Immunity Canvas: NGINX_CHUNK

Name| nginxchunk ---|--- CVE| cve-2013-2028 Exploit Pack| CANVAS Description| Nginx Chunked Encoding Exploit Notes| CVE Name: cve-2013-2028 VENDOR: Nginx Repeatability: The repeatability of this exploit depends on the number of nginx worker processes configured in conf/nginx.conf; the default is ...

tomcat: Limited DoS in chunked transfer encoding input filter

Apache Tomcat 6.x before 6.0.37 and 7.x before 7.0.30 does not properly handle chunk extensions in chunked transfer coding, which allows remote attackers to cause a denial of service by streaming data...

Google Chrome Multiple Vulnerabilities-01 (Dec 2012) - Linux

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Google Chrome Multiple Vulnerabilities-01 (Dec 2012) - Windows

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Google Chrome < 23.0.1271.91 Multiple Vulnerabilities

Binary data 800964.prm...

Google Chrome < 23.0.1271.91 Multiple Vulnerabilities

The version of Google Chrome installed on the remote host is earlier than 23.0.1271.91 and is, therefore, affected by the following vulnerabilities : - An out-of-bounds read error exists related to 'Skia'. CVE-2012-5130 - An unspecified error exists related to chunked encoding that can result in...

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 156567 High CVE-2012-5133: Use-after-free in SVG filters. Credit to miaubiz. 148638 Medium CVE-2012-5130: Out-of-bounds read in Skia. Credit to Atte Kettunen of OUSPG. 155711 Low CVE-2012-5132: Browser crash with chunked encoding. Credit to Attila Szász. 158249 Hi...

openSUSE Security Update : java-1_6_0-openjdk (openSUSE-SU-2010:0957-1)

Icedtea included in java-160-openjdk was updated to version 1.7.5/1.8.2/1.9.1 to fix several security issues : - S6914943, CVE-2009-3555: TLS: MITM attacks via session renegotiation - S6559775, CVE-2010-3568: OpenJDK Deserialization Race condition - S6891766, CVE-2010-3554: OpenJDK corba reflecti...

openSUSE Security Update : java-1_6_0-openjdk (openSUSE-SU-2010:0957-1)

Icedtea included in java-160-openjdk was updated to version 1.7.5/1.8.2/1.9.1 to fix several security issues : - S6914943, CVE-2009-3555: TLS: MITM attacks via session renegotiation - S6559775, CVE-2010-3568: OpenJDK Deserialization Race condition - S6891766, CVE-2010-3554: OpenJDK corba reflecti...

OpenJDK HttpURLConnection request splitting (6952017)

Unspecified vulnerability in the Networking component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.227, and 1.3.128 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the...

Apache (Windows x86) - Chunked Encoding (Metasploit)

$Id: apachechunked.rb 9719 2010-07-07 17:38:59Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

CVE-2010-1866

The dechunk filter in PHP 5.3 through 5.3.2, when decoding an HTTP chunked encoding stream, allows context-dependent attackers to cause a denial of service crash and possibly trigger memory corruption via a negative chunk size, which bypasses a signed comparison, related to an integer overflow in...

CVE-2010-1866

CVE-2010-1866 concerns the PHP dechunk filter in PHP 5.3 through 5.3.2. When decoding HTTP chunked encoding streams, a negative chunk size can bypass signed comparisons due to an integer overflow in the chunk size decoder, enabling a context-dependent DoS and potentially memory corruption. Public...

CVE-2010-1866

The dechunk filter in PHP 5.3 through 5.3.2, when decoding an HTTP chunked encoding stream, allows context-dependent attackers to cause a denial of service crash and possibly trigger memory corruption via a negative chunk size, which bypasses a signed comparison, related to an integer overflow in...

PT-2010-3492 · Php · Php

Name of the Vulnerable Software and Affected Versions: PHP versions 5.3 through 5.3.2 Description: The issue allows context-dependent attackers to cause a denial of service crash and possibly trigger memory corruption via a negative chunk size, which bypasses a signed comparison, related to an...

iDefense Security Advisory 02.01.10: RealNetworks RealPlayer 11 HTTP Chunked Encoding Integer Overflow Vulnerability

iDefense Security Advisory 02.01.10 http://labs.idefense.com/intelligence/vulnerabilities/ Feb 01, 2010 I. BACKGROUND RealPlayer is an application for playing various media formats, developed by RealNetworks Inc. Since late 2003, Real Player has been based on the open-source Helix Player. More...

Apache mod_proxy模块HTTP分块编码整数溢出漏洞

BUGTRAQ ID: 37966 CVECAN ID: CVE-2010-0010 Apache HTTP Server是一款流行的Web服务器。 Apache服务器的modproxy模块在执行字符类型转换时存在最终可导致堆溢出的整数溢出漏洞。以下是有漏洞的代码段： "./src/modules/proxy/proxyutil.c" long int approxysendfbBUFF f, requestrec r, cachereq c, offt len, int nowrite, int chunked, sizet recvbuffersize ... sizet...

Apache mod_proxy integer overflow

Integer overflow leading to heap overflow on server reply chunked encoding parsing...

Microsoft IIS ISAPI FrontPage fp30reg.dll Chunked Overflow

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Microsoft II...

Wireshark chunked_encoding_dissector Function DOS

Wireshark crash when dissecting an HTTP chunked response. Versions affected: 0.99.5 Bug 1394 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Wireshark chunkedencodingdissector Function DOS',...