Microsoft Security Bulletin MS09-001 - Critical Vulnerabilities in SMB Could Allow Remote Code Execution (958687)

Microsoft Security Bulletin MS09-001 - Critical Vulnerabilities in SMB Could Allow Remote Code Execution 958687 Published: January 13, 2009 Version: 1.0 General Information Executive Summary This security update resolves several privately reported vulnerabilities in Microsoft Server Message Block...

PT-2008-5350 · Microsoft · Windows Server 2003 +6

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions 2000 Gold through SP4 Microsoft Windows XP versions Gold through SP3 Microsoft Windows Server 2003 versions SP1 and SP2 Microsoft Windows Vista versions Gold and SP1 Microsoft Windows Server 2008 Description: A remo...

Microsoft Windows SMB Credential Reflection Remote Code Execution (MS08-068; CVE-2008-4037)

SMB reflection attacks is a type of "Man-in-the-Middle" MITM attack in which an attacker reflects the clients SMB challenge back to the client and by that bypass security, allowing the attacker to execute code in the context of the logged-on user. A remote code execution vulnerability has been...

SMB Remote Code Execution Vulnerability (957095)

This host is missing a critical security update according to Microsoft Bulletin MS08-063. OpenVAS Vulnerability Test $Id: secpodms08-063900053.nasl 5344 2017-02-18 17:43:17Z cfi $ Description: SMB Remote Code Execution Vulnerability 957095 Authors: Chandan S Copyright: Copyright C 2008 SecPod,...

Microsoft Security Bulletin MS08-063 – Important Vulnerability in SMB Could Allow Remote Code Execution (957095)

Microsoft Security Bulletin MS08-063 – Important Vulnerability in SMB Could Allow Remote Code Execution 957095 Published: October 14, 2008 Version: 1.0 General Information Executive Summary This security update resolves a privately reported vulnerability in Microsoft Server Message Block SMB...

PT-2008-5351 · Microsoft · Windows Server 2003 +5

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 Description: A buffer underflow issue exists in the Server Message Block SMB protocol, allowing remote attackers to execute...

Ipswitch WS_FTP Home/Professional 8.0 - WS_FTP Client Format String

source: https://www.securityfocus.com/bid/30720/info Ipswitch WSFTP client is prone to a format-string vulnerability it fails to properly sanitize user-supplied input before passing it as the format specifier to a formatted-printing function. An attacker may exploit this issue to execute arbitrar...

Samba client buffer overflow

Heap-based buffer overflow in the receivesmbraw function in util/sock.c in Samba 3.0.0 through 3.0.29 allows remote attackers to execute arbitrary code via a crafted SMB response...

Buffer overflow in CIFS VFS

Multiple buffer overflows in CIFS VFS in Linux kernel 2.6.23 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via long SMB responses that trigger the overflows in the SendReceive function...

Buffer overflow in CIFS VFS

Multiple buffer overflows in CIFS VFS in Linux kernel 2.6.23 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via long SMB responses that trigger the overflows in the SendReceive function...

DEBIAN-CVE-2007-6438

Unspecified vulnerability in the SMB dissector in Wireshark formerly Ethereal 0.99.6 allows remote attackers to cause a denial of service via unknown vectors. NOTE: this identifier originally included MP3 and NCP, but those issues are already covered by CVE-2007-6111...

PT-2007-7282 · Wireshark +1 · Wireshark +1

Name of the Vulnerable Software and Affected Versions: Wireshark version 0.99.6 Description: The issue is related to an unspecified vulnerability in the SMB dissector, allowing remote attackers to cause a denial of service via unknown vectors. Recommendations: For Wireshark version 0.99.6, at the...

Cisco Security Advisory: Cisco Security Agent for Windows System Driver Remote Buffer Overflow Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco Security Agent for Windows System Driver Remote Buffer Overflow Vulnerability Advisory ID: cisco-sa-20071205-csa http://www.cisco.com/warp/public/707/cisco-sa-20071205-csa.shtml Revision 1.0 For Public Release 2007...

Eggdrop Server Module Message Handling - Remote Buffer Overflow

Eggdrop Server Module Message Handling - Remote Buffer Overflow / Eggdrop Server Module Message Handling Remote Buffer Overflow Vulnerability https://www.securityfocus.com/bid/24070 discovered by Bow Sineath tested on eggdrop 1.6.18 / linux 2.4 -exploit is a fake ircd replace shellcode.. strip...

DEBIAN-CVE-2007-5029

Dibbler 0.6.0 does not verify that certain length parameters are appropriate for buffer sizes, which allows remote attackers to trigger a buffer over-read and cause a denial of service daemon crash, as demonstrated by incorrect behavior of the TSrvMsg constructor in SrvMessages/SrvMsg.cpp when 1...

CVE-2007-2479

Cerulean Studios Trillian Pro before 3.1.5.1 allows remote attackers to obtain potentially sensitive information via long CTCP PING messages that contain UTF-8 characters, which generates a malformed response that is not truncated by a newline, which can cause portions of a server message to be...

Design/Logic Flaw

Cerulean Studios Trillian Pro before 3.1.5.1 allows remote attackers to obtain potentially sensitive information via long CTCP PING messages that contain UTF-8 characters, which generates a malformed response that is not truncated by a newline, which can cause portions of a server message to be...

CVE-2007-2479

Cerulean Studios Trillian Pro before 3.1.5.1 allows remote attackers to obtain potentially sensitive information via long CTCP PING messages that contain UTF-8 characters, which generates a malformed response that is not truncated by a newline, which can cause portions of a server message to be...

0IRC client DoS

NULL pointer dereference on oversized server message...

NSS: SSLv2 protocol buffer overflows

Integer underflow in the SSLv2 support in Mozilla Network Security Services NSS before 3.11.5, as used by Firefox before 1.5.0.10 and 2.x before 2.0.0.2, SeaMonkey before 1.0.8, Thunderbird before 1.5.0.10, and certain Sun Java System server products before 20070611, allows remote attackers to...