The IIS server vulnerability analysis-vulnerability warning-the black bar safety net

4 on 1 to 5 November, in Microsoft's patch day, Microsoft released a more high-risk vulnerabilities, one of MS15-0 3 4 vulnerability that affects most widely, will cause the IIS server to blue screen crash, special circumstances or lead to information disclosure. Alibaba security research...

squid: assertion failure in Range header processing (SQUID-2014:2)

A flaw was found in the way Squid handled malformed HTTP Range headers. A remote attacker able to send HTTP requests to the Squid proxy could use this flaw to crash Squid...

squid security update

7:3.3.8-12 - Resolves: 1134933 - CVE-2014-3609 assertion failure in header processing...

squid security update

7:3.1.10-22 - Resolves: 1134936 - CVE-2013-4115 buffer overflow when processing overly long DNS names 7:3.1.10-21 - Resolves: 1134936 - CVE-2014-3609 assertion failure in header processing...

RedHat Update for tomcat6 RHSA-2012:0475-01

Check for the Version of tomcat6 OpenVAS Vulnerability Test RedHat Update for tomcat6 RHSA-2012:0475-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Polipo 1.0.4.1 - POST/PUT HTTP Header Processing Denial of Service

source: https://www.securityfocus.com/bid/49908/info Polipo is prone to a denial-of-service vulnerability. Remote attackers can exploit this issue to cause the application to crash, denying service to legitimate users. Polipo 1.0.4.1 is vulnerable; other versions may also be affected...

Polipo 1.0.4.1 - POSTPUT HTTP Header Processing Denial of Service

Polipo 1.0.4.1 - POSTPUT HTTP Header Processing Denial of Service source: https://www.securityfocus.com/bid/49908/info Polipo is prone to a denial-of-service vulnerability. Remote attackers can exploit this issue to cause the application to crash, denying service to legitimate users. Polipo 1.0.4...

Google Chrome < 4.1.249.1036 Multiple Vulnerabilities

Binary data 5364.pasl...

DEBIAN-CVE-2009-2820

The web interface in CUPS before 1.4.2, as used on Apple Mac OS X before 10.6.2 and other platforms, does not properly handle 1 HTTP headers and 2 HTML templates, which allows remote attackers to conduct cross-site scripting XSS attacks and HTTP response splitting attacks via vectors related to a...

Microsoft Windows SMB2 '_Smb2ValidateProviderCallback()' Remote Code Execution Vulnerability

Microsoft Windows is prone to a remote code-execution vulnerability when processing the protocol headers for the Server Message Block SMB Negotiate Protocol Request. NOTE: Reportedly, for this issue to be exploitable, file sharing must be enabled. An attacker can exploit this issue to execute cod...

[oCERT-2008-004] multiple speex implementations insufficient boundary checks

2008/04/17 2008-004 multiple speex implementations insufficient boundary checks Description: The reference speex decoder from the Speex library performs insufficient boundary checks on a header structure read from user input, this has been reported in oCERT-2008-002 advisory. Further investigatio...

Mozilla Foundation Security Advisory 2006-74

Mozilla Foundation Security Advisory 2006-74 Title: Mail header processing heap overflows Impact: Critical Announced: December 19, 2006 Reporter: Georgi Guninski, David Bienvenu Products: Thunderbird, SeaMonkey Fixed in: Thunderbird 1.5.0.9 SeaMonkey 1.0.7 Description Georgi Guninski reported tha...

FreeBSD : sylpheed -- buffer overflow in header processing (f8536143-9bc4-11d9-b8b3-000a95bc6fae)

The Sylpheed website states : A buffer overflow which occurred when replying to a message with certain headers which contain non-ascii characters was fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD...

sylpheed -- buffer overflow in header processing

The Sylpheed web site states: A buffer overflow which occurred when replying to a message with certain headers which contain non-ascii characters was fixed...

GLSA-200411-19 : Pavuk: Multiple buffer overflows

The remote host is affected by the vulnerability described in GLSA-200411-19 Pavuk: Multiple buffer overflows Pavuk contains several buffer overflow vulnerabilities in the code handling digest authentication and HTTP header processing. This issue is similar to GLSA 200407-19, but contains more...

CVE-2002-1255

Microsoft Outlook 2002 is affected by an E-mail Header Processing vulnerability where an email containing a certain invalid header field, accessed via POP3, IMAP, or WebDAV, can cause a denial of service (repeated failure). The underlying issue is in how the header is processed, leading to availa...