8517 matches found
CVE-2006-6306
Format string vulnerability in Novell Modular Authentication Services NMAS in the Novell Client 4.91 SP2 and SP3 allows users with physical access to read stack and memory contents via format string specifiers in the Username field of the logon window...
CVE-2006-6306
The CVE-2006-6306 entry documents a local format-string vulnerability in NMAS within the Novell Client 4.91 SP2/SP3. The flaw affects the Username field of the logon window, allowing users with physical access to read stack and memory contents via format specifiers. The connected documents do not...
CVE-2006-6250
Format string vulnerability in Songbird Media Player 0.2 and earlier allows remote attackers to cause a denial of service crash via an M3U Playlist file containing extended ASCII, which causes the Unicode converter to be invoked...
CVE-2006-6250
Format string vulnerability in Songbird Media Player 0.2 and earlier allows remote attackers to cause a denial of service crash via an M3U Playlist file containing extended ASCII, which causes the Unicode converter to be invoked...
CVE-2006-6250
Format string vulnerability in Songbird Media Player 0.2 and earlier allows remote attackers to cause a denial of service crash via an M3U Playlist file containing extended ASCII, which causes the Unicode converter to be invoked...
CVE-2006-6250
CVE-2006-6250 : Format string vulnerability in Songbird Media Player 0.2 and earlier allows a remote attacker to cause a denial of service (crash) by supplying an M3U playlist with extended ASCII, which invokes the Unicode converter. No further exploitation details are provided in the connected d...
CVE-2006-6226
Multiple format string vulnerabilities in NeoEngine 0.8.2 and earlier, and CVS 3422, allow remote attackers to cause a denial of service and possibly execute arbitrary code via 1 Console::Render in neoengine/console.cpp and 2 TextArea::Render in neowtk/textarea.cpp...
CVE-2006-6226
Multiple format string vulnerabilities in NeoEngine 0.8.2 and earlier, and CVS 3422, allow remote attackers to cause a denial of service and possibly execute arbitrary code via 1 Console::Render in neoengine/console.cpp and 2 TextArea::Render in neowtk/textarea.cpp...
CVE-2006-6226
Multiple format string vulnerabilities in NeoEngine 0.8.2 and earlier, and CVS 3422, allow remote attackers to cause a denial of service and possibly execute arbitrary code via 1 Console::Render in neoengine/console.cpp and 2 TextArea::Render in neowtk/textarea.cpp...
CVE-2006-6226
CVE-2006-6226 affects NeoEngine 0.8.2 and earlier and CVS 3422. The root cause is multiple format-string vulnerabilities in Console::Render (neoengine/console.cpp) and TextArea::Render (neowtk/textarea.cpp). Impact per sources: remote denial of service and potential arbitrary code execution. Affe...
Novell Netware Client multiple security vulnerabilities
Buffer overflow in EnumPrinters and OpenPrinter functions. Format string vulnerability in Novell Modular Authentication Services...
Songbird Media Player format string
Format string vulnerability on M3U files parsing...
[Full-disclosure] Layered Defense Advisory: Novell Client 4.91 Format String Vulnerability
================================================== Layered Defense Advisory 1 December 2006 ================================================== 1 Affected Software Novell Client 4.91 SP2 Novell Client 4.91 SP2 Patch Kit Novell Client 4.91 SP3 Earlier versions may also be vulnerable...
OWASP JBroFuzz 0.3 Fuzzer Released!
JBroFuzz is an OWASP Project that emerged from penetration testing. It deals with fuzzing stateless network protocols such as HTTP, SOAP, XML, LDAP, etc. Apart from fancy terminology, JBroFuzz 0.3 has inbuilt the following Generators ready to be used: basic cross site scripting checks XSS basic S...
Perl格式串处理整数溢出漏洞
BUGTRAQ ID: 15629 CVECAN ID: CVE-2005-3962,CVE-2005-3912 Perl是一种免费且功能强大的编程语言。 由于Perl没有正确的处理格式化打印函数中的格式指示符导致了格式串溢出漏洞,远程攻击者可能利用此漏洞在主机上执行任意指令。 参数格式串(%I$n)中的INTMAX值可能导致Perlsvvcatpvfn函数中的efix出现整数溢出。攻击者可以利用这个漏洞远程执行任意指令或导致拒绝服务。 Larry Wall Perl http://www.debian.org/security/2005/dsa-943 补丁下载: Source...
Songbird Media Player <= 0.2 Format String Denial of Service PoC
No description provided by source. / ======================================================================== 0-day Songbird Media Player = 0.2 Format String Denial Of Service PoC ======================================================================== Songbird Media Player and lower experiance a...
CVE-2006-4181
CVE-2006-4181 refers to a format-string vulnerability in GNU Radius’ SQL accounting code (sqllog) used by radiusd when SQL back-ends (postgresql/mysql/odbc) are enabled. The issue exists in Radius 1.2 and 1.3 and can allow an unauthenticated remote attacker to execute arbitrary code with the radi...
Songbird Media Player <= 0.2 Format String Denial of Service PoC
Exploit for unknown platform in category dos / poc ================================================================ Songbird Media Player = 0.2 Format String Denial of Service PoC ================================================================ /...
Songbird Media Player 0.2 - Format String Denial of Service (PoC)
Songbird Media Player 0.2 - Format String Denial of Service PoC / ======================================================================== 0-day Songbird Media Player November 2006 - Month Of Greg's Media Player Expl...
Songbird Media Player 0.2 - Format String Denial of Service (PoC)
/ ======================================================================== 0-day Songbird Media Player November 2006 - Month Of Greg's Media Player Exploits : i'll probably continue...