99 matches found
Important: Red Hat Security Advisory: java-1.6.0-openjdk security update
Updated java-1.6.0-openjdk packages that fix several security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...
Important: Red Hat Security Advisory: java-1.7.0-openjdk security update
Updated java-1.7.0-openjdk packages that fix several security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...
Critical: Red Hat Security Advisory: java-1.6.0-openjdk security update
Updated java-1.6.0-openjdk packages that fix several security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...
Oracle JVM gopher protocol - SSRF
Application: Oracle JVM Versions Affected: Oracle JVM Vendor URL: http://www.oracle.com Bugs: Security Bypass, SSRF Exploits: YES Reported: 16.07.2012 Vendor response: 18.07.2012 Date of Public Advisory: 23.10.2012 Reference: Oracle CPU October 2012 Authors: Alexander Polyakov ERPScan Description...
Fedora 15 : squid-3.1.15-1.fc15 (2011-11817)
Upstream 3.1.15 release fixing a buffer overflow issue in gopher:// processing SQUID-2011:3 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...
Squid Gopher Protocol Handling Buffer Overflow (CVE-2005-0094)
Squid is a full featured, open source web proxy caching server. It supports proxying of variety of protocols including FTP, HTTP, DNS and Gopher. A vulnerability exists in the way Squid web proxy handles responses from Gopher servers. An overly long line in a Gopher response can overflow a fixed...
safari-windows.txt
iframe src='gopher://larholm.com" -chrome...
Safari 3 for Windows Beta Remote Command Execution PoC
No description provided by source. !-- Safari for Windows, 0day exploit in 2 hours http://larholm.com/2007/06/12/safari-for-windows-0day-exploit-in-2-hours/ By Thor Larholm The below PoC exploit will exploit Safari by bouncing through Firefox via the Gopher protocol, passing on unfiltered input f...
Apple Safari 3 for Windows Beta - Remote Command Execution
Apple Safari 3 for Windows Beta - Remote Command Execution iframe src='gopher://larholm.com" -chrome...
Safari 3 for Windows Beta Remote Command Execution PoC
Exploit for unknown platform in category remote exploits ====================================================== Safari 3 for Windows Beta Remote Command Execution PoC ====================================================== iframe src='gopher://larholm.com" -chrome...
Apple Safari 3 for Windows Beta - Remote Command Execution
iframe src='gopher://larholm.com" -chrome...
UMN Gopher vulnerable to buffer overflow via overly long "+VIEWS:"
Overview The University of Minnesota Gopher client may be vulnerable to a buffer overflow when handling overly long "+VIEWS:" reply messages sent from a malicious server. Description The UMN Gopher suite includes a Gopher client for navigating Gopherspace. However, the Gopher client may incorrect...
squid web cache proxy multiple bugs
WCCPISEEYOU message WCCP Web Cache Communication Protocol DoS, gopher protocol buffer overflow...
squid -- buffer overflow vulnerability in gopherToHTML
The squid patches page notes: A malicious gopher server may return a response with very long lines that cause a buffer overflow in Squid. Workaround: Since gopher is very obscure these days, do not allow Squid to any gopher servers. Use an ACL rule like: acl Gopher proto gopher httpaccess deny...
Proxy Accepts gopher:// Protocol Requests
Binary data 1590.prm...
Security Bulletin MS02-027: Unchecked Buffer in Gopher Protocol Handler Can Run Code of Attacker''s Choice (Q323889)
Title: Unchecked Buffer in Gopher Protocol Handler Can Run Code of Attacker's Choice Q323889 Date: 11 June 2002 Software: Internet Explorer, Proxy Server, Internet Security and Acceleration Server Impact: Run Code of Attacker's Choice Max Risk: Critical Bulletin: MS02-027 Microsoft encourages...
Microsoft Internet Explorer contains buffer overflow in handling of gopher replies
Overview There is a buffer overflow in Internet Explorer when IE receives information from a gopher service. Description Gopher is a protocol that presents documents and services in a hierarchal representation, and is similar in some ways to HTTP. Internet Explorer reportedly contains a buffer...
Microsoft Internet Explorer, Microsoft Proxy & Microsoft ISA server buffer overflow gopher buffer overflow
No description provided...
Buffer overflow in MSIE gopher code
OVERVIEW ======== Gopher is a protocol developed at the University of Minnesota in the early 1990's. Gopher servers offer hierarchically organized directories and files. These form a "gopherspace" which can be thought of as the predecessor of the World Wide Web. Gopher was mostly abandoned soon...