2681 matches found
Design/Logic Flaw
ircu 2.10.12.05 and earlier allows remote attackers to discover the hidden IP address of arbitrary +x users via a series of /silence commands with 1 CIDR mask arguments or 2 certain other arguments that represent groups of IP addresses, then monitoring CTCP ping replies...
CVE-2007-4411
ircu 2.10.12.05 and earlier allows remote attackers to discover the hidden IP address of arbitrary +x users via a series of /silence commands with 1 CIDR mask arguments or 2 certain other arguments that represent groups of IP addresses, then monitoring CTCP ping replies...
CVE-2007-4411
ircu 2.10.12.05 and earlier allows remote attackers to discover the hidden IP address of arbitrary +x users via a series of /silence commands with 1 CIDR mask arguments or 2 certain other arguments that represent groups of IP addresses, then monitoring CTCP ping replies...
CVE-2007-4411
ircu 2.10.12.05 and earlier allows remote attackers to discover the hidden IP address of arbitrary +x users via a series of /silence commands with 1 CIDR mask arguments or 2 certain other arguments that represent groups of IP addresses, then monitoring CTCP ping replies...
CVE-2007-4411
ircu 2.10.12.05 and earlier allows remote attackers to discover the hidden IP address of arbitrary +x users via a series of /silence commands with 1 CIDR mask arguments or 2 certain other arguments that represent groups of IP addresses, then monitoring CTCP ping replies...
CVE-2006-5272
Stack-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent CMA 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted ping packet...
CVE-2006-5272
Stack-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent CMA 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted ping packet...
Fujitsu-Siemens ServerView code execution
Shell characters filtering problem in Web interface "ping" CGI script...
[Full-disclosure] Yoggie Pico Pro Remote Code Execution
This vulnerability affects the Yoggie Pico Pro and most certainly the Yoggie Pico, due to them being effectively identical security appliance. They expose a 'ping' function in their web interface for diagnostic purposes, which passes the IP/hostname given directly to ping in the form of 'ping -c ...
Hack tips of the hands to teach you to easily crack the cafe! - Vulnerability warning-the black bar safety net
Crack Vientiane secrets A with Alt+Ctrl+Del key combination(Vientiane) After the boot, when appears the blue background, immediately press the key combination, pop-up“close Program”dialog box, if inside there is“client”after the immediately closed, when the discovery of“ | --- Unknown”program is...
CVE-2007-2479
Cerulean Studios Trillian Pro before 3.1.5.1 allows remote attackers to obtain potentially sensitive information via long CTCP PING messages that contain UTF-8 characters, which generates a malformed response that is not truncated by a newline, which can cause portions of a server message to be...
Design/Logic Flaw
Cerulean Studios Trillian Pro before 3.1.5.1 allows remote attackers to obtain potentially sensitive information via long CTCP PING messages that contain UTF-8 characters, which generates a malformed response that is not truncated by a newline, which can cause portions of a server message to be...
CVE-2007-2479
Cerulean Studios Trillian Pro before 3.1.5.1 allows remote attackers to obtain potentially sensitive information via long CTCP PING messages that contain UTF-8 characters, which generates a malformed response that is not truncated by a newline, which can cause portions of a server message to be...
iDefense Security Advisory 04.30.07: Cerulean Studios Trillian Multiple IRC Vulnerabilities
Cerulean Studios Trillian Multiple IRC Vulnerabilities iDefense Security Advisory 04.30.07 http://labs.idefense.com/intelligence/vulnerabilities/ Apr 30, 2007 I. BACKGROUND Cerulean Studios Trillian is a multi-protocol chat application that supports IRC, ICQ, AIM and MSN protocols. More informati...
Destroy TCP/IP-vulnerabilities and early warning-the black bar safety net
The use of a TCP/IP Protocol software vulnerabilities to attack the classic example is the Ping of Death attack. The use of a specific method is,your opponent create a exceeds the IP Standard's maximum length--6 5 5 3 5 bytes of the IP packet. When this"puffy"data packet arrival time,it makes the...
C-Arbre <= 0.6PR7 (root_path) Remote File Inclusion Vulnerability
Exploit for unknown platform in category web applications ================================================================= C-Arbre = 0.6PR7 rootpath Remote File Inclusion Vulnerability ================================================================= \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / |...
ptrace suids local root.txt
bash-2.05a$ uname -a QNX muh 6.3.2 2006/03/16-14:19:50EST x86pc x86 bash-2.05a$ gdb -q /usr/bin/ping we use some ret-to-libc-type-shellcode gdb p system $1 = text variable, no debug info 0xb031897c system gdb p exit $2 = text variable, no debug info 0xb0321ff8 exit gdb q bash-2.05a$ export...
Colloquy 2.1.3545 - INVITE Format String Denial of Service
Colloquy 2.1.3545 - INVITE Format String Denial of Service !/usr/bin/ruby c Copyright 2006 Lance M. Havok Makes use of the Colloquy INVITE format string vulnerability. require 'socket' targetchannel = ARGV0 || "whatever" targetserver = ARGV1 || "irc.server.org" targetport = ARGV2 || 6667 randnick...
Colloquy 2.1.3545 - 'INVITE' Format String Denial of Service
!/usr/bin/ruby c Copyright 2006 Lance M. Havok Makes use of the Colloquy INVITE format string vulnerability. require 'socket' targetchannel = ARGV0 || "whatever" targetserver = ARGV1 || "irc.server.org" targetport = ARGV2 || 6667 randnick = "spongebo" channeljoined = false readytogo = false...
CVE-2006-6266
Teredo clients, when following item 6 of RFC4380 section 5.2.3, start direct IPv6 connectivity tests aka ping tests in response to packets from non-Teredo source addresses, which might allow remote attackers to induce Teredo clients to send packets to third parties...