8761 matches found
DSA-419 phpgroupware - missing filename sanitising, SQL injection
Bulletin has no description...
DEBIAN-CVE-2003-1308
CRLF injection vulnerability in fvwm-menu-directory for fvwm 2.5.x before 2.5.10 and 2.4.x before 2.4.18 allows local users to execute arbitrary commands via carriage returns in a filename...
CVE-2003-1508
Buffer overflow in mIRC 6.12, when the DCC get dialog window has been minimized and the user opens the minimized window, allows remote attackers to cause a denial of service crash via a long filename...
MS Windows XP Workstation Service Remote Exploit (MS03-049)
漏洞描述:Microsoft DCE/RPC服务可以提供网络管理功能,这些功能提供管理用户帐户和网络资源管理的功能。部分网络管理功能在Windows目录下的"debug"子目录会生成调试日志文件。Microsoft Workstation服务在处理日志记录时缺少充分的边界缓冲区检查,远程攻击者可以利用这个漏洞提供超长参数触发缓冲区溢出,以SYSTEM权限在系统上执行任意指令。 日志功能中使用vsprintf在日志文件中生成字符串,日志文件名为"NetSetup.LOG",其保存在Windows "debug"目录中。...
DEBIAN-CVE-2002-1569
gv 3.5.8, and possibly earlier versions, allows remote attackers to execute arbitrary commands via shell metacharacters in the filename for 1 a PDF file or 2 a gzip file...
(Fw) : mIRC 6.12 (latest) DCC Exploit
this news was found on irchelp, DCC Exploit Affecting mIRC 6.12 : another exploit was identified which can crash even the recently released version 6.12. It only seems to affect people who minimize DCC get dialog windows manually or by default, and then open those windows to get a file with an...
CVE-2003-0729
Buffer overflow in Tellurian TftpdNT 1.8 allows remote attackers to execute arbitrary code via a TFTP request with a long filename...
DEBIAN-CVE-2003-0805
Multiple buffer overflows in UMN gopher daemon gopherd 2.x and 3.x before 3.0.6 allows attackers to execute arbitrary code via 1 a long filename as a result of a LIST command, and 2 the GSisText function, which calculates the view-type...
CVE-2003-0805
Multiple buffer overflows in UMN gopher daemon gopherd 2.x and 3.x before 3.0.6 allows attackers to execute arbitrary code via 1 a long filename as a result of a LIST command, and 2 the GSisText function, which calculates the view-type...
MS Windows (RPC DCOM) Long Filename Overflow Exploit (MS03-026)
No description provided by source. include stdio.h include winsock2.h include windows.h include process.h include string.h include winbase.h pragma commentlib,"ws232" unsigned char bindstr= 0x05,0x00,0x0B,0x03,0x10,0x00,0x00,0x00,0x48,0x00,0x00,0x00,0x7F,0x00,0x00,0x00,...
Microsoft Windows - RPC DCOM Long Filename Overflow (MS03-026)
Microsoft Windows - RPC DCOM Long Filename Overflow MS03-026 include include include include include include pragma commentlib,"ws232" unsigned char bindstr= 0x05,0x00,0x0B,0x03,0x10,0x00,0x00,0x00,0x48,0x00,0x00,0x00,0x7F,0x00,0x00,0x00,...
Microsoft Windows - 'RPC DCOM' Long Filename Overflow (MS03-026)
include include include include include include pragma commentlib,"ws232" unsigned char bindstr= 0x05,0x00,0x0B,0x03,0x10,0x00,0x00,0x00,0x48,0x00,0x00,0x00,0x7F,0x00,0x00,0x00, 0xD0,0x16,0xD0,0x16,0x00,0x00,0x00,0x00,0x01,0x00,0x00,0x00,0x01,0x00,0x01,0x00,...
MS Windows (RPC DCOM) Long Filename Overflow Exploit (MS03-026)
Exploit for unknown platform in category remote exploits =============================================================== MS Windows RPC DCOM Long Filename Overflow Exploit MS03-026 =============================================================== include include include include include include prag...
PT-2003-1696 · Microsoft · Windows 2000 +3
Heap-based buffer overflow in the Distributed Component Object Model DCOM interface in the RPCSS Service allows remote attackers to execute arbitrary code via a malformed RPC request with a long filename parameter, a different vulnerability than CVE-2003-0352 Blaster/Nachi and CVE-2003-0715...
Tellurian TftpdNT buffer overflow
Buffer overflow on oversized filename...
SAP Internet Transaction Server
To the List, ============================================================ SEC-CONSULT Security REPORT SAP Internet Transcaction Server ======================OOOOOOOOOOOO========================== Product: ITS ITS, Version 4620.2.0.323011, Build 46B.323011 win32/IIS 5.0 Vulnerablities: -...
DEBIAN-CVE-2003-0427
Buffer overflow in mikmod 3.1.6 and earlier allows remote attackers to execute arbitrary code via an archive file that contains a file with a long filename...
CVE-2003-0427
Buffer overflow in mikmod 3.1.6 and earlier allows remote attackers to execute arbitrary code via an archive file that contains a file with a long filename...
Windows NT file function DoS
It may be possible to crash application using one of system APi function with oversized filename...
ImageMagic format string bug
Format string bug in filename...