667 matches found
Adobe Flash Player ActionScript 3 RegExp Memory Corruption (APSB11-21; CVE-2011-2134)
The vulnerability is due to an error in the way the application allocates memory for regular expression interpretations. A remote attacker could exploit this vulnerability by enticing an unsuspecting victim to open a web page containing malicious SWF files...
Google Chrome Multiple Vulnerabilities - March 11(Windows)
The host is running Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultdosvulnmar11win.nasl 7052 2017-09-04 11:50:51Z teissa $ Google Chrome Multiple Denial of Service Vulnerabilities - March 11Windows Authors: Madhuri D Copyright: Copyright ...
Google Chrome < 10.0.648.127 Multiple Vulnerabilities
Binary data 5812.pasl...
Fedora Update for bournal FEDORA-2010-3221
Check for the Version of bournal OpenVAS Vulnerability Test Fedora Update for bournal FEDORA-2010-3221 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
[SECURITY] Fedora 13 Update: bournal-1.4.1-1.fc13
Bournal is a bash script that allows you to keep a personal, minimalistic, password-protected journal, log, or diary. It includes encryption, regexp searches, and a date-sorted list for editing old entries. Since Bournal is pure bash, it should be easily editable for the CLI-savvy...
[SECURITY] Fedora 12 Update: bournal-1.4.1-1.fc12
Bournal is a bash script that allows you to keep a personal, minimalistic, password-protected journal, log, or diary. It includes encryption, regexp searches, and a date-sorted list for editing old entries. Since Bournal is pure bash, it should be easily editable for the CLI-savvy...
[SECURITY] Fedora 11 Update: bournal-1.4.1-1.fc11
Bournal is a bash script that allows you to keep a personal, minimalistic, password-protected journal, log, or diary. It includes encryption, regexp searches, and a date-sorted list for editing old entries. Since Bournal is pure bash, it should be easily editable for the CLI-savvy...
Fedora 12 : viewvc-1.1.3-1.fc12 (2009-13610)
security fix: add root listing support of per-root authz config security fix: query.py requires 'forbidden' authorizer or none in config fix URL- ification of truncated log messages issue 3 fix regexp input validation issue 426, 427, 440 add support for configurable tab-to-spaces conversion fix...
Fedora 11 : viewvc-1.1.3-1.fc11 (2009-13634)
security fix: add root listing support of per-root authz config security fix: query.py requires 'forbidden' authorizer or none in config fix URL- ification of truncated log messages issue 3 fix regexp input validation issue 426, 427, 440 add support for configurable tab-to-spaces conversion fix...
Sql injection
SQL injection vulnerability in user.php in Super Serious Stats aka superseriousstats before 1.1.2p1 allows remote attackers to execute arbitrary SQL commands via the uid parameter, related to an "incorrect regexp." NOTE: some of these details are obtained from third party information...
Mozilla Foundation Security Advisory 2009-43
Mozilla Foundation Security Advisory 2009-43 Title: Heap overflow in certificate regexp parsing Impact: Critical Announced: August 1, 2009 Reporter: Moxie Marlinspike Products: Firefox, Thunderbird, SeaMonkey, NSS Fixed in: Firefox 3.5 NSS 3.12.3 Description Moxie Marlinspike reported a heap...
Heap overflow in certificate regexp parsing — Mozilla
Moxie Marlinspike reported a heap overflow vulnerability in the code that handles regular expressions in certificate names. This vulnerability could be used to compromise the browser and run arbitrary code by presenting a specially crafted certificate to the client. This code provided compatibili...
nss regexp heap overflow
Heap-based buffer overflow in a regular-expression parser in Mozilla Network Security Services NSS before 3.12.3, as used in Firefox, Thunderbird, SeaMonkey, Evolution, Pidgin, and AOL Instant Messenger AIM, allows remote SSL servers to cause a denial of service application crash or possibly...
FREEze Greetings 1.0 Remote Password Retrieve Exploit
Exploit for unknown platform in category web applications ===================================================== FREEze Greetings 1.0 Remote Password Retrieve Exploit ===================================================== \r\n\r\n", $argv0 and exit; $out = pregmatch'!^^ +$!sei', filegetcontents$arg...
Discuz! flash csrf vul
Discuz!的安全人员已经意识到csrf方面的漏洞了采用了formhash及判断Referer等来防止外部提交,如果看过Bypass Preventing CSRF1一文的朋友应该意识到我们可以通过flash来进行csrf攻击. 首先我们看Discuz!6开始自带了crossdomain.xml文件,代码如下: ?xml version="1.0"? cross-domain-policy allow-access-from domain="" / /cross-domain-policy 允许容易域的访问,对于Discuz!的formhash我们可以通过as来处理得到如下代码:...
joomlaez-sql.txt
!/usr/bin/perl Note:Sometimes you have to change the regexp to viewcategory/catid,".$cid." use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " \n"; print " Joomla Component EZ Store Blind SQL Injection Exploit \n"; print " Author:His0k4 ALGERIAN HaCkeR \n"; print " \n"; print "...
Joomla! Component EZ Store Remote - Blind SQL Injection
Joomla! Component EZ Store Remote - Blind SQL Injection !/usr/bin/perl Note:Sometimes you have to change the regexp to viewcategory/catid,".$cid." use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " \n"; print " Joomla Component EZ Store Blind SQL Injection Exploit \n"; print "...
Joomla! Component EZ Store Remote - Blind SQL Injection
!/usr/bin/perl Note:Sometimes you have to change the regexp to viewcategory/catid,".$cid." use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " \n"; print " Joomla Component EZ Store Blind SQL Injection Exploit \n"; print " Author:His0k4 ALGERIAN HaCkeR \n"; print " \n"; print "...
Joomla Component JooBB 0.5.9 Blind SQL Injection Exploit
Exploit for unknown platform in category web applications ======================================================== Joomla Component JooBB 0.5.9 Blind SQL Injection Exploit ======================================================== !/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print...
Moderate: tcltk security update
8.3.5-92.8 - CVE-2008-0553 CVE-2007-5378 CVE-2007-4772 - problems: regexp, GIF overflow and also GIF overflow Resolves: 432511...