Lucene search
K

314 matches found

RedHat Linux
RedHat Linux
added 2005/03/03 3:33 p.m.3 views

security flaw

KPPP 2.1.2 in KDE 3.1.5 and earlier, when setuid root without certain wrappers, does not properly close a privileged file descriptor for a domain socket, which allows local users to read and write to /etc/hosts and /etc/resolv.conf and gain control over DNS name resolution by opening a number of...

4.6CVSS5.8AI score0.0036EPSS
Exploits0References4
Cvelist
Cvelist
added 2005/02/28 5:0 a.m.40 views

CVE-2005-0205

KPPP 2.1.2 in KDE 3.1.5 and earlier, when setuid root without certain wrappers, does not properly close a privileged file descriptor for a domain socket, which allows local users to read and write to /etc/hosts and /etc/resolv.conf and gain control over DNS name resolution by opening a number of...

6.1AI score0.0036EPSS
Exploits0References6
securityvulns
securityvulns
added 2005/02/28 12:0 a.m.41 views

iDEFENSE Security Advisory 02.28.05: KPPP Privileged File Descriptor Leak Vulnerability

KPPP Privileged File Descriptor Leak Vulnerability iDEFENSE Security Advisory 02.28.05 www.idefense.com/application/poi/display?id=208&type=vulnerabilities February 28, 2005 I. BACKGROUND KPPP is a dialer and front end for pppd. It allows for interactive script generation and network setup. More...

4.6CVSS0.9AI score0.0036EPSS
Exploits0
securityvulns
securityvulns
added 2005/01/15 12:0 a.m.67 views

Exim buffer overflows

Buffer overflows on SPA-authentications and IPv6 names resolution...

4AI score
Exploits0References4Affected Software1
securityvulns
securityvulns
added 2004/10/27 12:0 a.m.24 views

inetutils tftp client buffer overflow

Buffer overflow during name resolution...

2.8AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2004/10/27 12:0 a.m.24 views

libxml2 multiple buffer overflows

Buffer overflow on URL parsing, name resolution...

4.6AI score
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2004/02/11 12:0 a.m.808 views

Host Fully Qualified Domain Name (FQDN) Resolution

Nessus was able to resolve the fully qualified domain name FQDN of the remote host. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid12053; scriptversion"1.17"; scriptsetattributeattribute:"pluginmodificationdate", value:"2025/03/13"; scriptnameenglish:"Host Fully...

5.5AI score
Exploits0
securityvulns
securityvulns
added 2003/11/28 12:0 a.m.37 views

bind negative response cache poisoning

By spoofing negative reply it's possible to DoS name resolution while spoofed reply doesn't expire from cash...

2.1AI score
Exploits0Affected Software1
securityvulns
securityvulns
added 2003/05/31 12:0 a.m.61 views

Windows XP SP1 gethostbyaddr() flow (Re[3]: mirc32 6.0x crash when resolving dns.)

Dear vulndev, It's definitely bug in Windows XP SP1, as it was supposed by Roland Postle [email protected] To reproduce it: 1. Created zone 1.168.192.in-addr.arpa and add record: 254 IN CNAME non.existant.name 2. Use test program attached 3. I did tests on Windows NT 4.0, Windows 2000 and Windows...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2002/04/15 12:0 a.m.42 views

Buffer overflow in webalizer

Buffer overflow in host name resolution during log analizing...

10CVSS2.8AI score0.0199EPSS
Exploits0References1Affected Software2
securityvulns
securityvulns
added 2001/02/08 12:0 a.m.22 views

Локальный DoS против Windows

Открытие большого числа datagram-сокетов в клиентском приложении приводит к невозможности работать с UDP Включая разрешение имен...

1.2AI score
Exploits0References1
Exploit DB
Exploit DB
added 2000/11/01 12:0 a.m.28 views

ISC BIND 8.2.2-P5 - Denial of Service

source: https://www.securityfocus.com/bid/1923/info BIND is the Berkeley Internet Name Daemon, a free Name Resolution software package maintained by the Internet Software Consortium. A Denial of Service exists in current implementations. The problem occurs in the Compressed Zone Transfer ZXFR...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2000/06/15 12:0 a.m.24 views

DoS против PGP Certificate Server

При подключении на порт 4000 хоста у которого не разрешается имя DNS сервер произхводит обращение по нулевому указателю...

0.7AI score
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2000/04/14 12:0 a.m.9 views

PT-2000-1997 · Microsoft · Windows 98 +3

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions 98, NT 4.0, 2000, and XP Description: The default configuration for the domain name resolver sets the QueryIpMatching parameter to 0, which causes Windows to accept DNS updates from hosts that it did not query,...

9.8CVSS6.5AI score0.06088EPSS
Exploits0References4
Rows per page
Query Builder