now available for Red Hat Enterprise Linux 3. This update has been rated as having important security impact by the Red Hat Security Response Team. Pidgin is an instant messaging program which can log in to multiple accounts on multiple...

Pidgin < 2.5.6 Multiple Buffer Overflows

The remote host is running Pidgin earlier than 2.5.6. Such versions are reportedly affected by multiple buffer overflow vulnerabilities : - A buffer overflow is possible when initiating a file transfer to a malicious buddy over XMPP. CVE-2009-1373 - A buffer overflow issue in the 'decryptout'...

Do All in Cmd Shell-vulnerability warning-the black bar safety net

Foreword Cmd Shellcommand line interactionis a hack eternal topic, it is the historic and enduring it. This article is intended to introduce and summarize some of the command line under control of Windows systems. These methods are as far as possible use the system comes with the tools to achieve...

Symantec Alert Management System File Transfer Service Remote Code Execution (CVE-2009-1431)

Symantec System Center provides centralized systems and policy management for Norton Antivirus Enterprise Solution across multiple Windows NT and NetWare networks. The vulnerability is due to a design error in the Intel File Transfer service XFR.EXE, a service used to aid communication between th...

Symantec Alert Management System Intel File Transfer service command execution

Added: 05/06/2009 CVE: CVE-2009-1431 BID: 34675 OSVDB: 54160 Background The Symantec Alert Management System 2 AMS2 is used by multiple Symantec products. The Intel File Transfer service is a component of AMS2 which is used to aid communication between the core server and managed clients. It...