8763 matches found
CVE-2006-0225
scp in OpenSSH 4.2p1 allows attackers to execute arbitrary commands via filenames that contain shell metacharacters or spaces, which are expanded twice...
Mozilla Thunderbird attachment spoofing
Filename can be spoofed by using large number of spaces, display icon - with Content-Type header...
USN-242-1: mailman vulnerabilities
Aliet Santiesteban Sifontes discovered a remote Denial of Service vulnerability in the attachment handler. An email with an attachment whose filename contained invalid UTF-8 characters caused mailman to crash. CVE-2005-3573 Mailman did not sufficiently verify the validity of email dates. Very lar...
AmbiCom bluetooth stack / module buffer overflow
Buffer overflow on oversized filename in PUSH oparation...
WinRAR 3.30 - 'Filename' Local Buffer Overflow (1)
/ WinRAR Buffer Overflow 3.30 Exploit Bug founded by: Vredited By Alpha Programmer & Trap-Set U.H Team Exploit made by: K4P0 Contact: [email protected] / include include int mainvoid char EvilBuff1024; // Normal cmd.exe shellcode. char shellcode =...
CVE-2005-4601
The delegate code in ImageMagick 6.2.4.5-0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in a filename that is processed by the display command...
CVE-2005-4601
The delegate code in ImageMagick 6.2.4.5-0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in a filename that is processed by the display command...
CVE-2005-4667
Buffer overflow in UnZip 5.50 and earlier allows user-assisted attackers to execute arbitrary code via a long filename command line argument. NOTE: since the overflow occurs in a non-setuid program, there are not many scenarios under which it poses a vulnerability, unless unzip is passed long...
CVE-2005-4667
Buffer overflow in UnZip 5.50 and earlier allows user-assisted attackers to execute arbitrary code via a long filename command line argument. NOTE: since the overflow occurs in a non-setuid program, there are not many scenarios under which it poses a vulnerability, unless unzip is passed long...
DEBIAN-CVE-2005-4667
Buffer overflow in UnZip 5.50 and earlier allows user-assisted attackers to execute arbitrary code via a long filename command line argument. NOTE: since the overflow occurs in a non-setuid program, there are not many scenarios under which it poses a vulnerability, unless unzip is passed long...
CVE-2005-4786
Buffer overflow in the archive decompression library vrAZMain.dll 5.8.22.137, as used in HAURI anti-virus products including 1 ViRobot Expert 4.0, 2 ViRobot Advanced Server, and 3 HAURI LiveCall, allows user-assisted attackers to execute arbitrary code via an ALZ archive containing a file with a...
CVE-2005-4667
Buffer overflow in UnZip 5.50 and earlier allows user-assisted attackers to execute arbitrary code via a long filename command line argument. NOTE: since the overflow occurs in a non-setuid program, there are not many scenarios under which it poses a vulnerability, unless unzip is passed long...
[BUGZILLA] Security advisory for Bugzilla < 2.16.11
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Bugzilla Security Advisory ========================== December 27, 2005 Summary ======= Bugzilla is a Web-based bug-tracking system, used by a large number of software projects. This advisory covers an insecure temporary filename handling issue in...
Info-ZIP UnZip 5.x - File Name Buffer Overflow
Info-ZIP UnZip 5.x - File Name Buffer Overflow // source: https://www.securityfocus.com/bid/15968/info Info-ZIP 'unzip' is susceptible to a filename buffer-overflow vulnerability. The application fails to properly bounds-check user-supplied data before copying it into an insufficiently sized memo...
Info-ZIP UnZip 5.x - File Name Buffer Overflow
// source: https://www.securityfocus.com/bid/15968/info Info-ZIP 'unzip' is susceptible to a filename buffer-overflow vulnerability. The application fails to properly bounds-check user-supplied data before copying it into an insufficiently sized memory buffer. This issue allows attackers to execu...
CVE-2005-3533
Buffer overflow in OSH before 1.7-15 allows local users to execute arbitrary code via a long current working directory and filename...
CVE-2005-3533
Buffer overflow in OSH before 1.7-15 allows local users to execute arbitrary code via a long current working directory and filename...
PT-2005-4687 · Php · Php Upload Center
Name of the Vulnerable Software and Affected Versions: PHP Upload Center affected versions not specified Description: A directory traversal issue exists in index.php, allowing remote attackers to read arbitrary files by including "../" sequences in the filename parameter of the vulnerable API...
CVE-2005-3891
Stack-based buffer overflow in Gadu-Gadu 7.20 allows remote attackers to cause a denial of service crash via an image filename between exactly 192 to 200 characters, which does not account for the "imgcache" string that is added to the end of the buffer...
CVE-2005-3887
CVE-2005-3887 affects Gadu-Gadu 7.20. The vulnerability arises from improper handling of MS-DOS device names in filenames, enabling a remote attacker to cause a denial of service (hang) with an image filename like AUX: and potentially write to the LPT1 port using a filename such as "LPT1:". The c...