CVE-2006-3489

CVE-2006-3489 affects F-Secure products: Anti-Virus 2003–2006, Internet Security 2003–2006, and Service Platform for Service Providers 6.x and earlier. The vulnerability allows remote attackers to bypass anti-virus scanning by using a crafted filename. The available sources confirm the affected p...

CVE-2006-3489

F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers 6.x and earlier allows remote attackers to bypass anti-virus scanning via a crafted filename...

Microsoft Excel 2003 Hlink Stack/SEH Buffer Overflow Exploit

No description provided by source. !perl "Microsoft Office Excel 2003" Hlink Stack/SEH Overflow Exploit Author: Manuel Santamarina Suarez The vulnerability was discovered by 'kcope'. First click on the link and then on the "Yes" button to cause the stack overflow. fixed shellcode location !! Must...

Cross site scripting

Cross-site scripting XSS vulnerability in BlueDragon Server and Server JX 6.2.1.286 for Windows allows remote attackers to inject arbitrary web script or HTML via the filename in a request to a 1 .cfm or 2 .cfml file, which reflects the result in the default error page...

CVE-2006-2909

Stack-based buffer overflow in the info tip shell extension zipinfo.dll in PicoZip 4.01 allows remote attackers to execute arbitrary code via a long filename in an 1 ACE, 2 RAR, or 3 ZIP archive, which is triggered when the user moves the mouse over the archive...

PicoZip ZipInfo.dll Filename Handling Buffer Overflow

The remote host is running PicoZip, a file compression utility for Windows. According to the registry, the version of PicoZip installed on the remote Windows host fails to properly check the size of filenames before copying them into a finite-sized buffer within the 'zipinfo.dll' info tip shell...

Pico Zip 4.01 (Long Filename) Buffer Overflow Exploit

No description provided by source. !/usr/bin/perl Pico Zip v. 4.01 Long Filename Buffer Overflow Original advisory - http://www.securityfocus.com/archive/1/437103/30/30/threaded Author - c0rrupt Greets - sh0uts to n0limit, muts, and brax for the music ; The vulnerability is caused due to a bounda...

Pico Zip 4.01 - 'Filename' Local Buffer Overflow

!/usr/bin/perl Pico Zip v. 4.01 Long Filename Buffer Overflow Original advisory - http://www.securityfocus.com/archive/1/437103/30/30/threaded Author - c0rrupt Greets - sh0uts to n0limit, muts, and brax for the music ; The vulnerability is caused due to a boundary error within the "zipinfo.dll"...

CVE-2006-2660

Buffer consumption vulnerability in the tempnam function in PHP 5.1.4 and 4.x before 4.4.3 allows local users to bypass restrictions and create PHP files with fixed names in other directories via a pathname argument longer than MAXPATHLEN, which prevents a unique string from being appended to the...

TFTPD32 Long Filename Buffer Overflow

This module exploits a stack buffer overflow in TFTPD32 version 2.21 and prior. By sending a request for an overly long file name to the tftpd32 server, a remote attacker could overflow a buffer and execute arbitrary code on the system. This module requires Metasploit:...

CVE-2006-2832

Cross-site scripting XSS vulnerability in the upload module upload.module in Drupal 4.6.x before 4.6.8 and 4.7.x before 4.7.2 allows remote attackers to inject arbitrary web script or HTML via the uploaded filename...

security flaw

Format string vulnerability in Dia 0.94 allows user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code by triggering errors or warnings, as demonstrated via format string specifiers in a .bmp filename. NOTE: the original exploit was demonstrated through a...

Stack overflow

Stack-based buffer overflow in ZipCentral 4.01 allows remote user-assisted attackers to execute arbitrary code via a ZIP archive containing a long filename...

CVE-2006-2439

Stack-based buffer overflow in ZipCentral 4.01 allows remote user-assisted attackers to execute arbitrary code via a ZIP archive containing a long filename...

CVE-2006-2439

Stack-based buffer overflow in ZipCentral 4.01 allows remote user-assisted attackers to execute arbitrary code via a ZIP archive containing a long filename...

"View Image" local resource linking (Windows) — Mozilla

Normally Mozilla-based clients prevent web content from linking to local files but Eric Foley reports a partial bypass of this restriction by using Windows filename syntax on a Windows computer rather than a file:/// URL as the SRC= attribute. The image will not be loaded on the web page--it will...

Mandrake Linux Security Advisory : dia (MDKSA-2006:093)

A format string vulnerability in Dia allows user-complicit attackers to cause a denial of service crash and possibly execute arbitrary code by triggering errors or warnings, as demonstrated via format string specifiers in a .bmp filename. NOTE: the original exploit was demonstrated through a...

Stack overflow

Stack-based buffer overflow in the tiffsplit command in libtiff 3.8.2 and earlier might might allow attackers to execute arbitrary code via a long filename. NOTE: tiffsplit is not setuid. If there is not a common scenario under which tiffsplit is called with attacker-controlled command line...

DEBIAN-CVE-2006-2656

Stack-based buffer overflow in the tiffsplit command in libtiff 3.8.2 and earlier might might allow attackers to execute arbitrary code via a long filename. NOTE: tiffsplit is not setuid. If there is not a common scenario under which tiffsplit is called with attacker-controlled command line...

[SA20179] ZipCentral ZIP File Handling Buffer Overflow Vulnerability

---------------------------------------------------------------------- Want to join the Secunia Security Team? Secunia offers a position as a security specialist, where your daily work involves reverse engineering of software and exploit code, auditing of source code, and analysis of vulnerabilit...