CVE-2008-7012

courier/1000@/apierroremail.html aka "error reporting page" in Accellion File Transfer Appliance FTA70178, and possibly other versions before FTA70189, allows remote attackers to send spam e-mail via modified description and clientemail parameters...

openSUSE Security Update : psi (psi-574)

Remote attackers could crash the Psi instant messaging client via the file transfer port CVE-2008-6393. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update psi-574. The text description of this...

openSUSE Security Update : psi (psi-574)

Remote attackers could crash the Psi instant messaging client via the file transfer port CVE-2008-6393. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update psi-574. The text description of this...

openSUSE Security Update : finch (finch-188)

specially crafted MSN SLP messages could cause an integer overflow in pidgin. Attackers could potentially exploit that to execute arbitrary code CVE-2008-2927. - overly long file names in MSN file transfers could crash pidgin CVE-2008-2955. - SSL certifcates were not verfied. Therefore piding...

HTC / Windows Mobile OBEX FTP Service Directory Traversal

I shall complete the information related to Bugtraq ID: 33359 Title: HTC / Windows Mobile OBEX FTP Service Directory Traversal Author: Alberto Moreno Tablado Vendor: HTC Vulnerable Products: - HTC devices running Windows Mobile 6 - HTC devices running Windows Mobile 6.1 Non vulnerable products: -...

Audio Article Directory File Disclosure

Audio Article Directory Remote File Disclosure Vulnerability + Discovered By ThE g0bL!N Vendor:http://audioarticledirectory.com Poc --- Download.php one header'Content-Description: File Transfer'; header'Content-Type: application/force-download'; header"Content-Disposition: attachment;...

Audio Article Directory - file Remote File Disclosure

Audio Article Directory - file Remote File Disclosure + Audio Article Directory Remote File Disclosure Vulnerability + Discovered By ThE g0bL!N Vendor:http://audioarticledirectory.com Poc --- Download.php one header'Content-Description: File Transfer'; header'Content-Type:...

pidgin -- multiple vulnerabilities

Secunia reports: Some vulnerabilities and weaknesses have been reported in Pidgin, which can be exploited by malicious people to cause a DoS or to potentially compromise a user's system. A truncation error in the processing of MSN SLP messages can be exploited to cause a buffer overflow. A bounda...

CVE-2009-1373

Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...

CVE-2009-1373

Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...

CVE-2009-1373

Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...

Buffer overflow

Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...

CVE-2009-1373

Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...

Pidgin: Multiple vulnerabilities

Background Pidgin formerly Gaim is an instant messaging client for a variety of instant messaging protocols. Description Multiple vulnerabilities have been discovered in Pidgin: Veracode reported a boundary error in the "XMPP SOCKS5 bytestream server" when initiating an outgoing file transfer...

pidgin file transfer buffer overflow

Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...

Important: Red Hat Security Advisory: pidgin security update

Updated pidgin packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Pidgin is an instant messaging program which can log in to multiple accounts on...

pidgin file transfer buffer overflow

Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...

Important: Red Hat Security Advisory: pidgin security update

An updated pidgin package that fixes two security issues is now available for Red Hat Enterprise Linux 3. This update has been rated as having important security impact by the Red Hat Security Response Team. Pidgin is an instant messaging program which can log in to multiple accounts on multiple...

Pidgin < 2.5.6 Multiple Buffer Overflows

The remote host is running Pidgin earlier than 2.5.6. Such versions are reportedly affected by multiple buffer overflow vulnerabilities : - A buffer overflow is possible when initiating a file transfer to a malicious buddy over XMPP. CVE-2009-1373 - A buffer overflow issue in the 'decryptout'...

Do All in Cmd Shell-vulnerability warning-the black bar safety net

Foreword Cmd Shellcommand line interactionis a hack eternal topic, it is the historic and enduring it. This article is intended to introduce and summarize some of the command line under control of Windows systems. These methods are as far as possible use the system comes with the tools to achieve...