565 matches found
benjurry.txt
The Analysis of LSD's Buffer Overrun in Windows RPC Interface Author:Flashsky site:www.xfocus.org WWW.VENUSTECH.COM.CN WWW.SHOPSKY.COM Email:[email protected] Translator:Benjurry Email:[email protected] Code by Flashsky and Benjurry http://www.xfocus.org/documents/200307/2.html Foreword On Ju...
CVE-2003-0469
Buffer overflow in the HTML Converter HTML32.cnv on various Windows operating systems allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via cut-and-paste operation, as demonstrated in Internet Explorer 5.0 using a long "align" argument in an HR tag...
Opera 7.0/7.10 - JavaScript Console Single Quote Attribute Injection
source: https://www.securityfocus.com/bid/7449/info A vulnerability has been reported for Opera 7 browsers for Microsoft Windows operating systems. The vulnerability exists in the Opera JavaScript console. Attackers may exploit the vulnerability to execute script code in a sensitive context...
ISMAIL (All Versions) Remote Buffer Overrun
NGSSoftware Insight Security Research Advisory Name: ISMAIL v 1.25 & v 1.4.3 Remote Buffer Overrun Systems Affected: WinNT, Win2K, XP Severity: High Risk Category: Remote Buffer Overrun Vendor URL: http://instantservers.com/ismail.html Author: Mark Litchfield [email protected] Date: 27th...
CVE-2003-0016
Apache before 2.0.44, when running on unpatched Windows 9x and Me operating systems, allows remote attackers to cause a denial of service or execute arbitrary code via an HTTP request containing MS-DOS device names...
Opera 6.0/7.0 - opera.PluginContext Native Method Denial of Service
source: https://www.securityfocus.com/bid/6814/info Opera ships with a trusted Java class 'opera.PluginContext' that includes a native method that is reportedly prone to denial of service attacks. It is possible for a malicious Java applet to trigger this condition to cause a denial of service...
EType EServ 2.9x - SMTP Remote Denial of Service
EType EServ 2.9x - SMTP Remote Denial of Service source: https://www.securityfocus.com/bid/6521/info EServ is a proxy software package distributed by EType. It is available for Microsoft Windows operating systems. It has been reported that a problem in EServ may cause the software to crash. When ...
iDEFENSE Security Advisory 11.04.02a: Pablo FTP Server DoS Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDEFENSE Security Advisory 11.04.02a: http://www.idefense.com/advisory/11.04.02a.txt Pablo FTP Server DoS Vulnerability November 4, 2002 I. BACKGROUND Pablo Software Solutions' FTP Server is a multi-threaded FTP server for Windows 98, NT 4.0, 2000 and...
[SNS Advisory No.55] Eudora 5.x for Windows Buffer Overflow Vulnerability
---------------------------------------------------------------------- SNS Advisory No.55 Eudora 5.x for Windows Buffer Overflow Vulnerability Problem first discovered: 6 Jun 2002 Published: 5 Aug 2002 ---------------------------------------------------------------------- Overview: --------- Eudo...
Foundstone Advisory - Buffer Overflow in AnalogX Proxy
---------------------------------------------------------------------- FS Advisory ID: FS-070102-23-AXPR Release Date: July 1st, 2002 Product: AnalogX Proxy Vendor: AnalogX http://www.analogx.com Vendor Advisory: See vendor web site Type: Buffer Overflow Severity: High Author: Robin Keir...
mcNews 1.x - File Disclosure
mcNews 1.x - File Disclosure source: https://www.securityfocus.com/bid/4770/info mcNews is a set of scripts for allowing users to post news stories on a webpage. It will run on most Linux and Unix variants as well as Microsoft Windows operating systems. mcNews does not sufficiently filter...
Philip Chinerys Guestbook 1.1 - Script Injection
Philip Chinerys Guestbook 1.1 - Script Injection source: https://www.securityfocus.com/bid/4566/info Philip Chinery's Guestbook is freely available guestbook software. It will run on most Unix and Linux variants, as well as Microsoft Windows operating systems. Philip Chinery's Guestbook does not...
CVE-2001-0877
Universal Plug and Play UPnP on Windows 98, 98SE, ME, and XP allows remote attackers to cause a denial of service via 1 a spoofed SSDP advertisement that causes the client to connect to a service on another machine that generates a large amount of traffic e.g., chargen, or 2 via a spoofed SSDP...
CVE-2001-0876
Buffer overflow in Universal Plug and Play UPnP on Windows 98, 98SE, ME, and XP allows remote attackers to execute arbitrary code via a NOTIFY directive with a long Location URL...
AOL Instant Messenger 4.x - Hyperlink Denial of Service
source: https://www.securityfocus.com/bid/4244/info AOL Instant Messenger AIM is a real time messaging service. The AIM client runs on Microsoft Windows operating systems. It is possible to crash the AIM client by sending a specially formatted hyper-link to a user. When the user attempts to launc...
Phusion WebServer 1.0 - URL Remote Buffer Overflow
Phusion WebServer 1.0 - URL Remote Buffer Overflow // source: https://www.securityfocus.com/bid/4119/info Phusion Webserver is a commercial HTTP server that runs on Microsoft Windows 9x/NT/2000 operating systems. Phusion Webserver does not perform sufficient bounds checking of externally supplied...
Phusion WebServer 1.0 - 'URL' Remote Buffer Overflow
// source: https://www.securityfocus.com/bid/4119/info Phusion Webserver is a commercial HTTP server that runs on Microsoft Windows 9x/NT/2000 operating systems. Phusion Webserver does not perform sufficient bounds checking of externally supplied data. As a result, it is possible for a remote...
Phusion WebServer 1.0 - Directory Traversal (2)
Phusion WebServer 1.0 - Directory Traversal 2 source: https://www.securityfocus.com/bid/4117/info Phusion Webserver is a commercial HTTP server that runs on Microsoft Windows 9x/NT/2000 operating systems. Phusion Webserver is prone to directory traversal attacks. It is possible to break out of...
Sambar Server 5.1 - Sample Script Denial of Service
Sambar Server 5.1 - Sample Script Denial of Service // source: https://www.securityfocus.com/bid/3885/info Sambar Server is a multi-threaded web server which will run on Microsoft Windows 9x/ME/NT/2000 operating systems. It is possible to cause a denial of service to Sambar Server by sending...
Sambar Server 5.1 - Sample Script Denial of Service
// source: https://www.securityfocus.com/bid/3885/info Sambar Server is a multi-threaded web server which will run on Microsoft Windows 9x/ME/NT/2000 operating systems. It is possible to cause a denial of service to Sambar Server by sending consecutive excessively long requests to the 'cgitest.ex...