CVE-2004-0473

Argument injection vulnerability in Opera before 7.50 does not properly filter "-" characters that begin a hostname in a telnet URI, which allows remote attackers to insert options to the resulting command line and overwrite arbitrary files via 1 the "-f" option on Windows XP or 2 the "-n" option...

RHEL 2.1 / 3 : kdelibs (RHSA-2004:222)

Updated kdelibs packages that fix telnet URI handler and mailto URI handler file vulnerabilities are now available. The kdelibs packages include libraries for the K Desktop Environment. KDE Libraries include: kdecore KDE core library, kdeui user interface, kfm file manager, khtmlw HTML widget, ki...

[Full-Disclosure] backdoor menu on conexant chipset dsl router (Zoom X3)

i have just installed an adsl modem sold under the brand of Zoom X3 http://www.zoom.com/products/adsloverview.html and was apalled to find that an nmap scan of the external address immediately came up with the following: PORT STATE SERVICE 23/tcp open telnet 80/tcp open http 254/tcp open unknown...

[SECURITY] [DSA 518-1] New kdelibs packages fix URI handler vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 518-1 [email protected] http://www.debian.org/security/ Martin Schulze June 14th, 2004 http://www.debian.org/security/faq -...

DSA-518 kdelibs - unsanitised input

Bulletin has no description...

Cisco CatOS incomplete TCP session DoS

Invalid packet on 3rd TCP handshake stage causes device to fail if telnet, ssh or HTTP are enabled...

Cisco Security Advisory: Cisco CatOS Telnet, HTTP and SSH Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco CatOS Telnet, HTTP and SSH Vulnerability Revision 1.0 For Public Release 2004 June 9 at 1600 UTC GMT ---------------------------------------------------------------------- Contents Summary Affected Products Details Impac...

Cisco CatOS Telnet, HTTP and SSH Vulnerability

...

CVE-2004-0476

CVE-2004-0476 affects 3Com OfficeConnect Remote 812 ADSL Router (firmware 1.1.9.4). A buffer overflow in the Telnet port handling allows remote attackers to cause a denial of service (reboot or packet loss) by sending a long string containing Telnet escape characters. Exploitation details and spe...

CVE-2004-0476

Buffer overflow in 3Com OfficeConnect Remote 812 ADSL Router 1.1.9.4 allows remote attackers to cause a denial of service reboot or packet loss via a long string containing Telnet escape characters to the Telnet port...

[Full-Disclosure] iDEFENSE Security Advisory 05.26.04: 3Com OfficeConnect Remote 812 ADSL Router Telnet Protocol Denial of Service Vulnerability

iDEFENSE Security Advisory 05.26.04 www.idefense.com/application/poi/display?id=105&type=vulnerabilities May 26, 2004 I. BACKGROUND The 3Com OfficeConnect Remote 812 ADSL Router is a standalone bridge/router, with interfaces to a Local Area Network and an ADSL interface to a Wide Area Network. II...

3COM OfficeConnect Remote 812 buffer overflow

Buffer overflow on oversized telnet esc-sequence...

Opera telnet URI handler file creation/truncation vulnerability

Background Opera is a multi-platform web browser. Description The telnet URI handler in Opera does not check for leading '-' characters in the host name. Consequently, a maliciously-crafted telnet:// link may be able to pass options to the telnet program itself. One example would be the following...

MacOS X browsers files overwriting and scripts execution (multiple bugs)

By using vulnerability in telnet: protocol handling it's possible to add -f option to telnet command line. help: protocol handler allows scripts execution via help: command...

CVE-2004-0473

Argument injection vulnerability in Opera before 7.50 does not properly filter "-" characters that begin a hostname in a telnet URI, which allows remote attackers to insert options to the resulting command line and overwrite arbitrary files via 1 the "-f" option on Windows XP or 2 the "-n" option...

CVE-2004-0473

Opera before 7.50 has an argument injection in its telnet URI handler: leading '-' in the telnet host name is not filtered, allowing remote attackers to pass options to the telnet program and overwrite files. The Gentoo GLSA and related advisories describe two concrete outcomes: creation or trunc...

PT-2004-1550 · Kde +1 · Konqueror +2

Name of the Vulnerable Software and Affected Versions: KDE versions 3.2.2 and earlier Description: The issue is related to the URI handlers in Konqueror, which do not properly filter "-" characters that begin a hostname in certain URIs, such as telnet, rlogin, ssh, or mailto. This allows remote...

KDE Security Advisory: URI Handler Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 KDE Security Advisory: URI Handler Vulnerabilities Original Release Date: 2004-05-17 URL: http://www.kde.org/info/security/advisory-20040517-1.txt 0. References http://www.idefense.com/application/poi/display?id=104...

Important: Red Hat Security Advisory: kdelibs security update

Updated kdelibs packages that fix telnet URI handler and mailto URI handler file vulnerabilities are now available. The kdelibs packages include libraries for the K Desktop Environment. KDE Libraries include: kdecore KDE core library, kdeui user interface, kfm file manager, khtmlw HTML widget, ki...

Re: [Full-Disclosure] iDEFENSE Security Advisory 05.12.04: Opera Telnet URI Handler File Creation/Truncation Vulnerability

Am 13.05.2004 um 17:16 schrieb Richard Johnson: Opera Telnet URI Handler File Creation/Truncation Vulnerability iDEFENSE Security Advisory 05.12.04 www.idefense.com/application/poi/display?id=104&type=vulnerabilities May 12, 2004 This vulnerability exists under OSX with Safari, Firefox, OmniWeb,...