93 matches found
(pam_env): Infinite loop by expanding certain arguments
The expandarg function in the pamenv module modules/pamenv/pamenv.c in Linux-PAM aka pam before 1.1.5 does not properly handle when environment variable expansion can overflow, which allows local users to cause a denial of service CPU consumption...
EZHomeTech Ezserver 6.4 - Remote Stack Overflow
EZHomeTech Ezserver 6.4 - Remote Stack Overflow Exploit Title: Ezhometech EzServer =6.4 Stack Overflow Vulnerability Author: modpr0be Contact: researchatSpenteradotcom Platform: Windows Tested on: Windows XP SP3 OptIn, Windows 2003 SP2 OptIn Software Link: http://www.ezhometech.com/buyezserver.ht...
Citrix Provisioning Services SoapServer RCE (CTX133039)
The version of Citrix Provisioning Services running on the remote Windows host is affected by a remote code execution vulnerability in the SoapServer service due to an overflow condition caused by improper validation of user-supplied input when parsing date and time strings. An unauthenticated,...
CUPS < 1.4.5 Multiple Vulnerabilities
According to its banner, the version of CUPS installed on the remote host is prior to 1.4.5. It is, therefore, affected by multiple vulnerabilities : - A use-after-free error exists due to improper allocation of memory for attribute values with invalid string data types. A remote attacker can...
VMSA-2008-0007 : Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus
a. Updated pcre Service Console package addresses several security issues The pcre package contains the Perl-Compatible Regular Expression library. pcre is used by various Service Console utilities. Several security issues were discovered in the way PCRE handles regular expressions. If an...
Microsoft Office Excel Remote Memory Corruption Vulnerability
Microsoft Office Excel Remote Memory Corruption Vulnerability 2009.April.14 Fortinet's FortiGuard Global Security Research Team Discovers Vulnerability in Microsoft Office Excel. Summary: ======== A memory corruption vulnerability exists in Microsoft Office Excel which allows a remote attacker to...
SYMSA-2006-007: Microsoft Office Malformed String Parsing Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Symantec Vulnerability Research http://www.symantec.com/research Security Advisory Advisory ID : SYMSA-2006-007 Advisory Title: Microsoft Office Malformed String Parsing Vulnerability Author : Elia Florio / [email protected] Release Date :...
[SECURITY] [DSA 604-1] New hpsockd packages fix denial of service
-------------------------------------------------------------------------- Debian Security Advisory DSA 604-1 [email protected] http://www.debian.org/security/ Martin Schulze December 3rd, 2004 http://www.debian.org/security/faq -...
Electrasoft 32Bit FTP 9.49.1 - Client Long Server Banner Buffer Overflow
source: https://www.securityfocus.com/bid/6764/info It has been reported that Electrasoft 32Bit FTP client may be prone to a buffer overflow condition. This issue is due to the client not implementing bounds checking on banner data copied into local memory buffers. It may be possible for remote...
GDAM123 0.9330.942 - Filename Buffer Overflow
GDAM123 0.9330.942 - Filename Buffer Overflow // source: https://www.securityfocus.com/bid/5578/info The GDAM123 command-line MP3 player is prone to a buffer overflow condition when handling overly long filenames. Under some circumstances, the player may be installed setuid root to allow...
3.3/4.0/4.2 MERCUR MailServer - Control-Service Buffer Overflow
// source: https://www.securityfocus.com/bid/5261/info // MERCUR Mailserver is prone to a remotely exploitable buffer overflow condition. The condition is due to insufficient bounds checking in the Control-Service component, which listens on TCP port 32000 by default. It is possible to corrupt...
Real Networks RealJukebox 1.0.2/RealOne 6.0.10 Player Gold - Skinfile Buffer Overflow
// source: https://www.securityfocus.com/bid/5217/info Real Software has announced a vulnerability in RealJukebox2 and Real Player Gold. A buffer overflow condition exists due to insufficient bounds checking of fields in skinfiles. There is an unchecked buffer for the "CONTROLnImage" field of the...
Sam Lantinga splitvt 1.6.3 - Local Buffer Overflow
Sam Lantinga splitvt 1.6.3 - Local Buffer Overflow // source: https://www.securityfocus.com/bid/1346/info A buffer overflow condition that could be exploited to obtain root exists in splitvt 1.6.3 and earlier. Splitvt is distributed with several Linux distributions. / Local exploit for Debian...