4205 matches found
Microsoft Security Bulletin MS03-026: Buffer Overrun In RPC Interface Could Allow Code Execution(Q823980)
-----BEGIN PGP SIGNED MESSAGE----- - - --------------------------------------------------------------- Title: Buffer Overrun In RPC Interface Could Allow Code Execution 823980 Date: 16 July 2003 Software: Microsoftr Windows r NT 4.0 Microsoft Windows NT 4.0 Terminal Services Edition Microsoft...
MS03-027: Buffer overrun in Windows Shell (821557)
The remote host is running a version of Windows that has a flaw in its shell. An attacker could exploit it by creating a malicious Desktop.ini file, putting it on a shared folder and waiting for someone to browse it. C Tenable Network Security, Inc. include"compat.inc"; if description...
Microsoft Windows DCOM RPC Interface Buffer Overrun Vulnerability
Description A buffer overrun vulnerability has been reported in Microsoft Windows that can be exploited remotely via a DCOM RPC interface that listens on TCP/UDP port 135. The issue is due to insufficient bounds checking of client DCOM object activation requests. Exploitation of this issue could...
Netscape 7.02 Client Detection Tool plug-in buffer overrun
Advisory name ============= Netscape 7.02 Client Detection Tool plug-in buffer overrun Affected software ================= Netscape 7.02 for Windows Problem description =================== Netscape 7.02 and probably earlier versions contains Client Detection Tool plug-in that handles...
Microsoft Security Bulletin MS03-023: Buffer Overrun In HTML Converter Could Allow Code Execution (Q823559)
-----BEGIN PGP SIGNED MESSAGE----- - - --------------------------------------------------------------- Title: Buffer Overrun In HTML Converter Could Allow Code Execution 823559 Date: 09 July 2003 Software: Microsoftr Windows r 98 Microsoft Windows 98 Second Edition Microsoft Windows Me Microsoft...
FoxWeb 2.5 - PATH_INFO Remote Buffer Overrun
FoxWeb 2.5 - PATHINFO Remote Buffer Overrun source: https://www.securityfocus.com/bid/8547/info FoxWeb is prone to a remotely exploitable buffer overrun vulnerability. This is due to insufficient bounds checking of user-supplied PATHINFO data to the Foxweb CGI and ISAPI extension. Successful...
FoxWeb 2.5 - PATH_INFO Remote Buffer Overrun
source: https://www.securityfocus.com/bid/8547/info FoxWeb is prone to a remotely exploitable buffer overrun vulnerability. This is due to insufficient bounds checking of user-supplied PATHINFO data to the Foxweb CGI and ISAPI extension. Successful exploitation would permit a remote attacker to...
Remote Buffer Overrun WebAdmin.exe
NGSSoftware Insight Security Research Advisory Name: Remote System Buffer Overrun WebAdmin.exe Systems Affected: Windows Severity: High Risk Category: Buffer Overrun Vendor URL: http://www.altn.com/ Author: Mark Litchfield [email protected] Date: 24th June 2003 Advisory number: NISR2406-03...
Tripbit Secure Code Analizer 1.0 - fgets() Local Buffer Overrun
Tripbit Secure Code Analizer 1.0 - fgets Local Buffer Overrun // source: https://www.securityfocus.com/bid/8028/info A buffer overrun has been discovered in Tripbit Secure Code Analizer when reading data from source files. The problem occurs due to an insecure use of the fgets function. This...
Tripbit Secure Code Analizer 1.0 - 'fgets()' Local Buffer Overrun
// source: https://www.securityfocus.com/bid/8028/info A buffer overrun has been discovered in Tripbit Secure Code Analizer when reading data from source files. The problem occurs due to an insecure use of the fgets function. This vulnerability could be triggered by a malicious source file...
Alt-N WebAdmin Multiple Vulnerabilities
webadmin.dll was found on the web server. Old versions of this CGI suffered from numerous problems: - installation path disclosure - directory traversal, allowing anybody with administrative permission on WebAdmin to read any file - buffer overflow, allowing anybody to run arbitrary code on the...
Kerio MailServer 5.6.3 subscribe Module - Overflow
Kerio MailServer 5.6.3 subscribe Module - Overflow source: https://www.securityfocus.com/bid/7967/info Multiple buffer overrun vulnerabilities have been discovered in Kerio MailServer, which affect the webmail component. The problem occurs when handling usernames of excessive length and likely...
Kerio WebMail < 5.7.7 Multiple Vulnerabilities
The remote host is running version 5 of the Kerio MailServer. There are multiple flaws in this interface that could allow an attacker with a valid webmail account on this host to obtain a shell on this host or to perform a cross-site-scripting attack against this host with a version prior to 5.6....
Kerio MailServer 5.6.3 list Module - Overflow
Kerio MailServer 5.6.3 list Module - Overflow source: https://www.securityfocus.com/bid/7967/info Multiple buffer overrun vulnerabilities have been discovered in Kerio MailServer, which affect the webmail component. The problem occurs when handling usernames of excessive length and likely occurs...
Kerio MailServer 5.6.3 subscribe Module - Overflow
source: https://www.securityfocus.com/bid/7967/info Multiple buffer overrun vulnerabilities have been discovered in Kerio MailServer, which affect the webmail component. The problem occurs when handling usernames of excessive length and likely occurs due to insufficient bounds checking. Due to th...
Kerio MailServer 5.6.3 add_acl Module - Overflow
source: https://www.securityfocus.com/bid/7967/info Multiple buffer overrun vulnerabilities have been discovered in Kerio MailServer, which affect the webmail component. The problem occurs when handling usernames of excessive length and likely occurs due to insufficient bounds checking. Due to th...
Kerio MailServer 5.6.3 do_map Module - Overflow
source: https://www.securityfocus.com/bid/7967/info Multiple buffer overrun vulnerabilities have been discovered in Kerio MailServer, which affect the webmail component. The problem occurs when handling usernames of excessive length and likely occurs due to insufficient bounds checking. Due to th...
Dune 0.6.7 - GET Remote Buffer Overrun
Dune 0.6.7 - GET Remote Buffer Overrun // source: https://www.securityfocus.com/bid/7945/info It has been reported that Dune is vulnerable to a remote boundary condition error when handling long requests. This could allow a remote attacker to execute arbitrary code on a vulnerable system. /...
Re: Linux /bin/mail Carbon Copy Field Buffer Overrun Vulnerability
Damage Hacking Group security advisory www.dhgroup.org Linux /bin/mail Carbon Copy Field Buffer Overrun Vulnerability http://www.securityfocus.com/bid/7760 It was noted that vulnerable Linux distribs are RedHat and Slackware. I checked it on my Linux Mandrake 8.2 and it's work: satan@localhost my...
Microsoft Security Bulletin MS03-020: Cumulative Patch for Internet Explorer (818529)
-----BEGIN PGP SIGNED MESSAGE----- - - ------------------------------------------------------------------ Title: Cumulative Patch for Internet Explorer 818529 Date: 04 June 2003 Software: Microsoftr Microsoft Internet Explorerr 5.01 Microsoft Internet Explorer 5.5 Microsoft Internet Explorer 6.0...