Send ICMP Nasty Garbage (SING) - Append File Logrotate

/ sing file append exploit by bannedit 12/05/2007 The original reporter of this issue included an example session which added an account to the machine. The method for this exploit is slightly different and much more quiet. Although it relies upon logrotate for help. This could easily be modified...

CVE-2007-6211

Send ICMP Nasty Garbage sing on Debian GNU/Linux allows local users to append to arbitrary files and gain privileges via the -L output log file option. NOTE: this issue is only a vulnerability in limited environments, since sing is not installed setuid, and the administrator would need to overrid...

CVE-2007-4211

The ACL plugin in Dovecot before 1.0.3 allows remote authenticated users with the insert right to save certain flags via a 1 COPY or 2 APPEND command...

Command injection

The ACL plugin in Dovecot before 1.0.3 allows remote authenticated users with the insert right to save certain flags via a 1 COPY or 2 APPEND command...

CVE-2007-4211

The ACL plugin in Dovecot before 1.0.3 allows remote authenticated users with the insert right to save certain flags via a 1 COPY or 2 APPEND command...

DEBIAN-CVE-2007-4211

The ACL plugin in Dovecot before 1.0.3 allows remote authenticated users with the insert right to save certain flags via a 1 COPY or 2 APPEND command...

CVE-2007-4211

The ACL plugin in Dovecot before 1.0.3 allows remote authenticated users with the insert right to save certain flags via a 1 COPY or 2 APPEND command...

CVE-2007-4211

The ACL plugin in Dovecot before 1.0.3 allows remote authenticated users with the insert right to save certain flags via a 1 COPY or 2 APPEND command...

Cross site scripting

Adobe Integrated Runtime AIR, aka Apollo allows context-dependent attackers to modify arbitrary files within an executing .air file compiled AIR application and perform cross-site scripting XSS attacks, as demonstrated by an application that modifies an HTML file inside itself via JavaScript that...

PHP wddx_deserialize() String Append Crash Exploit

No description provided by source. ?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || // // | |/ || '|/ |/ -| ' / -/ |||| /| || / //...

PHP wddx_deserialize() String Append Crash Exploit

Exploit for multiple platform in category dos / poc ================================================== PHP wddxdeserialize String Append Crash Exploit ================================================== AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACCCCCCCCCCCCCCCCC...

PHP 5 - wddx_deserialize() String Append Crash

PHP 5 - wddxdeserialize String Append Crash AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC "; ? milw0rm.com 2007-03-04...

PHP 5 - 'wddx_deserialize()' String Append Crash

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC "; ? milw0rm.com 2007-03-04...

Novell Netmail IMAP APPEND远程拒绝服务漏洞

Novell Netmail是一款电子邮件和日历系统。 Novell Netmail包含的IMAP实现处理append命令存在设计缺陷，远程攻击者可以利用漏洞对服务程序进行拒绝服务攻击。 目前没有详细漏洞细节提供。 Novell NetMail 3.52 D Novell NetMail 3.52 C1 Novell NetMail 3.52 C Novell NetMail 3.52 B Novell NetMail 3.52 A Novell NetMail 3.52 Novell NetMail 3.52 Novell nm352eftf2lx.tgz NetMail 3.52e...

Novell Netmail IMAP服务APPEND命令远程栈溢出漏洞

Novell NetMail是基于Internet标准消息和安全协议的邮件和日历系统。 NetMail IMAP服务程序在处理APPEND命令时存在栈溢出漏洞，如果攻击者能够向该命令发送特定参数的话，就可以触发这个溢出，导致执行任意指令。 Novell NetMail 3.52 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： https://secure-support.novell.com/KanisaPlatform/Publishing/134/3096026f.SALPublic.html...

Novell NetMail IMAP server multiple buffer overflows

Buffer overflows on STOP, APPEND commands and on IMAP literals parsing...

WinGate IMAP Server Directory Traversal Vulnerabilities

The remote host appears to be running WinGate, a Windows application for managing and securing Internet access. The version of WinGate installed on the remote host fails to remove directory traversal sequences from the 'CREATE', 'SELECT', 'DELETE', 'RENAME', 'COPY', 'APPEND', and 'LIST' commands...

Directory traversal

Directory traversal vulnerability in the IMAP service in EServ/3 3.25 allows remote authenticated users to read other user's email messages, create/rename arbitrary directories on the system, and delete empty directories via directory traversal sequences in the 1 CREATE, 2 SELECT, 3 DELETE, 4...

DEBIAN-CVE-2006-0730

Multiple unspecified vulnerabilities in Dovecot before 1.0beta3 allow remote attackers to cause a denial of service application crash or hang via unspecified vectors involving 1 "potential hangs" in the APPEND command and "potential crashes" in 2 dovecot-auth and 3 imap/pop3-login. NOTE: vector 2...

CVE-2006-0730

Multiple unspecified vulnerabilities in Dovecot before 1.0beta3 allow remote attackers to cause a denial of service application crash or hang via unspecified vectors involving 1 "potential hangs" in the APPEND command and "potential crashes" in 2 dovecot-auth and 3 imap/pop3-login. NOTE: vector 2...