237 matches found
CVE-2008-1337
CVE-2008-1337 affects Timbuktu Pro 8.6.5 RC 229 for Windows, where the instant message service is vulnerable to remote DoS. An attacker can trigger a daemon crash by sending an invalid Version field, or cause CPU exhaustion and daemon termination via an invalid or partial message. The issue is do...
Hitachi SEWB/PLATFORM SEWB3远程拒绝服务漏洞
BUGTRAQ ID: 27900 CNCAN ID:CNCAN-2008022204 Hitachi SEWB/PLATFORM SEWB3存在未明安全问题。 当SEWB3从其他非SEWB进程接收到非法数据时,SEWB3消息服务会挂起或崩溃。 如果你系统设置作为服务器-客户端系统,此问题会发生,服务器和客户端消息服务全受影响。 Hitachi SEWB3/PLATFORM 02-14-/A Solaris Hitachi SEWB3/PLATFORM 02-13 AIX Hitachi SEWB3/PLATFORM 01-17-/F HP-UX11.x Hitachi...
Buffer overflow
TIBCO SmartSockets RTserver 6.8.0 and earlier, RTworks before 4.0.4, and Enterprise Message Service EMS 4.0.0 through 4.4.1 allows remote attackers to execute arbitrary code via crafted requests containing values that are used as pointer offsets...
Heap overflow
Heap-based buffer overflow in TIBCO SmartSockets RTserver 6.8.0 and earlier, RTworks before 4.0.4, and Enterprise Message Service EMS 4.0.0 through 4.4.1 allows remote attackers to execute arbitrary code via crafted requests containing size and copy-length values that trigger the overflow...
CVE-2007-5658
Heap-based buffer overflow in TIBCO SmartSockets RTserver 6.8.0 and earlier, RTworks before 4.0.4, and Enterprise Message Service EMS 4.0.0 through 4.4.1 allows remote attackers to execute arbitrary code via crafted requests containing size and copy-length values that trigger the overflow...
CVE-2007-5657
TIBCO SmartSockets RTserver 6.8.0 and earlier, RTworks before 4.0.4, and Enterprise Message Service EMS 4.0.0 through 4.4.1 allows remote attackers to execute arbitrary code via crafted requests containing values that are used as pointer offsets...
CVE-2007-5656
TIBCO SmartSockets RTserver 6.8.0 and earlier, RTworks before 4.0.4, and Enterprise Message Service EMS 4.0.0 through 4.4.1 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via crafted requests that control loop operations related to memory...
CVE-2007-5655
TIBCO SmartSockets RTserver 6.8.0 and earlier, RTworks before 4.0.4, and Enterprise Message Service EMS 4.0.0 through 4.4.1 allows remote attackers to execute arbitrary code via crafted requests containing values that are used as pointers...
CVE-2007-5658
Heap-based buffer overflow in TIBCO SmartSockets RTserver 6.8.0 and earlier, RTworks before 4.0.4, and Enterprise Message Service EMS 4.0.0 through 4.4.1 allows remote attackers to execute arbitrary code via crafted requests containing size and copy-length values that trigger the overflow...
CVE-2007-5657
CVE-2007-5657 affects TIBCO SmartSockets RTserver 6.8.0 and earlier, RTworks before 4.0.4, and EMS 4.0.0–4.4.1. The root cause is using values from requests as offsets to valid pointers during memory operations, enabling a remote attacker to execute arbitrary code or crash the service with SYSTEM...
CVE-2007-5657
TIBCO SmartSockets RTserver 6.8.0 and earlier, RTworks before 4.0.4, and Enterprise Message Service EMS 4.0.0 through 4.4.1 allows remote attackers to execute arbitrary code via crafted requests containing values that are used as pointer offsets...
CVE-2007-5655
TIBCO SmartSockets RTserver 6.8.0 and earlier, RTworks before 4.0.4, and Enterprise Message Service EMS 4.0.0 through 4.4.1 allows remote attackers to execute arbitrary code via crafted requests containing values that are used as pointers...
CVE-2007-5655
CVE-2007-5655 affects TIBCO SmartSockets RTserver 6.8.0 and earlier, RTworks before 4.0.4, and EMS 4.0.0–4.4.1. The vulnerability allows remote attackers to execute arbitrary code by sending crafted requests that include values used as pointers, which are then treated in memory operations. The iD...
Double free
The Java Message Service JMS in IBM WebSphere Application Server WAS before 6.1.0.7 allows attackers to cause a denial of service via unknown vectors involving the "double release of a bytebuffer input stream," possibly a double free vulnerability...
PT-2006-2923 · Ethereal · Ethereal
Name of the Vulnerable Software and Affected Versions: Ethereal versions 0.9.x through 0.10.14 Description: The issue allows remote attackers to cause a denial of service, resulting in a crash due to a null dereference. This can be achieved via an invalid display filter or through various...
CVE-2003-1222
BEA Weblogic Express and Server 8.0 through 8.1 SP 1, when using a foreign Java Message Service JMS provider, echoes the password for the foreign provider to the console and stores it in cleartext in config.xml, which could allow attackers to obtain the password...
CVE-2003-1464
Buffer overflow in Siemens 45 series mobile phones allows remote attackers to cause a denial of service disconnect and unavailable inbox via a Short Message Service SMS message with a long image name...