Lucene search
K

331 matches found

exploitpack
exploitpack
added 2006/04/15 12:0 a.m.73 views

Novell Messenger Server 2.0 - Accept-Language Remote Overflow (Metasploit)

Novell Messenger Server 2.0 - Accept-Language Remote Overflow Metasploit This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the...

0.7AI score0.72833EPSS
Exploits12
0day.today
0day.today
added 2006/04/15 12:0 a.m.36 views

Novell Messenger Server 2.0 (Accept-Language) Remote Overflow Exploit

Exploit for novell platform in category remote exploits ===================================================================== Novell Messenger Server 2.0 Accept-Language Remote Overflow Exploit ===================================================================== This file is part of the Metasplo...

7.1AI score0.72833EPSS
Exploits12
Exploit DB
Exploit DB
added 2006/04/15 12:0 a.m.42 views

Novell Messenger Server 2.0 - 'Accept-Language' Remote Overflow (Metasploit)

This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artistic. The latest version of the...

10CVSS7AI score0.72833EPSS
Exploits12
Metasploit
Metasploit
added 2006/04/14 8:22 p.m.56 views

Novell Messenger Server 2.0 Accept-Language Overflow

This module exploits a stack buffer overflow in Novell GroupWise Messenger Server v2.0. This flaw is triggered by any HTTP request with an Accept-Language header greater than 16 bytes. To overwrite the return address on the stack, we must first pass a memcpy operation that uses pointers we supply...

10CVSS0.3AI score0.72833EPSS
Exploits12
NVD
NVD
added 2006/04/14 10:2 a.m.17 views

CVE-2006-0992

Stack-based buffer overflow in Novell GroupWise Messenger before 2.0 Public Beta 2 allows remote attackers to execute arbitrary code via a long Accept-Language value without a comma or semicolon. NOTE: due to a typo, the original ZDI advisory accidentally referenced CVE-2006-0092. This is the...

10CVSS7.8AI score0.72833EPSS
Exploits12References12
Prion
Prion
added 2006/04/14 10:2 a.m.15 views

Stack overflow

Stack-based buffer overflow in Novell GroupWise Messenger before 2.0 Public Beta 2 allows remote attackers to execute arbitrary code via a long Accept-Language value without a comma or semicolon. NOTE: due to a typo, the original ZDI advisory accidentally referenced CVE-2006-0092. This is the...

10CVSS8.2AI score0.72833EPSS
Exploits12References12Affected Software1
Cvelist
Cvelist
added 2006/04/14 10:0 a.m.38 views

CVE-2006-0992

Stack-based buffer overflow in Novell GroupWise Messenger before 2.0 Public Beta 2 allows remote attackers to execute arbitrary code via a long Accept-Language value without a comma or semicolon. NOTE: due to a typo, the original ZDI advisory accidentally referenced CVE-2006-0092. This is the...

7.7AI score0.72833EPSS
Exploits12References12
securityvulns
securityvulns
added 2006/04/13 12:0 a.m.52 views

Novell GroupWise Messenger buffer overflow

TC/8300 HTTP request oversized Accept-Language header buffer overflow...

2.3AI score
Exploits0References1Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2006/04/13 12:0 a.m.143 views

Novell GroupWise Messenger Accept-Language Buffer Overflow Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of the Novell GroupWise Messenger. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Novell Messaging Agent, a web server that listens by default on TCP port...

10CVSS3.4AI score0.72833EPSS
Exploits12References1
OSV
OSV
added 2005/11/18 2:2 a.m.5 views

DEBIAN-CVE-2005-3347

Multiple directory traversal vulnerabilities in index.php in phpSysInfo 2.4 and earlier, as used in phpgroupware 0.9.16 and earlier, and egrouwpware before 1.0.0.009, allow remote attackers to include arbitrary files via .. dot dot sequences in the 1 sensorprogram parameter or the 2...

6.8CVSS7.2AI score0.03548EPSS
Exploits1References1
NVD
NVD
added 2005/05/17 4:0 a.m.21 views

CVE-2005-1634

Multiple cross-site scripting XSS vulnerabilities in JGS-XA JGS-Portal 3.0.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 anzahlbeitraege parameter to jgsportal.php, 2 year parameter to jgsportalstatistik.php, 3 year parameter to jgsportalbeitraggraf.php, 4...

4.3CVSS5.7AI score0.01375EPSS
Exploits0References1
Rows per page
Query Builder