[CLA-2003:716] Conectiva Security Announcement - wget

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- CONECTIVA LINUX SECURITY ANNOUNCEMENT - -------------------------------------------------------------------------- PACKAGE : wget SUMMARY : Buffer overflow vulnerability DATE...

CVE-2003-0222

Stack-based buffer overflow in Oracle Net Services for Oracle Database Server 9i release 2 and earlier allows attackers to execute arbitrary code via a "CREATE DATABASE LINK" query containing a connect string with a long USING parameter...

[SECURITY] [DSA 290-1] New sendmail-wide packages fix DoS and arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 290-1 [email protected] http://www.debian.org/security/ Martin Schulze April 17th, 2003 http://www.debian.org/security/faq -...

APC < 3.8.0 apcupsd Multiple Vulnerabilities

The remote host is running the apcupsd client which, according to its version number, is affected by multiple vulnerabilities : - The configuration file '/var/run/apcupsd.pid' is by default world-writable. A local attacker could re-write this file with other process IDs in order to crash the...

CVE-2002-0889

Buffer overflow in Qpopper popper 4.0.4 and earlier allows local users to cause a denial of service and possibly execute arbitrary code via a long bulldir argument in the user's .qpopper-options configuration file...

AlsaPlayer 0.99.71 - Local Buffer Overflow

AlsaPlayer 0.99.71 - Local Buffer Overflow // source: https://www.securityfocus.com/bid/5767/info Alsaplayer is a PCM player that utilizes the ALSA libraries and drivers. It is availabe for Linux and Unix platforms. A vulnerability has been discovered in Alsaplayer. By specifying an overly long...

CVE-2002-0700

Buffer overflow in a system function that performs user authentication for Microsoft Content Management Server MCMS 2001 allows attackers to execute code in the Local System context by authenticating to a web page that calls the function, aka "Unchecked Buffer in MDAC Function Could Enable SQL...

Cooolsoft PowerFTP Server 2.0 32.10 - Multiple Denial of Service Vulnerabilities (1)

Cooolsoft PowerFTP Server 2.0 32.10 - Multiple Denial of Service Vulnerabilities 1 source: https://www.securityfocus.com/bid/3595/info PowerFTP is a commercial FTP server for Microsoft Windows 9x/ME/NT/2000/XP operating systems. It is maintained by Cooolsoft. Multiple instances of denial of servi...

AOLServer 3 - Authentication String Remote Buffer Overflow (2)

AOLServer 3 - Authentication String Remote Buffer Overflow 2 // source: https://www.securityfocus.com/bid/3230/info AOLServer is a freely available, open source web server. It was originally written by AOL, and is currently developed and maintained by AOL and public domain. A problem has been...

xloadimage 4.1 - Remote Buffer Overflow

// source: https://www.securityfocus.com/bid/3006/info // // xloadimage is a utility used for displaying images of varying formats on X11 servers. // // xloadimage and possibly derivatives such as 'xli' contain a buffer overflow vulnerability in the handling of the 'Faces Project' image type. // ...

Дырки в WinProxy

При неполный GET-запрос приводит к отказу в обслуживании. Имеются переполнения буфера, позволяющие выполнение кода...

CREAR ALMail32 1.10 - Remote Buffer Overflow

// source: https://www.securityfocus.com/bid/574/info The ALMail32 POP3 client conatins unchecked buffers in the header parsing code. An abnormally long FROM: or TO: field in the header of an incoming email will overwrite the buffer and allow arbitrary code to be executed...