39 matches found
BS.Player 安全漏洞
BS.Player is a multimedia player from BS. A security vulnerability exists in BS.Player version 2.57 build 1051, which stems from insufficient validation of the URL length when processing .m3u files, and may result in a buffer overflow...
CVE-2025-53530
WeGIA is a web manager for charitable institutions. The Wegia server has a vulnerability that allows excessively long HTTP GET requests to a specific URL. This issue arises from the lack of validation for the length of the errorstr parameter. Tests confirmed that the server processes URLs up to...
path-to-regexp outputs backtracking regular expressions
Impact A bad regular expression is generated any time you have two parameters within a single segment, separated by something that is not a period .. For example, /:a-:b. Patches For users of 0.1, upgrade to 0.1.10. All other users should upgrade to 8.0.0. These versions add backtrack protection...
ALPINE-CVE-2023-29007
Git is a revision control system. Prior to versions 2.30.9, 2.31.8, 2.32.7, 2.33.8, 2.34.8, 2.35.8, 2.36.6, 2.37.7, 2.38.5, 2.39.3, and 2.40.1, a specially crafted .gitmodules file with submodule URLs that are longer than 1024 characters can used to exploit a bug in...
TOTOLINK N600R 缓冲区错误漏洞
TOTOLINK N600R is a wireless router from Gion Electronics TOTOLINK, Taiwan, China.A buffer overflow vulnerability exists in TOTOLINK N600R V4.3.0cu.7647B20210106, which stems from a lack of length validation of the url parameter in the FUN00415bf0 function. An attacker could exploit this...
CVE-2020-7212
The encodeinvalidchars function in util/url.py in the urllib3 library 1.25.2 through 1.25.7 for Python allows a denial of service CPU consumption because of an inefficient algorithm. The percentencodings array contains all matches of percent encodings. It is not deduplicated. For a URL of length ...
Code injection
The encodeinvalidchars function in util/url.py in the urllib3 library 1.25.2 through 1.25.7 for Python allows a denial of service CPU consumption because of an inefficient algorithm. The percentencodings array contains all matches of percent encodings. It is not deduplicated. For a URL of length ...
Foxit PDF SDK ActiveX Buffer Overflow Vulnerability
Foxit PDF SDK ActiveX is China's Foxit Foxit Software Corporation of a PDF software development kit, but also a visual programming components, it provides PDF display and annotation and other functions. A stack buffer overflow vulnerability exists in Foxit PDF SDK ActiveX 5.5.0 and earlier...
F5 BIG-IP APM Remote Denial of Service Vulnerability
The F5 BIG-IP is a load balancer that uses a variety of distribution algorithms to distribute network requests to available servers in a server cluster, enabling network visitors to have the best possible networking experience by managing incoming Web data traffic and increasing effective network...
CVE-2017-0302
In F5 BIG-IP APM 12.0.0 through 12.1.2 and 13.0.0, an authenticated user with an established access session to the BIG-IP APM system may be able to cause a traffic disruption if the length of the requested URL is less than 16 characters...
motw
This plugin will specify whether the page is compliant against the MOTW standard. The standard is explained in: http://msdn2.microsoft.com/en-us/library/ms537628.aspx This plugin tests if the length of the URL specified by "XYZW" is lower, equal or greater than the length of the URL; and also...
Green Dam URL Length Buffer Overflow
A remote code execution vulnerability has been reported in Green Dam. The vulnerability is due to a boundary check error while filtering specially crafted URLs. A remote attacker may exploit this vulnerability by enticing an unsuspecting user to open a malicious link. Successful exploitation woul...
jetAudio 7.0.5 - '.asx' Remote Stack Overflow (PoC)
Application: jetAudio = 7.0.5 .ASX Remote Stack Overflow Web Site: http://www.cowonamerica.com/download/ Platform: Windows Bug:Remote Stack Overflow Extension: ASX special condition: none ------------------------------------------------------- 1 Introduction 2 Bug 3 Proof of concept 4 Credits...
WebLogic Server DoS
Requesting an overly long URL starting with a double dot can crash certain version of WebLogic servers. SPDX-FileCopyrightText: 2001 StrongHoldNet Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
gaim -- multiple buffer overflows
Sean infamous42md reports several situations in gaim that may result in exploitable buffer overflows: Rich Text Format RTF messages in Novell GroupWise protocol Unsafe use of gethostbyname in zephyr protocol URLs which are over 2048 bytes long once decoded...
Opera < 7.20 news URL Handling DoS
The version of Opera installed on the remote host reportedly crashes when processing a 'news:' URL of excessive length, that may result in a denial of service. It has been reported that this issue will trigger a condition that will prevent Opera from functioning until the program has been...
CVE-2000-1007
I-gear 3.5.7 and earlier does not properly process log entries in which a URL is longer than 255 characters, which allows an attacker to cause reporting errors...
websuite.txt
Advisory: Buffer overflow in SmartDesk WebSuite v2.1 Platforms Affected: Windows NT, Windows 98 Found by: cmart [email protected] Date: 5/23/99 Description: ----------- WebSuite v2.1 will crash when an additional 250+ characters is appended after the sites URL on NT Server 4 and NT Workstatio...
Microsoft IIS 2.03.0 - Long URL Denial of Service
Microsoft IIS 2.03.0 - Long URL Denial of Service // source: https://www.securityfocus.com/bid/2654/info Microsoft Internet Information Server is vulnerable to a denial of service. This particular denial of service affects versions 2.0, 3.0 and 4.0 of the server prior to service pack 4. The URL...