openssl security update

CentOS Errata and Security Advisory CESA-2007:0813 Updated OpenSSL packages that correct security issues are now available for Red Hat Enterprise Linux 2.1 and 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenSSL is a toolkit that...

Moderate: Red Hat Security Advisory: openssl security update

Updated OpenSSL packages that correct security issues are now available for Red Hat Enterprise Linux 2.1 and 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenSSL is a toolkit that implements Secure Sockets Layer SSL v2/v3 and Transport...

Mandrake Linux Security Advisory : tk (MDKSA-2007:200)

A vulnerability in Tk was found that could be used to overrun a buffer when loading certain GIF images. If a user were tricked into opening a specially crafted GIF file, it could lead to a denial of service condition or possibly the execution of arbitrary code with the user's privileges. Updated...

openssl security update

CentOS Errata and Security Advisory CESA-2007:0964 Updated OpenSSL packages that correct several security issues are now available for Red Hat Enterprise 5. This update has been rated as having important security impact by the Red Hat Security Response Team. OpenSSL is a toolkit that implements...

[USN-529-1] Tk vulnerability

=========================================================== Ubuntu Security Notice USN-529-1 October 11, 2007 tk8.3, tk8.4 vulnerability CVE-2007-5137 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 6.10...

RHEL 5 : openssl (RHSA-2007:0964)

Updated OpenSSL packages that correct several security issues are now available for Red Hat Enterprise 5. This update has been rated as having important security impact by the Red Hat Security Response Team. OpenSSL is a toolkit that implements Secure Sockets Layer SSL v2/v3 and Transport Layer...

Important: Red Hat Security Advisory: openssl security update

Updated OpenSSL packages that correct several security issues are now available for Red Hat Enterprise 5. This update has been rated as having important security impact by the Red Hat Security Response Team. OpenSSL is a toolkit that implements Secure Sockets Layer SSL v2/v3 and Transport Layer...

Vulnerability in OpenSSL CVE-2007-5135

A flaw was found in the SSLgetsharedciphers utility function. An attacker could send a list of ciphers to an application that used this function and overrun a buffer with a single byte. Few applications make use of this vulnerable function and generally it is used only when applications are...

[Full-disclosure] Mercury SMTPD Remote Preauth Stack Based Overrun

Mercury Mail Transport System Remote Stack Based Overflow Overview Mercury Mail Transport System: Mercury is a free, standards-based mail server solution, providing comprehensive, fast server support for all major Internet e- mail protocols. It is supplied in two versions, one hosted on Windows...

mercury-poc.txt

If there are images in this attachment, they will not be displayed. Download the original attachment Mercury Mail Transport System Remote Stack Based Overflow Overview Mercury Mail Transport System: Mercury is a free, standards-based mail server solution, providing comprehensive, fast server...

Mercury SMTPD Remote Preauth Stack Based Overrun PoC

No description provided by source. If there are images in this attachment, they will not be displayed. Download the original attachment Mercury Mail Transport System Remote Stack Based Overflow Overview Mercury Mail Transport System: Mercury is a free, standards-based mail server solution,...

Mercury32 Mail SMTPD - Remote Stack Overrun (PoC)

Mercury32 Mail SMTPD - Remote Stack Overrun PoC If there are images in this attachment, they will not be displayed. Download the original attachment Mercury Mail Transport System Remote Stack Based Overflow Overview Mercury Mail Transport System: Mercury is a free, standards-based mail server...

Mercury SMTPD Remote Preauth Stack Based Overrun PoC

Exploit for unknown platform in category dos / poc ==================================================== Mercury SMTPD Remote Preauth Stack Based Overrun PoC ==================================================== If there are images in this attachment, they will not be displayed. Download the origin...

shellcode to bypass kav6-vulnerability warning-the black bar safety net

kav6 hook the kernel32. dll inside: LoadLibraryA/W LoadLibraryExA/W GetProcAddress 5 function. If you find a function's return address located on the stack,then pop up a"buffer overrun detected"Alarm. And subsequent calls to load the dll where the function will alarm. Bypass method: shellcode...

FreeBSD : findutils -- GNU locate heap buffer overrun (7ca2a709-103b-11dc-8e82-00001cd613f9)

James Youngman reports : When GNU locate reads filenames from an old-format locate database, they are read into a fixed-length buffer allocated on the heap. Filenames longer than the 1026-byte buffer can cause a buffer overrun. The overrunning data can be chosen by any person able to control the...

GNU Findutils release 4.2.31 fixes CVE-2007-2452 (GNU locate heap buffer overrun)

$Revision: 1.4 $; $Date: 2007/05/30 22:04:52 $ I. BACKGROUND ============= GNU findutils is a set of programs which search for files on Unix-like systems. It is maintained by the GNU Project of the Free Software Foundation. For more information, see http://www.gnu.org/software/findutils. II...

findutils -- GNU locate heap buffer overrun

James Youngman reports: When GNU locate reads filenames from an old-format locate database, they are read into a fixed-length buffer allocated on the heap. Filenames longer than the 1026-byte buffer can cause a buffer overrun. The overrunning data can be chosen by any person able to control the...

Second Sight Software ActiveMod.ocx ActiveX Buffer Overflow POC

No description provided by source. !-- =============================================================================================== Second Sight Software ActiveMod.ocx ActiveX Buffer Overflow POC By Umesh Wanve...

gd: buffer overrun

Buffer overflow in the gdImageStringFTEx function in gdft.c in GD Graphics Library 2.0.33 and earlier allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted string with a JIS encoded font...

gd: buffer overrun

Buffer overflow in the gdImageStringFTEx function in gdft.c in GD Graphics Library 2.0.33 and earlier allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted string with a JIS encoded font...