4206 matches found
Debian DSA-360-1 : xfstt - several vulnerabilities
xfstt, a TrueType font server for the X window system was found to contain two classes of vulnerabilities : CAN-2003-0581: a remote attacker could send requests crafted to trigger any of several buffer overruns, causing a denial of service or possibly executing arbitrary code on the server with t...
Microsoft Windows - JPEG Processing Buffer Overrun (MS04-028)
!/bin/sh The JPEG vuln is triggered by the 0 or 1 length field with an integer flaw The crafted JPEG header makes Windows crash a couple of different ways 1 First, it crashes when the image is opened. 2 Second, it crashes when hovering the mouse over the image. The pointer overwrite is pretty...
Microsoft Windows - JPEG GDI+ Overflow Shellcode
// launch a local cmd.exe not bound to the net... // GDI+ buffer overrun exploit by FoToZ // NB: the headers here are only sample headers taken from a .JPG file, // with the FF FE 00 01 inserted in header1. // Sample shellcode is provided // You can put approx. 2500 bytes of shellcode...who needs...
MS Windows JPEG GDI+ Overflow Shellcoded Exploit
Exploit for unknown platform in category remote exploits ================================================ MS Windows JPEG GDI+ Overflow Shellcoded Exploit ================================================ // launch a local cmd.exe not bound to the net... // GDI+ buffer overrun exploit by FoToZ //...
MS Windows JPEG Processing Buffer Overrun Exploit (MS04-028)
Exploit for unknown platform in category dos / poc ============================================================ MS Windows JPEG Processing Buffer Overrun Exploit MS04-028 ============================================================ !/bin/sh The JPEG vuln is triggered by the 0 or 1 length field wi...
Microsoft Windows - JPEG Processing Buffer Overrun (MS04-028)
Microsoft Windows - JPEG Processing Buffer Overrun MS04-028 !/bin/sh The JPEG vuln is triggered by the 0 or 1 length field with an integer flaw The crafted JPEG header makes Windows crash a couple of different ways 1 First, it crashes when the image is opened. 2 Second, it crashes when hovering t...
Microsoft Windows - JPEG GDI+ Overflow Shellcode
Microsoft Windows - JPEG GDI+ Overflow Shellcode // launch a local cmd.exe not bound to the net... // GDI+ buffer overrun exploit by FoToZ // NB: the headers here are only sample headers taken from a .JPG file, // with the FF FE 00 01 inserted in header1. // Sample shellcode is provided // You ca...
Microsoft Security Bulletin MS04-028 Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution (833987)
Microsoft Security Bulletin MS04-028 Buffer Overrun in JPEG Processing GDI+ Could Allow Code Execution 833987 Issued: September 14, 2004 Version: 1.0 Summary Who should read this document: Customers who use any of the affected operating systems, affected software programs, or affected components...
MS04-028: Buffer Overrun in JPEG Processing (833987)
The remote host is running a version of Windows that is vulnerable to a buffer overrun attack when viewing a JPEG file which could allow an attacker to execute arbitrary code on the remote host. To exploit this flaw, an attacker would need to send a malformed JPEG file to a user on the remote hos...
Mandrake Linux Security Advisory : libpng (MDKSA-2004:079)
Chris Evans discovered numerous vulnerabilities in the libpng graphics library, including a remotely exploitable stack-based buffer overrun in the pnghandletRNS function, dangerous code in pnghandlesBIT, a possible NULL pointer crash in pnghandleiCCP which is also duplicated in multiple other...
Cfengine AuthenticationDialogue() Function Remote Overflow
Cfengine cfservd is reported prone to a remote heap-based buffer overrun vulnerability. The vulnerability presents itself in the cfengine cfservd AuthenticationDialogue function. The issue exists due to a lack of sufficient boundary checks performed on challenge data that is received from a clien...
Internet Security Systems BlackICE PC Protection 3.6 - Firewall.INI Local Buffer Overrun
Internet Security Systems BlackICE PC Protection 3.6 - Firewall.INI Local Buffer Overrun source: https://www.securityfocus.com/bid/10915/info It is reported that BlackICE PC Protection is prone to a local buffer overrun when handling excessive input in certain configuration directives parsed from...
Internet Security Systems BlackICE PC Protection 3.6 - Firewall.INI Local Buffer Overrun
source: https://www.securityfocus.com/bid/10915/info It is reported that BlackICE PC Protection is prone to a local buffer overrun when handling excessive input in certain configuration directives parsed from the firewall.ini file included with the software. It is reported that when the system is...
GNU CFEngine 2.0.x2.1 - AuthenticationDialogue Remote Heap Buffer Overrun (1)
GNU CFEngine 2.0.x2.1 - AuthenticationDialogue Remote Heap Buffer Overrun 1 source: https://www.securityfocus.com/bid/10899/info GNU cfengine cfservd is reported prone to a remote heap-based buffer overrun vulnerability. The vulnerability presents itself in the cfengine cfservd...
GNU CFEngine 2.0.x2.1 - AuthenticationDialogue Remote Heap Buffer Overrun (2)
GNU CFEngine 2.0.x2.1 - AuthenticationDialogue Remote Heap Buffer Overrun 2 // source: https://www.securityfocus.com/bid/10899/info GNU cfengine cfservd is reported prone to a remote heap-based buffer overrun vulnerability. The vulnerability presents itself in the cfengine cfservd...
GNU CFEngine 2.0.x/2.1 - AuthenticationDialogue Remote Heap Buffer Overrun (2)
// source: https://www.securityfocus.com/bid/10899/info GNU cfengine cfservd is reported prone to a remote heap-based buffer overrun vulnerability. The vulnerability presents itself in the cfengine cfservd AuthenticationDialogue function. The issue exists due to a lack of sufficient boundary chec...
GNU CFEngine 2.0.x/2.1 - AuthenticationDialogue Remote Heap Buffer Overrun (1)
source: https://www.securityfocus.com/bid/10899/info GNU cfengine cfservd is reported prone to a remote heap-based buffer overrun vulnerability. The vulnerability presents itself in the cfengine cfservd AuthenticationDialogue function. The issue exists due to a lack of sufficient boundary checks...
GNU Info 4.7 - Follow XRef Buffer Overrun
GNU Info 4.7 - Follow XRef Buffer Overrun source: https://www.securityfocus.com/bid/10882/info GNU Info is reported prone to a buffer overrun vulnerability. The vulnerability is reported to present itself due to a lack of boundary checks performed on argument data for the f follow xref Info...
GNU Info 4.7 - Follow XRef Buffer Overrun
source: https://www.securityfocus.com/bid/10882/info GNU Info is reported prone to a buffer overrun vulnerability. The vulnerability is reported to present itself due to a lack of boundary checks performed on argument data for the f follow xref Info command. An attacker may exploit this...
Mandrake Linux Security Advisory : samba (MDKSA-2004:071)
A vulnerability was discovered in SWAT, the Samba Web Administration Tool. The routine used to decode the base64 data during HTTP basic authentication is subject to a buffer overrun caused by an invalid base64 character. This same code is also used to internally decode the sambaMungedDial attribu...