cURL and libcurl MD5 Digest Buffer Overflow (CVE-2013-0249)

The vulnerability is due to an error in Curlsaslcreatedigestmd5message while negotiating SASL DIGEST-MD5 authentication. A remote attacker can exploit this vulnerability by enticing a user to connect to a malicious server. This can lead to code execution in the context of the affected application...

e107 0.7.5 - 'search.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/18508/info e107 is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...

Cumulative Patch for Internet Information Services (Q327696)

Cumulative Patch for Microsoft IIS Q327696 Impact of vulnerability: Ten new vulnerabilities, the most serious of which could enable code of an attacker's choice to be run on a server. Recommendation: Users using any of the affected products should install the patch immediately. Maximum Severity...

Elite Forum 1.0 - HTML Injection

Elite Forum 1.0 - HTML Injection source: https://www.securityfocus.com/bid/15257/info Elite Forum is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script...

Microsoft Internet Explorer DHTML Method Buffer Overflow Vulnerability

Description Microsoft Internet Explorer is prone to a heap-based buffer-overflow vulnerability caused by a boundary condition error that is exposed when passing data to the 'createControlRange' DHTML method. As a result, heap-based memory can be corrupted with attacker-supplied data. An attacker...

Firebird 1.0 - Remote Database Name Buffer Overrun

Firebird 1.0 - Remote Database Name Buffer Overrun source: https://www.securityfocus.com/bid/10446/info Firebird is reported prone to a remote buffer-overrun vulnerability. The issue occurs because the application fails to perform sufficient boundary checks when the database server is handling...

[Full-Disclosure] [SECURITY] [DSA 494-1] New ident2 packages fix buffer overflow

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 494-1 [email protected] http://www.debian.org/security/ Matt Zimmerman April 21st, 2004 http://www.debian.org/security/faq -...

GNU Anubis 3.6.x3.9.x - Multiple Format String Vulnerabilities

GNU Anubis 3.6.x3.9.x - Multiple Format String Vulnerabilities source: https://www.securityfocus.com/bid/9772/info GNU Anubis has been reported prone to multiple buffer overflow and format string vulnerabilities. It has been conjectured that a remote attacker may potentially exploit these...

PBLang 4.04.56 Bulletin Board System - IMG Tag HTML Injection

PBLang 4.04.56 Bulletin Board System - IMG Tag HTML Injection source: https://www.securityfocus.com/bid/8286/info PBLang is prone to an HTML injection vulnerability. An attacker may exploit this issue by including hostile HTML and script code encapsulated in PBLang tags, when posting to the...

Gallery 1.2/1.3.x - Search Engine Cross-Site Scripting

source: https://www.securityfocus.com/bid/8288/info Gallery is prone to a cross-site scripting vulnerability. This issue is present in the search engine facility provided by the software. An attacker could exploit this issue by constructing a malicious link to the search engine that contains...

Tripbit Secure Code Analizer 1.0 - 'fgets()' Local Buffer Overrun

// source: https://www.securityfocus.com/bid/8028/info A buffer overrun has been discovered in Tripbit Secure Code Analizer when reading data from source files. The problem occurs due to an insecure use of the fgets function. This vulnerability could be triggered by a malicious source file...

Abuse-SDL 0.7 - Command Line Argument Buffer Overflow

Abuse-SDL 0.7 - Command Line Argument Buffer Overflow // source: https://www.securityfocus.com/bid/7982/info A buffer overflow vulnerability has been reported for Abuse-SDL that may result in the execution of attacker-supplied code. The vulnerability exists due to insufficient bounds checking...

Libopt.a 3.1x - Error Logging Buffer Overflow (2)

source: https://www.securityfocus.com/bid/7433/info Libopt library has been reported prone to a buffer overflow vulnerability. It has been reported that several Libopt.a error logging functions, may be prone to buffer overflow vulnerabilities when handling excessive data. The data may be supplied...

moxftp 2.2 - Banner Parsing Buffer Overflow

source: https://www.securityfocus.com/bid/6921/info A buffer overflow vulnerability has been reported for moxftp. The vulnerability occurs when moxftp is parsing 'Welcome' banner messages from remote FTP servers. When moxftp receives an overly long FTP banner, it will trigger the overflow...

AlsaPlayer 0.99.71 - Local Buffer Overflow

// source: https://www.securityfocus.com/bid/5767/info Alsaplayer is a PCM player that utilizes the ALSA libraries and drivers. It is availabe for Linux and Unix platforms. A vulnerability has been discovered in Alsaplayer. By specifying an overly long "add-on path", it is possible for an attacke...

ShoutBox 1.2 - 'Form' HTML Injection

source: https://www.securityfocus.com/bid/5354/info shoutBOX does not sufficiently sanitize HTML tags from input supplied via form fields. Attackers may exploit this lack of input validation to inject arbitrary HTML and script code into pages that are generated by the script. This may result in...

Security Bulletin MS02-027: Unchecked Buffer in Gopher Protocol Handler Can Run Code of Attacker''s Choice (Q323889)

Title: Unchecked Buffer in Gopher Protocol Handler Can Run Code of Attacker's Choice Q323889 Date: 11 June 2002 Software: Internet Explorer, Proxy Server, Internet Security and Acceleration Server Impact: Run Code of Attacker's Choice Max Risk: Critical Bulletin: MS02-027 Microsoft encourages...

Security Bulletin MS02-007

---------------------------------------------------------------------- Title: SQL Server Remote Data Source Function Contain Unchecked Buffers Date: 20 February 2002 Software: Microsoft SQL Server Impact: Run code of attacker's choice on server Max Risk: Moderate Bulletin: MS02-007 Microsoft...

Microsoft Windows XP - HCP URI Buffer Overflow

Microsoft Windows XP - HCP URI Buffer Overflow source: https://www.securityfocus.com/bid/6802/info A buffer overrun vulnerability was reported for helpctr.exe. The vulnerability exists due to insufficient bounds checking on input supplied via the HCP URI parameter. An attacker can exploit this...

Security Bulletin MS01-050

---------------------------------------------------------------------- Title: Malformed Excel or PowerPoint Document Can Bypass Macro Security Date: 04 October 2001 Software: Microsoft Excel or PowerPoint for Windows or Macintosh Impact: Run Code Of Attacker's Choice Bulletin: MS01-050 Microsoft...