8613 matches found
CVE-2004-0451
Multiple format string vulnerabilities in the 1 logquit, 2 logerr, or 3 loginfo functions in Software Upgrade Protocol SUP allows remote attackers to execute arbitrary code via format string specifiers in messages that are logged by syslog...
CCProxy < 6.3 Logging Function HTTP GET Request Remote Overflow
Binary data 2412.prm...
Linux Kernel 2.6.x - IPTables Logging Rules Integer Underflow Remote (PoC)
Linux Kernel 2.6.x - IPTables Logging Rules Integer Underflow Remote PoC / source: https://www.securityfocus.com/bid/11488/info It is reported that an integer underflow vulnerability is present in the iptables logging rules of the Linux kernel 2.6 branch. A remote attacker may exploit this...
Linux Kernel 2.6.x - IPTables Logging Rules Integer Underflow Remote (PoC)
/ source: https://www.securityfocus.com/bid/11488/info It is reported that an integer underflow vulnerability is present in the iptables logging rules of the Linux kernel 2.6 branch. A remote attacker may exploit this vulnerability to crash a computer that is running the affected kernel. The 2.6...
Cherokee formatstring bug
Format string bug on syslog call and gile logging in NCSA format, cherokeeloggerncsawritestring...
Linux iptables logging DoS
integer overflow causes kernel crash if logging is enabled...
[UNIX] IPTables Log Integer Underflow (PoC)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...
qwik-smtpd format string bug
Format string bug on file logging...
Linux Kernel 2.6.x Firewall Logging Rules Remote DoS Exploit
Exploit for unknown platform in category dos / poc ============================================================ Linux Kernel 2.6.x Firewall Logging Rules Remote DoS Exploit ============================================================ / iptables.log.integer.underflow.POC.c CAN-2004-0816, BID11488,...
advisory-07-nsg.txt
------------------------------------------------- No System Group - Advisory 07 - 18/10/04 ------------------------------------------------- Program: Socat Homepage: http://www.dest-unreach.org/socat/ Vulnerable Versions: Socat 1.4.0.2 and below Risk: Low / Medium Impact: Local Format String...
CVE-2004-0816
Integer underflow in the firewall logging rules for iptables in Linux before 2.6.8 allows remote attackers to cause a denial of service application crash via a malformed IP packet...
PT-2004-1879 · Linux +1 · Linux +1
Name of the Vulnerable Software and Affected Versions: Linux versions prior to 2.6.8 Description: The issue is related to an integer underflow in the firewall logging rules for iptables, which allows remote attackers to cause a denial of service, resulting in an application crash. This can be...
GLSA-200410-26 : socat: Format string vulnerability
The remote host is affected by the vulnerability described in GLSA-200410-26 socat: Format string vulnerability socat contains a syslog based format string vulnerablility in the 'msg' function of 'error.c'. Exploitation of this bug is only possible when socat is run with the '-ly' option, causing...
socat: Format string vulnerability
Background socat is a multipurpose bidirectional relay, similar to netcat. Description socat contains a syslog based format string vulnerablility in the 'msg' function of 'error.c'. Exploitation of this bug is only possible when socat is run with the '-ly' option, causing it to log messages to...
Multiple (Almost all) Browsers Tabbed Browsing Vulnerabilities
No description provided by source. bTest Your Browser/bbr br Open the link below in a new tab, then try to type data into form fields on the CitiBank website.br br a href="http://www.citibank.com/" onMouseOver="setInterval'document.myform.userinput.focus;', 10;"Open this Link in New Tab/abr br fo...
Multiple Browsers - Tabbed Browsing
Test Your Browser Open the link below in a new tab, then try to type data into form fields on the CitiBank website. Open this Link in New Tab Result: Keystrokes you pressed on the CitiBank website. /textarea // milw0rm.com 2004-10-22...
[Full-Disclosure] iDEFENSE Security Advisory 09.29.04 - Macromedia JRun 4 mod_jrun Apache Module Buffer Overflow Vulnerability
Macromedia JRun 4 modjrun Apache Module Buffer Overflow Vulnerability iDEFENSE Security Advisory 09.29.04 www.idefense.com/application/poi/display?id=145&type=vulnerabilities September 29, 2004 I. BACKGROUND Macromedia JRun 4 is a full Java 2 Enterprise Edition J2EE compatible application server...
PHP-Nuke - SQL Injection EditSave Messages
PHP-Nuke - SQL Injection EditSave Messages !/usr/bin/perl use LWP; $log = "poskomenphpnukesavemsg.txt"; $Agent = "Mbahmubangga/1.0"; $proxy = "http://172.9.1.11:80/"; proxy:port ... $browser = LWP::UserAgent-new; $browser - agent$Agent; $url = 'http://www.sitewithphpnuke.com/admin.php';...
GLSA-200409-17 : SUS: Local root vulnerability
The remote host is affected by the vulnerability described in GLSA-200409-17 SUS: Local root vulnerability Leon Juranic found a bug in the logging functionality of SUS that can lead to local privilege escalation. A format string vulnerability exists in the log function due to an incorrect call to...
SUS: Local root vulnerability
Background SUS is a utility that allows regular users to be able to execute certain commands as root. Description Leon Juranic found a bug in the logging functionality of SUS that can lead to local privilege escalation. A format string vulnerability exists in the log function due to an incorrect...