Oracle WebDb engine brain-damagse

Ladies and gentlemen, here's something tasty: // Standard disclaimer applies. This post expresses my personal beliefs // and convinctions only. I am speaking as a private person. All the // statements were been provided for informative purposes only, and have // to be verified by the reader. NONE...

Re: Naptha - New DoS

I personally find it a bit questionable to release such an advisory and give only so little technical information about the vulnerability, how is anyone supposed to understand and protect about it then? Sounds to me like "we found the ultimate IP stack bug, be afraid, be very afraid, but no, we'r...

Serv-U FTP directory traversal vunerability (all versions)

===================================================================== Securax-SA-09 Security Advisory belgian.networking.security Dutch ===================================================================== Topic: Catsoft serv-U FTP Directory Transversal Vulnerability Announced: 2000-12-03 Updated...

Securax-SA-09.serv-u

===================================================================== Securax-SA-09 Security Advisory belgian.networking.security Dutch ===================================================================== Topic: Catsoft serv-U FTP Directory Transversal Vulnerability Announced: 2000-12-03 Updated...

All, After reading a report on security focus that deals with the sonicwall soho versions 4.0 and 5.0 being vulnerable to a buffer overflow by using a alot of characters in the username...I started testing againg our Sonicwall Pro and Pro VX in the lab. Entering this for the username -...

MS Windows (Jolt2.c) Denial of Service Exploit

Exploit for unknown platform in category dos / poc ============================================== MS Windows Jolt2.c Denial of Service Exploit ============================================== / File: jolt2.c Author: Phonix Date: 23-May-00 Description: This is the proof-of-concept code for the Windo...

Microsoft Windows - 'Jolt2.c' Denial of Service (MS00-029)

/ File: jolt2.c Author: Phonix Date: 23-May-00 Description: This is the proof-of-concept code for the Windows denial-of-serice attack described by the Razor team NTBugtraq, 19-May-00 MS00-029. This code causes cpu utilization to go to 100%. Tested against: Firewall-1 Written for: My Linux box...

HP-UX 11.0 pppd Stack Buffer Overflow Exploit

Exploit for hp-ux platform in category local exploits ============================================= HP-UX 11.0 pppd Stack Buffer Overflow Exploit ============================================= / Copyright c 2000 ADM / / All Rights Reserved / / THIS IS UNPUBLISHED PROPRIETARY SOURCE CODE OF ADM / /...

beos vulnerabilities

This advisory was actually written by me back in febuary this year, only to be misplaced and forgotten about until now. Some of the applications listed, most noteably baxter and the other irc clients, were patched earlier this year as a result of me informing the relevant developers. These...

Possible vulnerability in HPUX

Hello, Few days ago i read the mail Hackerslab bugpaper HP-UX bdf -t option buffer overflow vul. And decided to see any other possible vulnerabilityies on my ststem. HP-UX 10.20. After a few minutes maybe a little more : ,trying each setuid exe with different options, i finally got results as for...

re, suidperl; more

hi, yes, i hoped to announce this bug to the perl-developers before it came public; but i think they read BQ ... Michal ... : So far, there are more security-releated apps which use /bin/mail for logging Once I was also fallen into thinking that it can be secure, until Dave Dittrich pointed that ...

isc-dhcpd.exploit.txt

Somebody at OpenBSD discovered a possible root exploit in the ISC DHCP client. I can confirm that as of 6:23am on June 23rd after several hours of hacking around the sources I had the following dhcpd config running on my own machine's private network for testing: shared-network LOCAL-NET option...

Linux news 25.05.00

Ядро 2.3.99-pre9 Вышел новый пререлиз нестабильного ядра 2.3.99. Изменения в основном затронули MIPS платформу. Подробнее: http://www.kernel.org/ DoS в XFree 3.3.5 и больше Ошибка, благодаря которой возможно проведение DoS атаки, обнаружена в XFree 3.3.5, 3.3.6 и 4.0. Атака приводит к использован...

RFP2K05: NetProwler vs. RFProwler

---/ RFP2K05 /----------------------------/ rfp.labs / wiretrip /--------- NetProwler vs. RFProwler Remote denial of service in Axent NetProwler ------------------------------------/ rain forest puppy / [email protected] Table of contents: -/ 1 / For the Black Hats -/ 2 / For the White Hats -/ 3 /...

ADV-150400.txt

------- Legion2000 - Russian Security Team ADV-1504001 ------- www.legion2000.cc ---- INFORMATION ---- Program Name : CERN Image Map Dispatcher Discovered By : Narrow [email protected] --------------------- Problem Description CERN Image Map Dispatcher /cgi-bin/htimage.exe comes by default with...

New DOS on Interscan NT/3.32

One month ago, during a audit, we found a new remote DOS on TrendMicro Interscan for NT last version V3.32, build 1011 and 1022. Last October, USSR Labs found a buffer overflow in HELO command, and wrote a very nice exploit with shell code, giving SYSTEM shell access to remote attacker. Trendmicr...

Netscape Messaging Server 3.63.543.55 - RCPT TO Denial of Service

Netscape Messaging Server 3.63.543.55 - RCPT TO Denial of Service // source: https://www.securityfocus.com/bid/748/info Netscape Messaging server will not de-allocate memory that is used to store the RCPT TO information for an incoming email. By sending enough long RCPT TO addresses, the system c...

WFTPD 2.34/2.40/3.0 - Remote Buffer Overflow (PoC)

source: https://www.securityfocus.com/bid/747/info WFTPD is reported prone to a remote buffer overflow vulnerability. The issue exists due to a lack of sufficient bounds checking performed on MKD and CWD arguments. It is reported that superfluous data passed to MKD first and then to CWD results i...

unsetenv.txt

o unsetenv off-by-one error: The unsetenv function in glibc 2.1.1 suffers from a problem whereby when running through the environment variables, if the name of the variable being unset is present twice consecutively, the second is not destroyed. unsetenv is sometimes used by programs that depend ...

netscape4.x_bof.txt

Subject: Re: Netscape communicator 4.06J, 4.5J-4.6J, 4.61e Buffer Overflow To: [email protected] Hello David Parker$B!!Bwrites: I tried the 4 exploit test links, and they all crashed Netscape but didn't cause any bluescreens or run any programs. I have win98, Netscape 4.5 128-bit, and the...