Fedora 12 : viewvc-1.1.3-1.fc12 (2009-13610)

security fix: add root listing support of per-root authz config security fix: query.py requires 'forbidden' authorizer or none in config fix URL- ification of truncated log messages issue 3 fix regexp input validation issue 426, 427, 440 add support for configurable tab-to-spaces conversion fix...

Sql injection

SQL injection vulnerability in user.php in Super Serious Stats aka superseriousstats before 1.1.2p1 allows remote attackers to execute arbitrary SQL commands via the uid parameter, related to an "incorrect regexp." NOTE: some of these details are obtained from third party information...

Mozilla Foundation Security Advisory 2009-43

Mozilla Foundation Security Advisory 2009-43 Title: Heap overflow in certificate regexp parsing Impact: Critical Announced: August 1, 2009 Reporter: Moxie Marlinspike Products: Firefox, Thunderbird, SeaMonkey, NSS Fixed in: Firefox 3.5 NSS 3.12.3 Description Moxie Marlinspike reported a heap...

Heap overflow in certificate regexp parsing — Mozilla

Moxie Marlinspike reported a heap overflow vulnerability in the code that handles regular expressions in certificate names. This vulnerability could be used to compromise the browser and run arbitrary code by presenting a specially crafted certificate to the client. This code provided compatibili...

nss regexp heap overflow

Heap-based buffer overflow in a regular-expression parser in Mozilla Network Security Services NSS before 3.12.3, as used in Firefox, Thunderbird, SeaMonkey, Evolution, Pidgin, and AOL Instant Messenger AIM, allows remote SSL servers to cause a denial of service application crash or possibly...

FREEze Greetings 1.0 Remote Password Retrieve Exploit

Exploit for unknown platform in category web applications ===================================================== FREEze Greetings 1.0 Remote Password Retrieve Exploit ===================================================== \r\n\r\n", $argv0 and exit; $out = pregmatch'!^^ +$!sei', filegetcontents$arg...

Discuz! flash csrf vul

Discuz!的安全人员已经意识到csrf方面的漏洞了采用了formhash及判断Referer等来防止外部提交,如果看过Bypass Preventing CSRF1一文的朋友应该意识到我们可以通过flash来进行csrf攻击. 首先我们看Discuz!6开始自带了crossdomain.xml文件,代码如下: ?xml version="1.0"? cross-domain-policy allow-access-from domain="" / /cross-domain-policy 允许容易域的访问,对于Discuz!的formhash我们可以通过as来处理得到如下代码:...

joomlaez-sql.txt

!/usr/bin/perl Note:Sometimes you have to change the regexp to viewcategory/catid,".$cid." use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " \n"; print " Joomla Component EZ Store Blind SQL Injection Exploit \n"; print " Author:His0k4 ALGERIAN HaCkeR \n"; print " \n"; print "...

Joomla! Component EZ Store Remote - Blind SQL Injection

Joomla! Component EZ Store Remote - Blind SQL Injection !/usr/bin/perl Note:Sometimes you have to change the regexp to viewcategory/catid,".$cid." use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " \n"; print " Joomla Component EZ Store Blind SQL Injection Exploit \n"; print "...

Joomla! Component EZ Store Remote - Blind SQL Injection

!/usr/bin/perl Note:Sometimes you have to change the regexp to viewcategory/catid,".$cid." use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " \n"; print " Joomla Component EZ Store Blind SQL Injection Exploit \n"; print " Author:His0k4 ALGERIAN HaCkeR \n"; print " \n"; print "...

Joomla Component JooBB 0.5.9 Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ======================================================== Joomla Component JooBB 0.5.9 Blind SQL Injection Exploit ======================================================== !/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print...

Moderate: tcltk security update

8.3.5-92.8 - CVE-2008-0553 CVE-2007-5378 CVE-2007-4772 - problems: regexp, GIF overflow and also GIF overflow Resolves: 432511...

Fedora 8 : icu-3.8-5.fc8 (2008-1036)

CVE-2007-4770 & CVE-2007-4771 Flaws in icu regexp handling. Technical details can be found at http://sourceforge.net/mailarchive/message.php?msgname= d03a2ffb0801221538x68825e42xb4a4aaf0fcccecbd%2540mail.gmail.com Note that Tenable Network Security has extracted the preceding description block...

Cisco IOS Show IP BGP Regexp远程拒绝服务漏洞

Cisco IOS是一款流行的网络操作系统。 Cisco IOS不正确处理部分CLI命令，远程攻击者可以利用漏洞对系统进行拒绝服务攻击，可导致设备重启。 问题存在于处理"show ip bgp regexp"命令时，如果提交部分规则表达式作为参数并执行，结果可导致路由器重启或重建BGP路由表。如果多次成功利用此问题，可导致路由器变的重复不可用。 Cisco IOS XR 3.4.1 Cisco IOS XR 3.4 Cisco IOS XR 3.3.4 Cisco IOS XR 3.3.3 Cisco IOS XR 3.3.2 Cisco IOS XR 3.3.1 Cisco IOS X...

Cisco IOS 12.3 - Show IP BGP Regexp Remote Denial of Service

source: https://www.securityfocus.com/bid/25352/info Cisco IOS is prone to a remote denial-of-service vulnerability because the software fails to properly handle certain CLI commands. To issue commands that trigger this vulnerability, attackers must be able to successfully authenticate to...

Buffer overflow

Buffer overflow in TinyMUX before 2.4 allows attackers to cause a denial of service via unspecified vectors related to "too many substring matches in a regexp $-command." NOTE: some of these details are obtained from third party information...

CVE-2007-1958

Buffer overflow in TinyMUX before 2.4 allows attackers to cause a denial of service via unspecified vectors related to "too many substring matches in a regexp $-command." NOTE: some of these details are obtained from third party information...

Fedora Core 4 : ruby-1.8.4-3.fc4 (2006-842)

Thu Jul 20 2006 Akira TAGOH - 1.8.4-3 - security fixes CVE-2006-3694 - ruby-1.8.4-fix-insecure-dir-operation.patch : - ruby-1.8.4-fix-insecure-regexp-modification.patch: fixed the insecure operations in the certain safe-level restrictions. 199538 - ruby-1.8.4-fix-alias-safe-level.patch: fixed to...

vbscript.dll regular expression object (RegExp) memory leak

Hello, The following vbscript, which uses the RegExp object, causes memory leak tested under Windows XP SP2 with Script Engine V5.6; when you run it, locate the associated wscript.exe or cscript.exe process in the Windows task manager, then click "OK" in the "Start" message box, and see how the...