CVE-2004-0462

The built-in web servers for multiple networking devices do not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause the user agent to send those cookies in plaintext over an HTTP session with the same server...

Ricoh Aficio 450/455 PCL 5e Printer ICMP Denial of Service Exploit

No description provided by source. / RICOH Aficio 450/455 PCL 5e Printer ICMP DOS vulnerability Exploit. DATE: 12.15.2004 Vuln Advisory : Hongzhen Zhoufelixzhou at hotmail dot com Exploit Writer : x90cKyong [email protected]/jyj9782 Testing -----------------------------------------------...

CVE-2004-0139

Technical details about CVE-2004-0139 are not provided in the supplied documents; affected product, exploit, and impact are not specified. Monitor for updates.

CVE-2004-0139

Unknown vulnerability in the bsd.a kernel networking for SGI IRIX 6.5.22 through 6.5.25, and possibly earlier versions, in which "tunbind changes tbind's behavior," has unknown impact and attack vectors...

CVE-2004-0744

The TCP/IP Networking component in Mac OS X before 10.3.5 allows remote attackers to cause a denial of service memory and resource consumption via a "Rose Attack" that involves sending a subset of small IP fragments that do not form a complete, larger packet...

Multiple networking devices fail to set the "Secure" attribute of a cookie

Overview Multiple vendors' networking devices fail to set the "Secure" cookie attribute and could disclose sensitive information about a user's HTTP session. Description Many networking devices provide a built-in web server, which may support the HTTPS protocol. When a user logs into the device...

security flaw

The 1 ntlmfetchstring and 2 ntlmgetstring functions in Squid 2.5.6 and earlier, with NTLM authentication enabled, allow remote attackers to cause a denial of service application crash via an NTLMSSP packet that causes a negative value to be passed to memcpy...

solaris/SPARC portbind port 6789 228 bytes

solaris/SPARC portbind port 6789 228 bytes. Shellcode exploit for solarissparc platform / Solaris shellcode - connects /bin/sh to a port Claes M. Nyberg 20020624 , / include / void mainvoid asm" ! Server address xor %l1, %l1, %l1 ! l1 = 0 st %l1, %sp - 12 ! 0 INADDRANY mov 0x2, %l1 ! AFINET sth...

TiTan FTP Server Long Command Heap Overflow PoC Exploit

No description provided by source. / ----------------------------------------------------------------------- titanftp.c - TiTan FTP Server Long Command Heap Overflow PoC Exploit Copyright C 2000-2004 HUC All Rights Reserved. Author : lion : lion cnhonker net : www cnhonker com Date : 2004-08-30...

CVE-2004-0744

CVE-2004-0744 is referenced in HP-UX advisories as a remote Denial of Service vulnerability in TCP/IP (Rose/fragment attack). The HP-UX impact concerns B.11.00, B.11.04, B.11.11, and B.11.23 running TCP/IP, with patchesPHNE_30161, PHNE_33427, PHKL_31500 (and related updates) required to mitigate....

OverByte ICS FTP Server - Remote Denial of Service

OverByte ICS FTP Server - Remote Denial of Service //--Exploit: //=========================================================== include include pragma commentlib, \"ws232.lib\" char Nonnullterminatedstring = \"AAAAAAAAAAAAAAAAAA\"; int mainint argc, char argv WSADATA wsaData; WORD...

DLINK 614+ - SOHO routers, DHCP service DOS

TITLE: DLINK 614+ - SOHO routers, DHCP service DOS http://www.dlink.com TYPE: signedness bug QUOTE from DLINK: The AirPlus DI-614+ combines the latest advancements in 802.11b silicon chip design from Texas Instruments, utilizing their patented Digital Signal ProcessingTM technology, and D-Link?s...

disconn.py

!/usr/bin/python Version: 1.1 Copyright 2004 r3d5un disconn.py is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or at your option any later version. disconn.p...

DSA-492 iproute - denial of service

Bulletin has no description...

Need for Speed 2 - Remote Client Buffer Overflow (PoC)

Need for Speed 2 - Remote Client Buffer Overflow PoC / Need for Speed 2 Remote Client Buffer Overflow Exploit - 23.01.2004 by Luigi Auriemma UNIX & WIN VERSION / include include include ifdef WIN32 include include "winerr.h" define close closesocket else include include include include include...

CERT Advisory CA-2004-01 Multiple H.323 Message Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- CERT Advisory CA-2004-01 Multiple H.323 Message Vulnerabilities Original release date: January 13, 2004 Last revised: -- Source: CERT/CC, NISCC A complete revision history can be found at the end of this file. Systems Affected Many software and hardware systems...

CVE-2003-0653

The OSI networking kernel sys/netiso in NetBSD 1.6.1 and earlier does not use a BSD-required "PKTHDR" mbuf when sending certain error responses to the sender of an OSI packet, which allows remote attackers to cause a denial of service kernel panic or crash via certain OSI packets...

CVE-2003-0653

CVE-2003-0653 affects NetBSD 1.6.1 and earlier in the OSI networking kernel (sys/netiso). The vulnerability stems from not using a BSD-required PKTHDR mbuf when sending certain error responses to the sender of an OSI packet, which allows remote attackers to cause a denial of service (kernel panic...

NetBSD Security Advisory 2003-010: remote panic in OSI networking code

-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2003-010 ================================= Topic: remote panic in OSI networking code Version: NetBSD-current: source prior to May 26, 2003 NetBSD 1.6.1: affected NetBSD 1.6: affected NetBSD-1.5.3: affected NetBSD-1.5.2: affected...

SRT2003-07-07-0831.txt

Secure Network Operations, Inc. http://www.secnetops.com Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS, Software Security Validation, and...