3841 matches found
CVE-2006-5464
Multiple unspecified vulnerabilities in the layout engine in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allow remote attackers to cause a denial of service crash via unspecified vectors...
DEBIAN-CVE-2006-5464
Multiple unspecified vulnerabilities in the layout engine in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allow remote attackers to cause a denial of service crash via unspecified vectors...
CVE-2006-5464
Multiple unspecified vulnerabilities in the layout engine in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allow remote attackers to cause a denial of service crash via unspecified vectors...
security flaw
Multiple unspecified vulnerabilities in the layout engine in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allow remote attackers to cause a denial of service crash via unspecified vectors...
security flaw
Multiple unspecified vulnerabilities in the layout engine in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allow remote attackers to cause a denial of service crash via unspecified vectors...
Mozilla products contain several unspecified errors in the layout engine
Overview The Mozilla layout engine contains several unspecified vulnerabilities that may allow an attacker to execute arbitrary code or crash the vulnerable application. Description The Mozilla layout engine, also known as Gecko, is responsible for parsing HTML, XML, CSS, layout, and rendering...
Microsoft IE HTML布局和定位内存破坏漏洞(MS06-042)
Microsoft Internet Explorer是微软发布的非常流行的WEB浏览器。 Internet Explorer解析带有特定布局定位组合的HTML的方式中存在内存破坏漏洞,成功利用此漏洞的攻击者可以完全控制受影响的系统。 由于没有正确的处理CSS类值,通过document.getElementByID访问特制的CSS元素就会触发这个漏洞。攻击者可能通过构建特制网页来利用此漏洞,如果用户查看了该网页,则可能允许远程执行代码。 Microsoft Internet Explorer 6.0 SP1 Microsoft Internet Explorer 6.0 临时解决方法:...
USN-347-1: Linux kernel vulnerabilities
Sridhar Samudrala discovered a local Denial of Service vulnerability in the handling of SCTP sockets. By opening such a socket with a special SOLINGER value, a local attacker could exploit this to crash the kernel. CVE-2006-4535 Kirill Korotaev discovered that the ELF loader on the ia64 and sparc...
CVE-2006-3637
Microsoft Internet Explorer 5.01 SP4 and 6 does not properly handle various HTML layout component combinations, which allows user-assisted remote attackers to execute arbitrary code via a crafted HTML file that leads to memory corruption, aka "HTML Rendering Memory Corruption Vulnerability."...
Microsoft Internet Explorer HTML Layout and Positioning Remote Code Execution Vulnerability
Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. This vulnerability is related to how the browser renders HTML with certain layout and positioning combinations. An attacker could exploit this issue to execute arbitrary code in the context of the user...
apache -- mod_rewrite buffer overflow vulnerability
The Apache Software Foundation and The Apache HTTP Server Project reports: An off-by-one flaw exists in the Rewrite module, modrewrite, as shipped with Apache 1.3 since 1.3.28, 2.0 since 2.0.46, and 2.2 since 2.2.0. Depending on the manner in which Apache HTTP Server was compiled, this software...
excelExploit.txt
/--------------------------------------------------------------------- Microsoft Excel Remote Code Execution Proof Of Concept. Tested against : Excel 2000 on Win XP SP1 , and Win2000 SP4 Description: Microsoft Excel is prone to a remote code execution issue which may be triggered when a malformed...
Microsoft Excel - Code Execution
Microsoft Excel - Code Execution // This is an easy compilation version by phar include include /--------------------------------------------------------------------- Microsoft Excel Remote Code Execution Proof Of Concept. Tested against : Excel 2000 on Win XP SP1 , and Win2000 SP4 Description:...
Microsoft Excel - Code Execution
// This is an easy compilation version by phar include include /--------------------------------------------------------------------- Microsoft Excel Remote Code Execution Proof Of Concept. Tested against : Excel 2000 on Win XP SP1 , and Win2000 SP4 Description: Microsoft Excel is prone to a remo...
CVE-2006-3019
Multiple PHP remote file inclusion vulnerabilities in phpCMS 1.2.1pl2 allow remote attackers to execute arbitrary PHP code via a URL in the PHPCMSINCLUDEPATH parameter to files in parser/include/ including 1 class.parserphpcms.php, 2 class.sessionphpcms.php, 3 class.editphpcms.php, 4...
Round Cube Webmail 0.1 -20051021 - Full Path Disclosure
source: https://www.securityfocus.com/bid/15920/info Round Cube will reportedly reveal its installation path in an error message output to the client. The filesystem layout can be sensitive information that is useful in other attacks against the target server. The trigger for this behavior is not...
Multi-Format Shellcode Encoding Tool - Beta v2.0 (w32)
No description provided by source. / ,sSSSis ,sSSSs, Beta v2.0 w32. iS" dP dY" ,SP Encodes binary data to/from a variety of formats. .SP dSS" ,sS" Copyright C 2003-2005 by Berend-Jan Wever dS' Sb ,sY" [email protected] .SP dSSP' sSSSSSSP http://spaces.msn.com/members/berendjanwever iS: Thi...
Multi-Format Shellcode Encoding Tool - Beta v2.0 (w32)
Exploit for generator platform in category shellcode ====================================================== Multi-Format Shellcode Encoding Tool - Beta v2.0 w32 ====================================================== / ,sSSSis ,sSSSs, Beta v2.0 w32. iS" dP dY" ,SP Encodes binary data to/from a...
Multi-Format Shellcode Encoding Tool - Beta 2.0 w32
Multi-Format Shellcode Encoding Tool - Beta v2.0 w32. Shellcode exploit for generator platform / ,sSSSis ,sSSSs, Beta v2.0 w32. iS" dP dY" ,SP Encodes binary data to/from a variety of formats. .SP dSS" ,sS" Copyright C 2003-2005 by Berend-Jan Wever dS' Sb ,sY" .SP dSSP' sSSSSSSP...
Snort <= 2.4.2 Back Orifice Parsing Remote Buffer Overflow Exploit
Exploit for linux platform in category remote exploits ================================================================== Snort $Id: THCsnortbo.c,v 1.1 2005/10/24 11:38:59 thccvs Exp $ / / DETAILS The bug is in sppbo.c, BoGetDirection function static int BoGetDirectionPacket p, char pktdata uint3...