20 matches found
EUVD-2018-6761
Malware in sbrugna...
[SECURITY] Fedora 38 Update: golang-github-tdewolff-argp-0-0.1.20240227git719bbce.fc38
GNU command line argument parser...
[SECURITY] Fedora 39 Update: golang-github-tdewolff-argp-0-0.1.20240227git719bbce.fc39
GNU command line argument parser...
[SECURITY] Fedora 34 Update: rust-argh-0.1.5-2.fc34
Derive-based argument parser optimized for code size...
Fedora: Security Advisory for rust-argh (FEDORA-2021-3cf88e44b4)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2019:2344-1 Security update for tcpdump
This update for tcpdump fixes the following issues: - CVE-2017-16808: Fixed a heap-based buffer over-read related to aoeprint and lookupemem bsc1068716 bsc1153098. - CVE-2018-10103: Fixed a mishandling of the printing of SMB data bsc1153098. - CVE-2018-10105: Fixed a mishandling of the printing o...
CVE-2018-16301
The command-line argument parser in tcpdump before 4.99.0 has a buffer overflow in tcpdump.c:readinfile. To trigger this vulnerability the attacker needs to create a 4GB file on the local filesystem and to specify the file name as the value of the -F command-line argument of tcpdump...
Buffer overflow
The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:getnextfile...
CVE-2018-16301
CVE-2018-16301 affects tcpdump/libpcap via a buffer overflow in tcpdump.c:read_infile. Exploitation requires a local attacker to create a 4GB file and pass it to -F, enabling potential data corruption or code execution. Remediation in affected packages commonly involves upgrading tcpdump to 4.99....
OPENSUSE-SU-2017:0737-1 Security update for irssi
This update to irssi 1.0.2 fixes security issues and bugs. The following vulnerabilities were fixed: boo1029020: Use after free while producing list of netjoins The following non-security changes are included: - Fix in command arg parser to detect missing arguments in tail place - Fix regression...
Dell-iDRAC-IPMI-1.5
Dell iDRAC IPMI v1.5 Implementation contains a flaw that is triggered as session IDs are assigned incrementally rather than randomly, and limit the overall pool. This may allow a remote attacker trivially predict session IDs, hijack a session, and inject arbitrary commands. from time import sleep...
PHD Help Desk 2.12 - SQL Injection Vulnerability
No description provided by source. Exploit Title: PHD Help Desk 2.12 SQLi Date: 05/24/2013 Exploit Author: drone @dronesec More information: http://forelsec.blogspot.com/2013/06/phd-help-desk-212-sqli-and-xss.html Vendor Homepage: http://www.p-hd.com.ar/ Software Link:...
CVE-2004-1012
The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote authenticated users to execute arbitrary code via a certain command "bodyp" that is treated as a different command "body.peek" and causes an index increment error that leads to an out-of-bounds memory...
CVE-2004-1012
The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote authenticated users to execute arbitrary code via a certain command "bodyp" that is treated as a different command "body.peek" and causes an index increment error that leads to an out-of-bounds memory...
CVE-2004-1013
The argument parser of the FETCH command in Cyrus IMAP Server 2.2.x through 2.2.8 allows remote authenticated users to execute arbitrary code via certain commands such as 1 "bodyp", 2 "binaryp", or 3 "binaryp" that cause an index increment error that leads to an out-of-bounds memory corruption...
CVE-2004-1012
The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote authenticated users to execute arbitrary code via a certain command "bodyp" that is treated as a different command "body.peek" and causes an index increment error that leads to an out-of-bounds memory...
CVE-2004-1012
The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote authenticated users to execute arbitrary code via a certain command "bodyp" that is treated as a different command "body.peek" and causes an index increment error that leads to an out-of-bounds memory...
CVE-2004-1013
The argument parser of the FETCH command in Cyrus IMAP Server 2.2.x through 2.2.8 allows remote authenticated users to execute arbitrary code via certain commands such as 1 "bodyp", 2 "binaryp", or 3 "binaryp" that cause an index increment error that leads to an out-of-bounds memory corruption...
CVE-2004-1012
The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote authenticated users to execute arbitrary code via a certain command "bodyp" that is treated as a different command "body.peek" and causes an index increment error that leads to an out-of-bounds memory...
Cyrus IMAPd -- PARTIAL command out of bounds memory corruption
Due to a bug within the argument parser of the partial command an argument like "bodyp" will be wrongly detected as "body.peek". Because of this the bufferposition gets increased by 10 instead of 5 and could therefore point outside the allocated memory buffer for the rest of the parsing process. ...