314 matches found
security flaw
KPPP 2.1.2 in KDE 3.1.5 and earlier, when setuid root without certain wrappers, does not properly close a privileged file descriptor for a domain socket, which allows local users to read and write to /etc/hosts and /etc/resolv.conf and gain control over DNS name resolution by opening a number of...
CVE-2005-0205
KPPP 2.1.2 in KDE 3.1.5 and earlier, when setuid root without certain wrappers, does not properly close a privileged file descriptor for a domain socket, which allows local users to read and write to /etc/hosts and /etc/resolv.conf and gain control over DNS name resolution by opening a number of...
iDEFENSE Security Advisory 02.28.05: KPPP Privileged File Descriptor Leak Vulnerability
KPPP Privileged File Descriptor Leak Vulnerability iDEFENSE Security Advisory 02.28.05 www.idefense.com/application/poi/display?id=208&type=vulnerabilities February 28, 2005 I. BACKGROUND KPPP is a dialer and front end for pppd. It allows for interactive script generation and network setup. More...
Exim buffer overflows
Buffer overflows on SPA-authentications and IPv6 names resolution...
inetutils tftp client buffer overflow
Buffer overflow during name resolution...
libxml2 multiple buffer overflows
Buffer overflow on URL parsing, name resolution...
Host Fully Qualified Domain Name (FQDN) Resolution
Nessus was able to resolve the fully qualified domain name FQDN of the remote host. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid12053; scriptversion"1.17"; scriptsetattributeattribute:"pluginmodificationdate", value:"2025/03/13"; scriptnameenglish:"Host Fully...
bind negative response cache poisoning
By spoofing negative reply it's possible to DoS name resolution while spoofed reply doesn't expire from cash...
Windows XP SP1 gethostbyaddr() flow (Re[3]: mirc32 6.0x crash when resolving dns.)
Dear vulndev, It's definitely bug in Windows XP SP1, as it was supposed by Roland Postle [email protected] To reproduce it: 1. Created zone 1.168.192.in-addr.arpa and add record: 254 IN CNAME non.existant.name 2. Use test program attached 3. I did tests on Windows NT 4.0, Windows 2000 and Windows...
Buffer overflow in webalizer
Buffer overflow in host name resolution during log analizing...
Локальный DoS против Windows
Открытие большого числа datagram-сокетов в клиентском приложении приводит к невозможности работать с UDP Включая разрешение имен...
ISC BIND 8.2.2-P5 - Denial of Service
source: https://www.securityfocus.com/bid/1923/info BIND is the Berkeley Internet Name Daemon, a free Name Resolution software package maintained by the Internet Software Consortium. A Denial of Service exists in current implementations. The problem occurs in the Compressed Zone Transfer ZXFR...
DoS против PGP Certificate Server
При подключении на порт 4000 хоста у которого не разрешается имя DNS сервер произхводит обращение по нулевому указателю...
PT-2000-1997 · Microsoft · Windows 98 +3
Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions 98, NT 4.0, 2000, and XP Description: The default configuration for the domain name resolver sets the QueryIpMatching parameter to 0, which causes Windows to accept DNS updates from hosts that it did not query,...