493 matches found
Gopherd 3.0.5 - FTP Gateway Remote Overflow
Gopherd 3.0.5 - FTP Gateway Remote Overflow / UMN gopherd2.x.x/3.x.x: remote "ftp gateway" buffer overflow. by: vade79/v9 v9 at fakehalo.deadpig.org fakehalo/realhalo three years since last audit, code is a little more secure. but, still found a few potentially exploitable situations. this exploi...
Oracle XDB FTP Service UNLOCK Buffer Overflow Exploit
Exploit for unknown platform in category remote exploits ===================================================== Oracle XDB FTP Service UNLOCK Buffer Overflow Exploit ===================================================== + vulnerabilities network level/stack based buffer overflow + special network...
Oracle XDB FTP Service - UNLOCK Buffer Overflow
Oracle XDB FTP Service - UNLOCK Buffer Overflow / Oracle XDB FTP Service UNLOCK Buffer Overflow Exploit / / David Litchfield from ngssoftware at Blackhat 2003/ / / / Original Advisory : / / http://www.blackhat.com/presentations/bh-usa-03/bh- / / us-03-litchfield-paper.pdf / include include includ...
Valve Software Half-Life 1.1 Client - Connection Routine Buffer Overflow (1)
Valve Software Half-Life 1.1 Client - Connection Routine Buffer Overflow 1 // source: https://www.securityfocus.com/bid/8299/info // Half-Life Client has been reported prone to a remotely exploitable buffer overflow condition. // The issue presents itself in the client connection routine, used by...
[EXPL] GNATS Buffer Overflow Exploit Code Released (queue-pr)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion Beyond Security in Canada Toronto-based Sunrays Technologies is now Beyond Security's representative in Canada. We welcome ISPs, system...
Qualcomm Eudora 5.2.16.0 - File Attachment Spoofing Variant
Qualcomm Eudora 5.2.16.0 - File Attachment Spoofing Variant source: https://www.securityfocus.com/bid/7653/info Eudora is reported to be prone to an issue which may allow attackers to spoof the file extension in an attachment. This may aid an attacker in enticing a user of the e-mail client into...
Qualcomm Eudora 5.2.1/6.0 - File Attachment Spoofing Variant
source: https://www.securityfocus.com/bid/7653/info Eudora is reported to be prone to an issue which may allow attackers to spoof the file extension in an attachment. This may aid an attacker in enticing a user of the e-mail client into executing malicious content. It is possible to refer to othe...
Microsoft NetMeeting 2.13.0.1 4.4.3385 - CALLTO URL Buffer Overflow (PoC)
Microsoft NetMeeting 2.13.0.1 4.4.3385 - CALLTO URL Buffer Overflow PoC source: https://www.securityfocus.com/bid/7639/info It has been reported that clicking a malformed 'callto:' URI in Internet Explorer will cause Windows 2000 systems to crash, resulting in a blue screen. This appears to be du...
Firebird 1.0 - GDS_Inet_Server Interbase Environment Variable Buffer Overflow
Firebird 1.0 - GDSInetServer Interbase Environment Variable Buffer Overflow // source: https://www.securityfocus.com/bid/7546/info Interbase is a database distributed and maintained by Borland. It is available for Unix and Linux operating systems. As Firebird is based on Borland/Inprise Interbase...
PoPToP PPTP ctrlpacket.c Negative Read Remote Overflow
The remote PPTP server has remote buffer overflow vulnerability. The problem occurs due to insufficient sanity checks when referencing user-supplied input used in various calculations. As a result, it may be possible for an attacker to trigger a condition where sensitive memory can be corrupted...
Samba 2.2.x - 'call_trans2open' Remote Buffer Overflow (1)
// source: https://www.securityfocus.com/bid/7294/info A buffer overflow vulnerability has been reported for Samba. The problem occurs when copying user-supplied data into a static buffer. By passing excessive data to an affected Samba server, it may be possible for an anonymous user to corrupt...
[email protected] Clients Buffer Overflow Exploit
Exploit for linux platform in category remote exploits ========================================= email protected Clients Buffer Overflow Exploit ========================================= / email protected exploit by zillionatsafemode.org 2003/01/07 Credits for the vulnerability go to: SkyLined...
Samba 2.2.0 - 2.2.8 trans2open Overflow (OS X)
No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...
Apache mod_ssl 2.8.7 OpenSSL - OpenFuckV2.c Remote Buffer Overflow (1)
Apache modssl 2.8.7 OpenSSL - OpenFuckV2.c Remote Buffer Overflow 1 / E-DB Note: Updated exploit https://www.exploit-db.com/exploits/47080 E-DB Note: Updating OpenFuck Exploit http://paulsec.github.io/blog/2014/04/14/updating-openfuck-exploit/ OF version r00t VERY PRIV8 spabam Compile with: gcc -...
NSFOCUS SA2003-02: Solaris lpq Stack Buffer Overflow Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 NSFOCUS Security AdvisorySA2003-02 Topic: Solaris lpq Stack Buffer Overflow Vulnerability Release Date: 2003-3-31 CVE CAN ID: CAN-2003-0091 Affected system: =================== Sun Solaris 2.5.1 SPARC/x86 Sun Solaris 2.6 SPARC/x86 Sun Solaris 7...
ESCPUtil 1.15.2 2 - Printer Name Local Buffer Overflow
source: https://www.securityfocus.com/bid/6658/info It has been reported that a buffer overflow in escputil exists. When supplied with excessively long arguments, it is possible to overwrite stack memory. escputil is reportedly installed setgid 'sys' on Mandrake Linux, so it is possible that this...
TFTPD32 Buffer Overflow Vulnerability (Long filename)
Advisory available at: http://www.securiteam.com/windowsntfocus/6C00C2061A.html TFTPD32 Buffer Overflow Vulnerability Long filename ------------------------------------------------------- SUMMARY http://tftpd32.jounin.net TFTPD32 is a Freeware TFTP server for Windows 9x/NT/XP. It provides an...
PlanetDNS PlanetWeb 1.14 - Remote Buffer Overflow
source: https://www.securityfocus.com/bid/5988/info PlanetWeb is a commercially available web server integrated with dynamic DNS services. It is distributed by PlanetDNS, and available for Microsoft Operating Systems. PlanetWeb does not properly handle long requests. Due to insufficient bounds...
Microsoft Windows XP2000NT 4.0 - Help Facility ActiveX Control Buffer Overflow
Microsoft Windows XP2000NT 4.0 - Help Facility ActiveX Control Buffer Overflow // source: https://www.securityfocus.com/bid/5874/info The ActiveX control that provides much of the functionality for the Windows Help Center contains an unchecked buffer. Successful exploitation could result in...
HP Tru64 UNIX "chfn" contains buffer overflow (SSRT2259)
Overview The HP Tru64 UNIX implementation of "chfn" contains a locally exploitable buffer overflow. Description A locally exploitable buffer overflow in "chfn" may permit a local attacker to gain elevated privileges and execute arbitrary code on a vulnerable host. --- Impact A local user may be...