1763 matches found
Buffer-overflow in Age of Sail II 1.04.151
Luigi Auriemma Application: Privateer's Bounty: Age of Sail II http://www.akella.com/aos2/ Versions: = 1.04.151 seems also known as 1.55/1.56 Platforms: Windows Bug: buffer-overflow Exploitation: remote, versus server Date: 20 October 2004 Author: Luigi Auriemma e-mail: [email protected] web:...
Broadcast crash in Vypress Tonecast 1.3
Luigi Auriemma Application: Vypress Tonecast http://www.vypress.com/products/tonecast/ Versions: = 1.3 both the program and the plugin for Winamp Platforms: Windows Bug: crash Exploitation: remote, versus receivers broadcast Date: 19 October 2004 Author: Luigi Auriemma e-mail: [email protected]...
Server crash in Flash Messaging 5.2.0g
Luigi Auriemma Application: Flash Messaging http://www.flashmessage.com Versions: = 5.2.0g rev 1.1.2 Platforms: Windows Bugs: - server crash - unkickable clients Exploitation: remote, versus server Date: 07 October 2004 Author: Luigi Auriemma e-mail: [email protected] web:...
Directory traversal in Tridcomm 1.3
Luigi Auriemma Application: Tridcomm http://www.tridcomm.com Versions: = 1.3 Platforms: Windows Bug: directory traversal both download and upload Exploitation: remote, versus the built-in FTP server Date: 06 October 2004 Author: Luigi Auriemma e-mail: [email protected] web:...
@stake advisory: Lexar JumpDrive Secure Password Extraction
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 @stake, Inc. www.atstake.com Security Advisory Advisory Name: Lexar JumpDrive Securetm Password Extraction Release Date: 09-13-2004 Application: JumpDrive Securetm Version 1.0 and Lexar Safe Guardtm software Platform: Windows and Mac Severity: An...
[Full-Disclosure] Buffer Overflow in SYS_CONTEXT() in Oracle 9i Rel.2
http://www.red-database-security.com/advisory/advisory200409032.htm RDS200409032 - Red-Database-Security GmbH Research Advisory Name Buffer Overflow in SYSCONTEXT in Oracle 9i Rel.2 Systems Affected Oracle9i Rel. 2 Windows platform only Severity Medium Risk Category Buffer Overflow Vendor URL...
CVE-2002-0969
Buffer overflow in MySQL daemon mysqld before 3.23.50, and 4.0 beta before 4.02, on the Win32 platform, allows local users to execute arbitrary code via a long "datadir" parameter in the my.ini initialization file, whose permissions on Windows allow Full Control to the Everyone group...
DOS@TFS
:::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: :Application: TYPSoft FTP Server :Vendors: www.typsoft.com :Version: =1.11 :Platforms: Windows :Bug: D.O.S :Date: 2004-08-28 :Author: CoolICE :EMail: CoolICEChina.com...
Limited buffer overflow in Painkiller 1.31
Luigi Auriemma Application: Painkiller http://www.painkillergame.com Versions: = 1.3.1 Platforms: Windows Bug: memory corruption with limited code execution Risk: medium/high Exploitation: remote, versus server Date: 24 August 2004 Author: Luigi Auriemma e-mail: [email protected] web:...
JShop Input Validation Hole in 'page.php' Permits Cross-Site Scripting Attacks
Indonesia Security Development Team Indohack http://indohack.sourceforge.net/drponidi =========================================================================== Security Advisory Advisory Name: JShop Input Validation Hole in 'page.php' Permits Cross-Site Scripting Attacks Platform: Linux Any, UN...
mailenable.txt
:::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: :Application: MailEnable Professional HTTPMail :Vendors: http://www.mailenable.com/ :Version: 1.19 :Platforms: Windows :Bug: D.O.S :Date: 2004-07-30 :Author: CoolICE :Email: CoolICEChina.com...
[Full-Disclosure] Bug@thttpd
Application: thttpd Vendors: http://www.acme.com/software/thttpd/ Version: 2.07 beta 0.4 10dec99 Platforms: Windows Bug: Directory Traversal Date: 2004-08-04 Author: CoolICE e-mail: CoolICEChina.com ================ Content: in libhttpd.c: int httpdparserequest httpdconn hc ... if hc-decodedurl0 ...
Acme thttpd 2.0.7 - Directory Traversal
source: https://www.securityfocus.com/bid/10862/info It is reported that thttpd is susceptible to a directory traversal vulnerability. This issue presents itself due to insufficient sanitization of user-supplied data. This issue only exists in the Windows port of the application, as it does not...
[Full-Disclosure] DOS@MEHTTPS
:::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: :Application: MailEnable Professional HTTPMail :Vendors: http://www.mailenable.com/ :Version: 1.19 :Platforms: Windows :Bug: D.O.S :Date: 2004-07-30 :Author: CoolICE :Email: CoolICEChina.com...
DOS@XitamiHTTPd
Application: Xitami Web Server Vendors: http://www.xitami.com/xiopen25.zip Version: v2.5c1 Platforms: Windows Bug: D.O.S Date: 2004-07-15 Author: CoolICE e-mail: CoolICEChina.com ================ Content: ---------------- TestCode: @echo off...
Orenosv HTTPFTP Server 0.5.9 - GET Denial of Service (2)
Orenosv HTTPFTP Server 0.5.9 - GET Denial of Service 2 source: https://www.securityfocus.com/bid/10420/info Orenosv HTTP/FTP server is prone to a denial of service vulnerability that may occur when an overly long HTTP GET request is sent to the server. When the malicious request is handled, it is...
Orenosv HTTP/FTP Server 0.5.9 - GET Denial of Service (2)
source: https://www.securityfocus.com/bid/10420/info Orenosv HTTP/FTP server is prone to a denial of service vulnerability that may occur when an overly long HTTP GET request is sent to the server. When the malicious request is handled, it is reported that both the HTTP and FTP daemons will stop...
Orenosv HTTP/FTP Server 0.5.9 - GET Denial of Service (3)
source: https://www.securityfocus.com/bid/10420/info Orenosv HTTP/FTP server is prone to a denial of service vulnerability that may occur when an overly long HTTP GET request is sent to the server. When the malicious request is handled, it is reported that both the HTTP and FTP daemons will stop...
MailEnable Mail Server HTTPMail 1.x - Remote Heap Overflow
source: https://www.securityfocus.com/bid/10312/info MailEnable is a commercially available POP3 and SMTP server for the Windows platform. The 'Professional' and 'Enterprise' editions of MailEnable are reported to be prone to a remote heap buffer overflow. The overflow allows the attacker to...
aldosweb.txt
Multible Vulnerabilites in Aldos Webserver ========================================== Aldo's Web Server is a super-compact Web service daemon that not only let you share easily your files, it also acts as a Advertisment or site blocker. Version: ======== 1.5 on Windows Platform Vulnerabilities:...