2880 matches found
Now SMS/Mms Gateway 5.5 - Remote Buffer Overflow
/ Dreatica-FXP crew ---------------------------------------- Target : Now SMS/MMS Gateway v5.5 and others ---------------------------------------- Exploit : Now SMS/MMS Gateway v5.5 Remote Buffer Overflow Exploit Exploit date : 14.04.2008 Exploit writer : Heretic2 [email protected] OS : Windows...
Stack overflow
Multiple stack-based buffer overflows in Now SMS/MMS Gateway 2007.06.27 and earlier allow remote attackers to execute arbitrary code via a 1 long password in an Authorization header to the HTTP service or a 2 large packet to the SMPP service...
CVE-2008-0871
Multiple stack-based buffer overflows in Now SMS/MMS Gateway 2007.06.27 and earlier allow remote attackers to execute arbitrary code via a 1 long password in an Authorization header to the HTTP service or a 2 large packet to the SMPP service...
CVE-2008-0871
Multiple stack-based buffer overflows in Now SMS/MMS Gateway 2007.06.27 and earlier allow remote attackers to execute arbitrary code via a 1 long password in an Authorization header to the HTTP service or a 2 large packet to the SMPP service...
CVE-2008-0871
CVE-2008-0871 affects Now SMS/MMS Gateway (v2007.06.27 and earlier). The vulnerability consists of multiple stack-based buffer overflows: (1) in the HTTP service triggered by a long password in the Authorization header, and (2) in the SMPP service triggered by oversized SMPP packets. Public explo...
SMPP Server Detection
The remote service supports the Short Message Peer-to-Peer SMPP protocol, a messaging protocol designed for exchanging a high volume of SMS messages. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description scriptid31132;...
NowSMS SMS/MMS gateway multiple security vulnerabilities
Buffer overflows on authentication and on SMPP packets parsing...
Now SMS/MMS Gateway Version Detection
Binary data 4384.prm...
joomlasms-sql.txt
AUTHOR : S@BUN HOME : http://www.hackturkiye.com/ DorK 1 : allinurl: "comsmslist" EXPLOIT : index.php?option=comsmslist&Itemid=99999999&listid=9999999//union//select//name,password//from//mosusers/...
CVE-2003-1464
Siemens 45 series mobile phones are affected by CVE-2003-1464 due to a buffer overflow triggered by an SMS containing a long image name, leading to a denial of service (disconnect and unavailable inbox). The connected documents corroborate the basic impact and entry, but do not provide concrete r...
CVE-2003-1464
Buffer overflow in Siemens 45 series mobile phones allows remote attackers to cause a denial of service disconnect and unavailable inbox via a Short Message Service SMS message with a long image name...
QQ is a common Instant Messenger in east Asia. QQ Instant Messenger allows instant peer-to-peer file transfers, SMS sending and chatting with online friends. There are cases in which certain traffic, although not intended for malicious use, is very unsafe, since it may transfer shellcode which is...
CVE-2007-5493
The SMS handler for Windows Mobile 2005 Pocket PC Phone edition allows attackers to hide the sender field of an SMS message via a malformed WAP PUSH message that causes the PDU to be incorrectly decoded...
Design/Logic Flaw
The SMS handler for Windows Mobile 2005 Pocket PC Phone edition allows attackers to hide the sender field of an SMS message via a malformed WAP PUSH message that causes the PDU to be incorrectly decoded...
CVE-2007-5493
The SMS handler for Windows Mobile 2005 Pocket PC Phone edition allows attackers to hide the sender field of an SMS message via a malformed WAP PUSH message that causes the PDU to be incorrectly decoded...
CVE-2007-5493
CVE-2007-5493 affects Microsoft Windows Mobile 2005 Pocket PC Phone Edition. The vulnerability exists in the SMS handler where a specially crafted WAP PUSH can cause the PDU to be decoded incorrectly, allowing an attacker to hide the original sender field of an SMS without user interaction. The c...
CVE-2007-4079
Multiple cross-site scripting XSS vulnerabilities in AlstraSoft SMS Text Messaging Enterprise allow remote attackers to inject arbitrary web script or HTML via the 1 domain or 2 q parameter to a admin/membersearch.php, or 3 the userid parameter to b admin/edituser.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in AlstraSoft SMS Text Messaging Enterprise allow remote attackers to inject arbitrary web script or HTML via the 1 domain or 2 q parameter to a admin/membersearch.php, or 3 the userid parameter to b admin/edituser.php...
CVE-2007-4079
Multiple cross-site scripting XSS vulnerabilities in AlstraSoft SMS Text Messaging Enterprise allow remote attackers to inject arbitrary web script or HTML via the 1 domain or 2 q parameter to a admin/membersearch.php, or 3 the userid parameter to b admin/edituser.php...
CVE-2007-4079
CVE-2007-4079 describes multiple XSS vulnerabilities in AlstraSoft SMS Text Messaging Enterprise. The flaws allow remote attackers to inject arbitrary web script or HTML via the domain or q parameter to admin/membersearch.php, or the userid parameter to admin/edituser.php. The NVD entry lists a M...