1417 matches found
LibHTTPD 1.2 - POST Buffer Overflow
// source: https://www.securityfocus.com/bid/6172/info LibHTTPD is vulnerable to a buffer overflow condition. By passing a POST request of excessive length, it is possible to overrun a static buffer. This may result in sensitive locations in memory being overwritten by attacker-supplied values...
AN HTTPD 1.381.391.401.41 - SOCKS4 Buffer Overflow
AN HTTPD 1.381.391.401.41 - SOCKS4 Buffer Overflow source: https://www.securityfocus.com/bid/6012/info A buffer overflow vulnerability has been reported for AN HTTPD. The vulnerability is due to insufficient bounds checking of usernames for SOCKS4 requests. When AN HTTPD acts as a SOCKS4 server, ...
Null HTTPd 0.5 - Remote Heap Overflow
Null HTTPd 0.5 - Remote Heap Overflow // source: https://www.securityfocus.com/bid/5774/info Null httpd is a small multithreaded web server for Linux and Windows, mantained by NullLogic. A remotely exploitable heap overflow has been discovered in Null httpd. By passing a negative content length...
CVE-2002-0677
CDE ToolTalk database server ttdbserver allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTHUNIX procedure call, which is used as a table index by the TTISCLOSE procedure...
CVE-2002-0677
CDE ToolTalk database server ttdbserver allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTHUNIX procedure call, which is used as a table index by the TTISCLOSE procedure...
CVE-2002-0677
The CVE-2002-0677 entry affects the CDE ToolTalk RPC database server (rpc.ttdbserverd). The OpenVAS/Core/CORE documentation confirms the vulnerability: an attacker can exploit improper range checking on the AUTH_UNIX file descriptor argument passed to _TT_ISCLOSE, using it as an index into a 128-...
Mandrake 789 RedHat 6.x7 Bonobo EFSTool - Commandline Argument Buffer Overflow (1)
Mandrake 789 RedHat 6.x7 Bonobo EFSTool - Commandline Argument Buffer Overflow 1 source: https://www.securityfocus.com/bid/5125/info Bonobo is a set of tools and CORBA interfaces included as part of the Gnome infrastructure. It is designed for use on the Linux and Unix operating systems. A boundr...
Mandrake 7/8/9 / RedHat 6.x/7 Bonobo EFSTool - Commandline Argument Buffer Overflow (3)
// source: https://www.securityfocus.com/bid/5125/info Bonobo is a set of tools and CORBA interfaces included as part of the Gnome infrastructure. It is designed for use on the Linux and Unix operating systems. A boundry condition error has been discovered in the efstool program. Due to improper...
CVE-2001-1185
Some AIO operations in FreeBSD 4.4 may be delayed until after a call to execve, which could allow a local user to overwrite memory of the new process and gain privileges...
CVE-2001-1185
CVE-2001-1185 affects FreeBSD 4.4. Some AIO operations may be delayed until after an execve call, allowing a local user to overwrite memory of the new process and gain privileges. The provided documents do not include exploitation details or remediation/fix information.
Lumigent Log Explorer 3.0.1 - XP_LogAttach_SetPort Buffer Overflow
source: https://www.securityfocus.com/bid/5017/info A buffer overflow vulnerability in xplogattach.dll has been reported for Lumigent Log Explorer. Specifically, this affects the xplogattachsetport stored procedure. If this condition is successfully exploited, it is possible for locations in memo...
SLRNPull 0.9.6 - Spool Directory Command Line Parameter Buffer Overflow
source: https://www.securityfocus.com/bid/4569/info N is a freely available, open source news reading utility. It is developed and maintained by the SLRN project, and designed for use on various operating systems. This problem affects the UNIX and Linux implementation. Due to a boundary condition...
Microsoft Internet Information Server (IIS) 4.0, 5.0, and 5.1 buffer overflow in chunked encoding transfer mechanism for ASP
Overview A buffer overflow vulnerability in IIS 4.0, 5.0, and 5.1 could allow an intruder to execute arbitrary code on an IIS server with the privileges of the ASP ISAPI extension. Description Chunked encoding is a means to transfer variable-sized units of data called chunks from a web client to ...
CVE-2001-1009
CVE-2001-1009 affects fetchmail (fetchmail-ssl) prior to 5.8.17. Multiple OpenVAS/DSA/Nessus entries describe a memory corruption in the IMAP and POP3 code where unverified input and missing bounds checking can allow a remote attacker—by controlling the server the client connects to—to cause writ...
CVE-2001-1009
Fetchmail aka fetchmail-ssl before 5.8.17 allows a remote malicious 1 IMAP server or 2 POP/POP3 server to overwrite arbitrary memory and possibly gain privileges via a negative index number as part of a response to a LIST request...
Проблема с асинхронным вводом/выводом в FreeBSD (privelege escalation)
Результат отложенной процедуры после exec может переписать память suid-процесса...
FreeBSD 4.4 - AIO Library Cross Process Memory Write
FreeBSD 4.4 - AIO Library Cross Process Memory Write // source: https://www.securityfocus.com/bid/3661/info aio.h is a library implementing the POSIX standard for asynchronous I/O. Support for AIO may be enabled in FreeBSD by compiling the kernel with the VFSAIO option. This option is not enabled...
AIO vulnerability
------------------------------------------------------------------------------ Soniq Security Advisory David Rufino [email protected] Dec 9, 2001 Race Condition in FreeBSD AIO implementation http://elysium.soniq.net/dr/tao/tao.html...
Много дырок в ssh (ssh1, ssh2, openssh)
Проблемы с перезаписью памяти, проблемы с обменом ключей, позволяющие перехватить сеансовый ключ...
[NetGuard Security] NSI Rwhoisd another Remote Format String Vulnerability
NSI Rwhoisd another Remote Format String Vulnerability Release infomation ------------------ Release Date: 2001-11-22 Author: By NetGuard Security Team alert7 [email protected] Homepage: http://www.netguard.com.cn/ Description ----------- Rwhoisd is a publicly available RWHOIS server daemon...