Microsoft Security Bulletin MS06-040 Vulnerability in Server Service Could Allow Remote Code Execution (921883)

Microsoft Security Bulletin MS06-040 Vulnerability in Server Service Could Allow Remote Code Execution 921883 Published: August 8, 2006 Version: 1.0 Summary Who Should Read this Document: Customers who use Microsoft Windows Impact of Vulnerability: Remote Code Execution Maximum Severity Rating:...

MS06-040: Vulnerability in Server Service Could Allow Remote Code Execution (921883) (uncredentialed check)

The remote host is vulnerable to a buffer overrun in the 'Server' service that may allow an attacker to execute arbitrary code on the remote host with 'SYSTEM' privileges. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid22194; scriptversion"1.32"; scriptcvsdate"Date:...

trifinite Security Advisory: Buffer Overrun in Toshiba Bluetooth Stack for Windows

trifinite Security Advisory: Buffer Overrun in Toshiba Bluetooth Stack for Windows TRSA00001 http://trifinite.org/trifiniteadvisorytoshiba.html Author: Martin Herfurt martin.herfurt at trifinite.org Organization: trifinite.org Web: http://trifinite.org/ Summary This advisory describes a...

FreeType - '.TTF' File Remote Buffer Overflow

source: https://www.securityfocus.com/bid/18326/info FreeType is prone to a buffer-overflow vulnerability. This issue is due to an integer-underflow that results in a buffer being overrun with attacker-supplied data. This issue allows remote attackers to execute arbitrary machine code in the...

[Full-disclosure] Cyrus IMAPD pop3d remote compromise aka cyrusFUCK3d

Shouts to blackzero, alex, wY!, revoguard, bogus, wtfomg and all those yankees LOVE TO LISA :- genuine advisory by kcope/zeroday discovered by kcope!!! kingcopeatgmx.net public disclosure 21. May 2006 vendor was not notified mail quota exceeded???? fuck it let's get to business...

FreeBSD : bind -- buffer overrun vulnerability (947f4b14-1c89-11da-bc01-000e0c2e438a)

An ISC advisory reports a buffer overrun vulnerability within bind. The vulnerability could result in a Denial of Service. A workaround is available by disabling recursion and glue fetching. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugi...

FreeBSD : linux-realplayer -- buffer overrun (25858c37-bdab-11da-b7d4-00123ffe8333)

Secunia Advisories Reports : A boundary error when processing SWF files can be exploited to cause a buffer overflow. This may allow execution of arbitrary code on the user's system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

[Full-disclosure] Windows PHP 4.x "0-day" buffer overflow

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Buffer Overflow in PHP MySQL functions I. RISK Low - Remote code execution on some systems The function is not normaly exposed to external users via input data II. AFFECTED VERSIONS 4.x Branch under Windows III. BACKGROUND PHP contains many built-in...

Samba Long CIFS Passwords Buffer Overrun (CVE-1999-0182)

...

FTGate-expl.pl.txt

!/usr/bin/perl use IO::Socket; print "\nFTGate Imapd BufferOverrun\nLuca Ercoli [email protected]\n"; print "http://www.lucaercoli.it\n\n\n"; $host = "localhost"; $remote = IO::Socket::INET-new Proto = "tcp", PeerAddr = $host, PeerPort = "143", ; unless $remote die "Can't connect to $host" print "...

Buffer Overrun in FTGate4 Groupware Mail server

/ Package: FTGate4 Groupware Mail server Auth: http://www.floosietek.com/ Versions: 4.1 / previous versions may also be vulnerable Vulnerability Type: Remote Code Execution / Disclaimer: --------- The information is provided "as is" without warranty of any kind. The author of this issue shall not...

Buffer Overrun in the ListBox and in the ComboBox (824141)

A vulnerability exists because the ListBox control and the ComboBox control both call a function, which is located in the User32.dll file, that contains a buffer overrun. An attacker who had the ability to log on to a system interactively could run a program that could send a specially-crafted...

Cyrus IMAP pre-login buffer overrun

According to its banner, the remote Cyrus IMAP server is vulnerable to a pre-login buffer overrun. An attacker without a valid login could exploit this, and would be able to execute arbitrary commands as the owner of the Cyrus process. This would allow full access to all users' mailboxes. More...

cfengine AuthenticationDialogue vulnerability

Cfengine is running on this remote host. cfengine cfservd is reported prone to a remote heap-based buffer overrun vulnerability. The vulnerability presents itself in the cfengine cfservd AuthenticationDialogue function. The issue exists due to a lack of sufficient boundary checks performed on...

cfengine CFServD transaction packet buffer overrun vulnerability

Cfengine is running on this remote host. This version is prone to a stack-based buffer overrun vulnerability. An attacker, exploiting this flaw, would need network access to the server as well as the ability to send a crafted transaction packet to the cfservd process. A successful exploitation of...

Unchecked Buffer in XP Shell Could Enable System Compromise (329390)

It is possible for a malicious user to mount a buffer overrun attack using windows XP shell. A successful attack could have the effect of either causing the Windows Shell to fail, or causing an attacker's code to run on the user's computer in the security context of the user. Maximum Severity...

IMC SMTP EHLO Buffer Overrun

A security vulnerability results because of an unchecked buffer in the IMC code that generates the response to the EHLO protocol command. If the buffer were overrun with data it would result in either the failure of the IMC or could allow the attacker to run code in the security context of the IM...

CFEngine AuthenticationDialogue Vulnerability

CFEngine cfservd is prone to a remote heap-based buffer overrun vulnerability. SPDX-FileCopyrightText: 2005 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Unchecked Buffer in XP Shell Could Enable System Compromise (329390)

It is possible for a malicious user to mount a buffer overrun attack using windows XP shell. SPDX-FileCopyrightText: 2002 SECNAP Network Security, LLC Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

cfengine CFServD transaction packet buffer overrun vulnerability

Cfengine is running on this remote host. This version is prone to a stack-based buffer overrun vulnerability. An attacker, exploiting this flaw, would need network access to the server as well as the ability to send a crafted transaction packet to the cfservd process. A successful exploitation of...