Lucene search
K

6910 matches found

RedHat Linux
RedHat Linux
added 2007/09/19 3:51 p.m.40 views

Important: Red Hat Security Advisory: nfs-utils-lib security update

An updated nfs-utils-lib package to correct a security flaw is now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The nfs-utils-lib package contains support libraries that are needed by the commands a...

10CVSS7.5AI score0.10909EPSS
Exploits4References2
seebug.org
seebug.org
added 2007/09/11 12:0 a.m.30 views

Trend Micro ServerProtect TMregChange()函数栈缓冲区溢出漏洞

CVECAN ID: CVE-2007-4731 Trend ServerProtect是一款企业级反病毒程序。 ServerProtect在处理超长畸形数据时存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞控制服务器。 ServerProtect的TMReg.dll库所导出的TMregChange例程中存在栈溢出漏洞,绑定到5005端口的TCP套接字未经边界检查便将用户提供的数据拷贝到了栈缓冲区,如果用户提交了超长请求就可以触发这个溢出,导致执行任意指令。 Trend Micro ServerProtect 5.58 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...

10CVSS6.4AI score0.09561EPSS
Exploits5
Exploit DB
Exploit DB
added 2007/09/11 12:0 a.m.28 views

Microsoft Agent - 'agentdpv.dll' ActiveX Control Malformed URL Stack Buffer Overflow

source: https://www.securityfocus.com/bid/25566/info Microsoft Agent agentsvr.exe is prone to a stack-based buffer-overflow vulnerability because the application fails to adequately bounds-check user-supplied data. Successfully exploiting this issue allows remote attackers to execute arbitrary co...

7.4AI score
Exploits0
Metasploit
Metasploit
added 2007/09/09 10:56 p.m.48 views

Trend Micro OfficeScan Remote Stack Buffer Overflow

This module exploits a stack buffer overflow in Trend Micro OfficeScan cgiChkMasterPwd.exe running with SYSTEM privileges. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'metasm' class MetasploitModule 'Trend...

6.4CVSS7.4AI score0.51111EPSS
Exploits8
Metasploit
Metasploit
added 2007/09/09 10:42 p.m.22 views

Allied Telesyn TFTP Server 1.9 Long Filename Overflow

This module exploits a stack buffer overflow in AT-TFTP v1.9, by sending a request get/write for an overly long file name. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Allied Telesyn TFTP...

10CVSS7.5AI score0.65651EPSS
Exploits5
Cent OS
Cent OS
added 2007/09/05 12:50 a.m.70 views

krb5 security update

CentOS Errata and Security Advisory CESA-2007:0858 Updated krb5 packages that fix two security flaws are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Updated 07 Sep 2007 The initial fix for...

10CVSS7.2AI score0.10909EPSS
Exploits5References7
RedHat Linux
RedHat Linux
added 2007/09/04 6:13 p.m.34 views

Important: Red Hat Security Advisory: krb5 security update

Updated krb5 packages that fix two security flaws are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Updated 07 Sep 2007 The initial fix for CVE-2007-3999 was found to be incomplete. Packages have...

10CVSS7.2AI score0.10909EPSS
Exploits5References3
CERT
CERT
added 2007/08/29 12:0 a.m.43 views

Quiksoft EasyMail SMTP ActiveX control stack buffer overflow vulnerabilities

Overview The Quiksoft EasyMail SMTP ActiveX control contains multiple stack buffer overflow vulnerabilities, which could allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Quiksoft EasyMail Objects is a set of ActiveX controls that provides emai...

8.2AI score
Exploits0References2
securityvulns
securityvulns
added 2007/08/23 12:0 a.m.20 views

Buffer-overflow in the Asura engine

Luigi Auriemma Application: Asura engine network SDK http://www.rebellion.co.uk Games: Rogue Trooper = 1.0 Prism: Guard Shield = 1.1.1.0 ...possibly others... Platforms: Windows Bug: challenge buffer-overflow Exploitation: remote, versus server in-game Date: 22 Aug 2007 Author: Luigi Auriemma...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2007/08/22 12:0 a.m.16 views

Asura Engine Challenge B Query - Remote Stack Buffer Overflow

Asura Engine Challenge B Query - Remote Stack Buffer Overflow source: https://www.securityfocus.com/bid/25411/info Asura Engine is prone to a remote stack-based buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2007/08/22 12:0 a.m.23 views

Asura Engine Challenge B Query - Remote Stack Buffer Overflow

source: https://www.securityfocus.com/bid/25411/info Asura Engine is prone to a remote stack-based buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker can exploit this issue to execute...

7.4AI score
Exploits0
CERT
CERT
added 2007/08/14 12:0 a.m.30 views

Motive Communications ActiveUtils EmailData ActiveX control stack buffer overflows

Overview The Motive Communications ActiveUtils EmailData ActiveX control contains multiple stack buffer overflows, which could allow an attacker to execute arbitrary code on a vulnerable system. Description Motive Communications ActiveUtils is a software package used by multiple ISPs to provide...

6.8CVSS7.2AI score0.05576EPSS
Exploits0References3
CERT
CERT
added 2007/08/13 12:0 a.m.33 views

InterActual Player IAMCE ActiveX control stack buffer overflow

Overview The InterActual Player IAMCE ActiveX control contains a stack buffer overflow, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description InterActual Player is a video DVD playing application for Windows systems. InterActual Player wa...

9.3CVSS7.3AI score0.0818EPSS
Exploits0References2
Metasploit
Metasploit
added 2007/07/29 2:38 p.m.22 views

Ipswitch IMail IMAP SEARCH Buffer Overflow

This module exploits a stack buffer overflow in Ipswitch IMail Server 2006.1 IMAP SEARCH verb. By sending an overly long string, an attacker can overwrite the buffer and control program execution. In order for this module to be successful, the IMAP user must have at least one message. This module...

6.5CVSS7.5AI score0.84673EPSS
Exploits7
Metasploit
Metasploit
added 2007/07/26 1:26 a.m.19 views

Borland Interbase Create-Request Buffer Overflow

This module exploits a stack buffer overflow in Borland Interbase 2007. By sending a specially crafted create-request packet, a remote attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...

7.5CVSS10AI score0.66081EPSS
Exploits9
exploitpack
exploitpack
added 2007/07/26 12:0 a.m.22 views

IBM AIX 5.25.3 - Capture Command Local Stack Buffer Overflow

IBM AIX 5.25.3 - Capture Command Local Stack Buffer Overflow // source: https://www.securityfocus.com/bid/25075/info IBM AIX is prone to a local, stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input to a program that is installed...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2007/07/26 12:0 a.m.71 views

IBM AIX 5.2/5.3 - Capture Command Local Stack Buffer Overflow

// source: https://www.securityfocus.com/bid/25075/info IBM AIX is prone to a local, stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input to a program that is installed setuid-superuser. Local attackers can exploit this issue to...

7AI score
Exploits0
securityvulns
securityvulns
added 2007/07/19 12:0 a.m.42 views

ASA-2007-014: Stack buffer overflow in IAX2 channel driver

Asterisk Project Security Advisory - ASA-2007-014 +------------------------------------------------------------------------+ | Product | Asterisk | |----------------------+-------------------------------------------------| | Summary | Stack buffer overflow in IAX2 channel driver |...

9.3CVSS1.8AI score0.05506EPSS
Exploits1
Metasploit
Metasploit
added 2007/07/18 9:49 p.m.18 views

EnjoySAP SAP GUI ActiveX Control Buffer Overflow

This module exploits a stack buffer overflow in SAP KWEdit ActiveX Control kwedit.dll 6400.1.1.41 provided by EnjoySAP GUI. By sending an overly long string to the "PrepareToPostHTML" method, an attacker may be able to execute arbitrary code. This module requires Metasploit:...

7.6CVSS0.5AI score0.69907EPSS
Exploits5
Metasploit
Metasploit
added 2007/07/11 9:16 p.m.38 views

SAP DB 7.4 WebTools Buffer Overflow

This module exploits a stack buffer overflow in SAP DB 7.4 WebTools. By sending an overly long GET request, it may be possible for an attacker to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework...

7.5CVSS7.9AI score0.70004EPSS
Exploits4
Rows per page
Query Builder