HP-UX Security patch : PHCO_10028

The remote host is missing HP-UX Security Patch number PHCO10028 . Security Vulnerability in swinstall command %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid16890;...

HP-UX Security patch : PHCO_11185

The remote host is missing HP-UX Security Patch number PHCO11185 . Security Vulnerability in swinstall command %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid17114;...

HP-UX PHCO_22274 : HPSBUX0010-127 Sec. Vulnerability in bdf(1) + df(1) commands (rev.2)

s700800 11.00 bdf1M cumulative patch : bdf1m and df1m have misuse potential. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHCO22274. The text itself is copyright C Hewlett-Packard Development Company, L.P...

HP-UX Security patch : PHCO_23089

The remote host is missing HP-UX Security Patch number PHCO23089 . Sec. Vulnerability in man1 command %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid17124; scriptversion"1.7";...

AWStats 6.2-6.1 configdir Command Injection

No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

CVE-2004-1013

The argument parser of the FETCH command in Cyrus IMAP Server 2.2.x through 2.2.8 allows remote authenticated users to execute arbitrary code via certain commands such as 1 "bodyp", 2 "binaryp", or 3 "binaryp" that cause an index increment error that leads to an out-of-bounds memory corruption...

CVE-2004-1781

Info Touch Surfnet kiosk allows local users to crash Surfnet and access the underlying operating system via the CMDCREDITCARDCHARGE command...

CVE-2004-1848

Ipswitch WSFTP Server 4.0.2 allows remote attackers to cause a denial of service disk consumption and bypass file size restrictions via a REST command with a large size argument, followed by a STOR of a smaller file...

GLSA-200411-33 : TWiki: Arbitrary command execution

The remote host is affected by the vulnerability described in GLSA-200411-33 TWiki: Arbitrary command execution The TWiki search function, which uses a shell command executed via the Perl backtick operator, does not properly escape shell metacharacters in the user-provided search string. Impact :...

AbilityServer buffer overflow

Buffer overflow in STRO command...

CVE-2004-1627

Buffer overflow in Ability Server 2.25, 2.32, 2.34, and possibly other versions, allows remote attackers to execute arbitrary code via a long APPE command...

Titan FTP Server - Long Command Heap Overflow

/ ----------------------------------------------------------------------- titanftp.c - TiTan FTP Server Long Command Heap Overflow PoC Exploit Copyright C 2000-2004 HUC All Rights Reserved. Author : lion : lion cnhonker net : www cnhonker com Date : 2004-08-30...

How to crash a harddisk - the Ipswitch WS_FTP Server way

Advisory Name: How to crash a harddisk - the Ipswitch WSFTP Server way Impact : Denial of Service Discovered by: Hugh Mann [email protected] Tested progs : Ipswitch WSFTP Server 4.0.2.EVAL Description It's possible for any user with write access to a directory, even when there's a limit to how...

RhinoSoft Serv-U FTPd Server 3/4 - MDTM Command Stack Overflow (1)

// source: https://www.securityfocus.com/bid/9483/info RhinoSoft Serv-U FTP Server is reportedly prone to a buffer overflow. The issue exists when a 'site chmod' command is issued on a non-existant file. If an excessively long filename is specified for the command, an internal buffer will be...

PostgreSQL VACUUM command allows unprivileged user to remove database transaction log data

Overview The PostgreSQL VACUUM command contains a vulnerability that allows an unprivileged user to remove database transaction log data. This may result in unrecoverable data loss. Description PostgreSQL is a database management system. The PostgreSQL VACUUM command is used to clean out records...

CesarFTP v0.99g CPU OverLoad [Proof of concept]

Description : FTP server CesarFTP v0.99g has a security hole in the command CWD. This command allow somebody to rise up the CPU usage with the following command : USER user PASS pass CWD ..................per 10000.... The CPU utilisation will be equal to 100, the connection will not responding...

Atrium Software Mercur MailServer 3.3/4.0/4.2 - IMAP AUTH Remote Buffer Overflow

source: https://www.securityfocus.com/bid/8861/info A problem has been reported in MERCUR Mailserver when handling the IMAP AUTH command. The issue occurs when an overly long command is submitted, which may be due to a buffer overrun. This problem may make it possible for an attacker to gain...

Top 1.x/2.0 - 'HOME Environment' Local Buffer Overflow

// source: https://www.securityfocus.com/bid/8239/info A buffer overflow condition has been reported in top when handling environment variables of excessive length. This may result in an attacker potentially executing arbitrary code. / UHAGr CONFIDENTIAL SOURCE - DO NOT DISTRIBUTE Local...

wzdftpd remote DoS

Title: wzdftpd remote DoS Affected: wzdftpd = 0.1rc4 URL: http://www.wzdftpd.net Risk: High Exploitable: Yes Remote: Yes Date: June, 27 2003 Overview: "A portable, modular and efficient ftp server, supporting SSL, winsock, multithreaded, modules ,externals scripts. unix-like permissions+acls,...

Monkey HTTP Daemon (monkeyd) PostMethod() Function Remote Overflow

The version of Monkey web server that you are running is vulnerable to a buffer overflow on a POST command with too much data. It is possible to make this web server crash or execute arbitrary code. C Tenable Network Security, Inc. Ref: From: "Matthew Murphy" To: "BugTraq" Subject: Monkey HTTPd...