security flaw

Multiple vulnerabilities in the RLE run length encoding decoders for libtiff 3.6.1 and earlier, related to buffer overflows and integer overflows, allow remote attackers to execute arbitrary code via TIFF files...

security flaw

Buffer overflow in the EXIF library libexif 0.6.9 does not properly validate the structure of the EXIF tags, which allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a JPEG image with a crafted EXIF tag...

security flaw

Firefox before 1.0.1 allows remote attackers to spoof the 1 security and 2 download modal dialog boxes, which could be used to trick users into executing script or downloading and executing a file, aka "Firespoofing."...

security flaw

Thunderbird 0.6 through 0.9 and Mozilla 1.7 through 1.7.3 does not obey the network.cookie.disableCookieForMailNews preference, which could allow remote attackers to bypass the user's intended privacy and security policy by using cookies in e-mail messages...

AWStats 6.2 < 6.1 - configdir Command Injection (Metasploit)

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'AWStats...

Cacti 0.8.6-d graph_view.php Command Injection

No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

httpd mod_include SSI overflow

Buffer overflow in the gettag function in modinclude for Apache 1.3.x to 1.3.32 allows local users who can create SSI documents to execute arbitrary code as the apache user via SSI XSSI documents that trigger a length calculation error...

security flaw

Multiple integer overflows in the image handler for imlib 1.9.14 and earlier, which is used by gkrellm and several window managers, allow remote attackers to cause a denial of service application crash and execute arbitrary code via certain image files...

security flaw

Integer overflow in the ICO image decoder for 1 gdk-pixbuf before 0.22 and 2 gtk2 before 2.2.4 allows remote attackers to cause a denial of service application crash via a crafted ICO file...

security flaw

Integer overflow in the ICO image decoder for 1 gdk-pixbuf before 0.22 and 2 gtk2 before 2.2.4 allows remote attackers to cause a denial of service application crash via a crafted ICO file...

security flaw

Portable Network Graphics PNG library libpng 1.2.5 and earlier does not correctly calculate offsets, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a buffer overflow attack on the row buffers...

security flaw

Apache 1.4.x before 1.3.30, and 2.0.x before 2.0.49, when using multiple listening sockets on certain platforms, allows remote attackers to cause a denial of service blocked new connections via a "short-lived connection on a rarely-accessed listening socket."...

php -- memory_limit related vulnerability

Stefan Esser of e-matters discovered a condition within PHP that may lead to remote execution of arbitrary code. The memorylimit facility is used to notify functions when memory contraints have been met. Under certain conditions, the entry into this facility is able to interrupt functions such as...

security flaw

Heap-based buffer overflow in CVS 1.11.x up to 1.11.15, and 1.12.x up to 1.12.7, when using the pserver mechanism allows remote attackers to execute arbitrary code via Entry lines...

geoHTTP.txt

Software: GeoHttpServer Vendor: GEOVISION INC http://www.geovision.com.tw Versions: ALL Platforms: Unix Bug: Authentification Bypass Vulnerability & D.O.S Denial Of Service Risk: High Exploitation: Remote with browser Date: 22 Jan 2004 Author: Rafel Ivgi, The-Insider e-mail: [email protected]...

security flaw

raddecode in FreeRADIUS 0.9.2 and earlier allows remote attackers to cause a denial of service crash via a short RADIUS string attribute with a tag, which causes memcpy to be called with a -1 length argument, as demonstrated using the Tunnel-Password attribute...

security flaw

Heap-based buffer overflow in Ethereal 0.9.15 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via the SOCKS dissector...

[Full-Disclosure] RealOne Player local privilege escalation

Greetings, RealOne Player for the UNIX platform, sometimes referred to as the "community supported" realplayer version 9, installs per-user configuration files with group write permissions by default. On most UNIX variants, this is a serious issue as most users belong to the same group and...

e107 website system Vulnerability

Informations : Advisory Name: e107 website system Vulnerability Author: hiruvim [email protected] Discover by: hiruvim [email protected] Website vendor : http://e107.org Affected Systems: All versions Severity: High Platforms: Windows and Unix Issue: Security holes enable attackers to get MySQL...

ZH2003-11SA (security advisory): Elite News Ver. 1.0.0.0-1.0.0.3 Beta

Published: 16/07/2003 Released: 16/07/2003 Name: Elite News Affected Systems: All versions Severity: High Platforms: Windows and Unix Issue: Security holes enable attackers to take administrative control Original Advisory: http://www.zone-h.org/en/advisories/read/id=2710 Author: Trash-80 -...