War FTP Daemon CWD/MKD Buffer Overflow

The version of the War FTP Daemon running on this host is vulnerable to a buffer overflow attack. This is due to improper bounds checking within the code that handles both the CWD and MKD commands. SPDX-FileCopyrightText: 2003 Digital Defense Inc. Some text descriptions might be excerpted from a...

CVE-2005-2100

The rwvm function in usercopy.c in the 4GB split patch for the Linux kernel in Red Hat Enterprise Linux 4 does not perform proper bounds checking, which allows local users to cause a denial of service crash...

CVE-2005-2100

CVE-2005-2100 is defined in the 4GB split patch of the Linux kernel for Red Hat Enterprise Linux 4; the rw_vm function in usercopy.c lacks proper bounds checking, enabling a local attacker to cause a denial of service (crash). Publicly linked advisories (RHSA-2005:514 and CentOS/CESA-2005:514) co...

uw-imap: Remote buffer overflow

Background uw-imap is the University of Washington's IMAP and POP server daemons. Description Improper bounds checking of user supplied data while parsing IMAP mailbox names can lead to overflowing the stack buffer. Impact Successful exploitation requires an authenticated IMAP user to request a...

security flaw

The rwvm function in usercopy.c in the 4GB split patch for the Linux kernel in Red Hat Enterprise Linux 4 does not perform proper bounds checking, which allows local users to cause a denial of service crash...

Mandrake Linux Security Advisory : cups (MDKSA-2005:138-1)

A vulnerability was discovered in the CUPS printing package where when processing a PDF file, bounds checking was not correctly performed on some fields. As a result, this could cause the pdtops filter to crash. Update : The patch to correct this problem was not properly applied to the Mandriva...

security flaw

Multiple "range checking flaws" in the ISO9660 filesystem handler in Linux 2.6.11 and earlier may allow attackers to cause a denial of service or corrupt memory via a crafted filesystem...

WebAdmin <= 2.0.4 USER Buffer Overflow Exploit

Exploit for unknown platform in category remote exploits ============================================== WebAdmin 'Alt-N WebAdmin USER Buffer Overflow', 'Version' = '$Revision: 1.1 $', 'Authors' = 'y0 at w00t-shell.net', , 'Arch' = 'x86' , 'OS' = 'win32', 'winnt', 'win2000', 'winxp', 'win2003' ,...

CVE-2005-2695

Unspecified vulnerability in the SSL certificate checking functionality in Cisco CiscoWorks Management Center for IDS Sensors IDSMC 2.0 and 2.1, and Monitoring Center for Security Security Monitor or Secmon 1.1 through 2.0 and 2.1, allows remote attackers to spoof a Cisco Intrusion Detection Sens...

CVE-2005-2695

Technical details (affected components, root cause, impact, or remediation) are not publicly available in the provided documents. Monitor for updates to CVE-2005-2695 in the included records (NVD/CVE/CVELIST) for new information.

qnx-inputtrap.txt

rfdslabs security advisory Title: QNX inputtrap arbitrary file read vulnerability RLSA01-2005 Versions: QNX RTOS 6.3, 6.1.0 possibly others Vendor: http://www.qnx.com Date: Feb 22 2005 Author: Julio Cesar Fort 1. Introduction inputtrap is a utility designed to detect and start input manager in QN...

ZipTorrent1.3.7.3.txt

/================================================================ ZipTorrent 1.3.7.3 Local Proxy Password Disclosure Exploit by Kozan Discovered & Coded by Kozan Credits to ATmaCA Web: www.spyinstructors.com Mail: [email protected] Application: -------------------- ZipTorrent 1.3.7.3 and...

Hauri antivirus directory traversal

Directory traversal during archive antiviral checking...

RHEL 4 : cups (RHSA-2005:706)

The remote Redhat Enterprise Linux 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2005:706 advisory. The Common UNIX Printing System CUPS provides a portable printing layer for UNIXR operating systems. When processing a PDF file, bounds checking was n...

Important: Red Hat Security Advisory: cups security update

Updated CUPS packages that fix a security issue are now available for Red Hat Enterprise Linux. This update has been rated as having important security impact by the Red Hat Security Response Team. The Common UNIX Printing System CUPS provides a portable printing layer for UNIXR operating systems...

PhpList Sql Injection and Path Disclosure

----------------------------------------- PhpList Sql Injection and Path Disclosure ----------------------------------------- Vulnerabilities --------------- 1 There is an sql injection in the id parameter of publichtml/lists/admin/?page=admin&id=INJECT HERE 2 Because of the heavy use of classes...

Beehive Forum Multiple Vulnerabilities

-------------------------------------- Beehive Forum Multiple Vulnerabilities -------------------------------------- Beehive Forum is affected by sql injection, xss, and path disclosure. Vulnerabilities --------------- 1 The $GET "webtag" parameter is on almost every page of the product and is...

security flaw

The native implementations of InstallTrigger and other functions in Firefox before 1.0.3 and Mozilla Suite before 1.7.7 do not properly verify the types of objects being accessed, which causes the Javascript interpreter to continue execution at the wrong memory address, which may allow attackers ...

devfs -- ruleset bypass

Problem description Due to insufficient parameter checking of the node type during device creation, any user can expose hidden device nodes on devfs mounted file systems within their jail. Device nodes will be created in the jail with their normal default access permissions. Impact Jailed process...

FreeBSD : xpdf -- makeFileKey2() buffer overflow vulnerability (f755545e-6fcd-11d9-abec-00061bd2d56f)

An iDEFENSE Security Advisory reports : Remote exploitation of a buffer overflow vulnerability in the xpdf PDF viewer included in multiple Unix and Linux distributions could allow for arbitrary code execution as the user viewing a PDF file. The vulnerability specifically exists due to insufficien...