EUVD-2007-0775

Malware in sbrugna...

EUVD-2022-33583

Malicious code in bioql PyPI...

Arbitrary Code Execution

firefox is vulnerable to arbitrary code execution.An attacker is able to execute arbitrary code on the host OS via font cache...

Design/Logic Flaw

Undertow in Red Hat wildfly before version 11.0.0.Beta1 is vulnerable to a resource exhaustion resulting in a denial of service. Undertow keeps a cache of seen HTTP headers in persistent connections. It was found that this cache can easily exploited to fill memory with garbage, up to "max-headers...

PHP168 6.0 and below the version of the vulnerability and use-vulnerability and early warning-the black bar safety net

Danger level: high X Affected versions: PHP168 6.0 the following versions Intruders can be in the user landing page to construct a special statement, the PHP word written to the cache directory, so as to obtain the use of PHP168 whole Station program website the WEBSHELL permissions. Test...

Oracle9iAS.dos.pl

-----BEGIN PGP SIGNED MESSAGE----- hiya ppl, I have made a quick script to demonstrate the Oracle DOS described in @stakes advisory: Oracle9iAS Web Cache Denial of Service please find the perl script pasted below. regards: eip/deadbeat/AnGrYSQl p.s. I did have about 10submissions but due to...

FreeBSD_DoS.txt

Resending once, since it's been 10.5 days... Here's an interesting denial-of-service attack against FreeBSD =3.0 systems. It abuses a flaw in the new' FreeBSD vfscache.c; it has no way to purge entries unless the vnode' e.g. the file they point to is removed from memory -- which generally doesn't...

netscape-cache-exploit.txt

Below is source code for the two versions of the Netscape Cache exploit that was recently discovered by Dan Brumleve , as found on his web site at http://www.shout.net/nothing/cache-cow/index.html First version , and then second version listed. -----snip----- !/usr/bin/perl cache-cow.cgi -- Dan...