PHP-Nuke x.x SQL Injection

Hello, All PHP-Nuke versions, including the just released 6.0, are vulnerable to a very simple SQL injection that may lead to a basic DoS attack. For instance, if you create a short script, to send a few requests, I have tested with just 6 similar to this:...

Microsoft Office Web Components allows arbitary user to determine whether local file exists via Chart component "Load" method

Overview Microsoft Office Web Components OWC allows a malicious script on a web page to learn if a file exists on the client's filesystem. Description OWC allows viewing of Microsoft Office documents such as spreadsheets and charts to be viewed within an HTML document in Microsoft Internet Explor...

CVE-2002-0209

CVE-2002-0209 affects Nortel Alteon ACEdirector WebOS 9.0 with SLB and Cookie-Based Persistence enabled. A remote attacker can determine the real IP address of a web server when a half-closed session is present, causing ACEdirector to send packets from the server without mapping to the virtual IP...

CVE-2002-0209

Nortel Alteon ACEdirector WebOS 9.0, with the Server Load Balancing SLB and Cookie-Based Persistence features enabled, allows remote attackers to determine the real IP address of a web server with a half-closed session, which causes ACEdirector to send packets from the server without changing the...

CVE-2002-0209

Nortel Alteon ACEdirector WebOS 9.0, with the Server Load Balancing SLB and Cookie-Based Persistence features enabled, allows remote attackers to determine the real IP address of a web server with a half-closed session, which causes ACEdirector to send packets from the server without changing the...

PHP 4.x/5.x MySQL Library - 'Safe_mode' Filesystem Circumvention (2)

...

Alteon AceDirector - Half-Closed HTTP Request IP Address Revealing

Alteon AceDirector - Half-Closed HTTP Request IP Address Revealing source: https://www.securityfocus.com/bid/3964/info Alteon ACEdirector is a hardware solution distributed by Nortel Networks. ACEdirector runs the Nortel WebOS operating system. It is possible to retrieve the real IP addresses of...

Alteon AceDirector - Half-Closed HTTP Request IP Address Revealing

source: https://www.securityfocus.com/bid/3964/info Alteon ACEdirector is a hardware solution distributed by Nortel Networks. ACEdirector runs the Nortel WebOS operating system. It is possible to retrieve the real IP addresses of webservers that are managed by an ACEdirector. When a client is...

Many vulnerabilities in LSF 4.0

Hello. Load Shareing Facility from Platform http://www.platform.com is a suite of application resource management products that schedule, monitor and analyze the workload for a network of computers. In April 2001 I discovered some security bugs in it. I posted my exploits with technical details t...

Многочисленные проблемы в Load Sharing Facility

Символьные линки, несанкционированное чтение файлов и т.д...

DoS против IIS (malformed WebDav request)

Длинный запрос PROPFIND приводит к 100 загрузке процессора и утечке памяти. Запрос содержащий большое число символов ':' приводит к краху сервиса...

DoS против контроллеров домена в Windows 2000

Флуд определенными типами запросов приводит к 100 загрузке процессора...

[SECURITY] New version of gnupg installed

Package: gnupg Debian-specific: no The version of gnupg that was distributed in Debian GNU/Linux 2.2 had a logic error in the code that checks for valid signatures which could cause false positive results: Jim Small discovered that if the input contained multiple signed sections the exit-code gnu...

RedHat 6.2 Piranha Virtual Server Package - Default Account and Password

RedHat 6.2 Piranha Virtual Server Package - Default Account and Password source: https://www.securityfocus.com/bid/1148/info A default username and password has been discovered in the Piranha virtual server and load balancing package from RedHat. Version 0.4.12 of the piranha-gui program contains...

CVE-1999-0747

CVE-1999-0747 describes a denial-of-service in BSDi Symmetric Multiprocessing (SMP) triggered when an fstat() call is issued under very high CPU load. The available documents identify the affected context (SMP BSDi) and the vulnerable operation (fstat), but they do not provide concrete details on...

CVE-1999-0747

Denial of service in BSDi Symmetric Multiprocessing SMP when an fstat call is made when the system has a high CPU load...

AT Computing atsar_linux 1.4 - File Manipulation

AT Computing atsarlinux 1.4 - File Manipulation source: https://www.securityfocus.com/bid/1048/info atsar is a linux load monitoring software package released under the GPL by AT Computing. atsadc is a setuid root binary that is included in the atsar package. atsadc is setuid because it obtains...

AT Computing atsar_linux 1.4 - File Manipulation

source: https://www.securityfocus.com/bid/1048/info atsar is a linux load monitoring software package released under the GPL by AT Computing. atsadc is a setuid root binary that is included in the atsar package. atsadc is setuid because it obtains informatin via /dev/kmem. atsadc will accept as a...

aass_patch.txt

--- aass-old.c Mon Jul 26 20:45:46 1999 +++ aass.c Mon Jul 26 21:54:47 1999 @@ -1,5 +1,5 @@ / - The AntiAntiSniffer Sniffer by Mike Perry + The AntiAntiSniffer Sniffer v0.2 by Mike Perry To all my friends, coworkers, and associates who thought I knew better than to do something like this, please...

CVE-1999-0747

Denial of service in BSDi Symmetric Multiprocessing SMP when an fstat call is made when the system has a high CPU load...