CVE-2006-4006

The dogameinfo function in BomberClone 0.11.6 and earlier, and possibly other functions, does not reset the packet data size, which causes the sendpkg function packets.c to use this data size when sending a reply, and allows remote attackers to read portions of server memory...

mysql security update

CentOS Errata and Security Advisory CESA-2006:0544 Updated mysql packages that fix multiple security flaws are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. MySQL is a multi-user, multi-threaded SQL database server. MySQL is a...

Important: Red Hat Security Advisory: mysql security update

Updated mysql packages that fix multiple security flaws are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a serve...

SUSE-SA:2005:056: XFree86-server,xorg-x11-server

The remote host is missing the patch for the advisory SUSE-SA:2005:056 XFree86-server,xorg-x11-server. The X server memory can be accessed my a malicious X client by exploiting a missing range check in the function XCreatePixmap. This bug can probably be used to execute arbitrary code with the...

openvpn -- denial of service: malicious authenticated "tap" client can deplete server virtual memory

James Yonan reports: A malicious authenticated client in "dev tap" ethernet bridging mode could theoretically flood the server with packets appearing to come from hundreds of thousands of different MAC addresses, causing the OpenVPN process to deplete system virtual memory as it expands its...

samba3 DoS attack

Code found in nmbd and smbd may allow a remote attacker to effectively crash the nmbd server or use the smbd server to exhaust the system memory...

Mandrake Linux Security Advisory : fetchmail (MDKSA-2002:036)

A problem was discovered with versions of fetchmail prior to 5.9.10 that was triggered by retreiving mail from an IMAP server. The fetchmail client will allocate an array to store the sizes of the messages it is attempting to retrieve. This array size is determined by the number of messages the...

DEBIAN-CVE-2003-0625

Off-by-one error in certain versions of xfstt allows remote attackers to read potentially sensitive memory via a malformed client request in the connection handshake, which leaks the memory in the server's response...

DoS через Content-Length в Microsoft IIS

При указании большого Content-Length в HTTP-запросе сервер немедленно резервирует оперативную память. Ппутем создания нескольких незавершенных одновременных подключений можно заблокировать всю память сервера...

DoS против WebSweeper (Infinite HTTP Request)

возможный "Бесконечный" HTTP-запрос, что позволяет заблокировать всю доступную память сервера...

DoS против IBM HTTP Server (afpa memory leak)

Большое число длинных последовательных GET-запросов приводит к утечке памяти...