security flaw

Various routines for the ppc64 architecture on Linux kernel 2.6 prior to 2.6.2 and 2.4 prior to 2.4.24 do not use the copyfromuser function when copying data from userspace to kernelspace, which crosses security boundaries and allows local users to cause a denial of service...

DEBIAN-CVE-2003-0967

raddecode in FreeRADIUS 0.9.2 and earlier allows remote attackers to cause a denial of service crash via a short RADIUS string attribute with a tag, which causes memcpy to be called with a -1 length argument, as demonstrated using the Tunnel-Password attribute...

Remote Linux Kernel < 2.4.21 DoS in XDR routine.

Hello all, I have discovered a signed/unsigned issue in a routine responsible for demarshalling XDR data for NFSv3 procedure calls. As far as I can tell, this bug has existed since NFSv3 support was integrated. It has been silently fixed in 2.4.21. The bug is in the decodefh routine of...

Internet Explorer buffer overflow

Buffer overflow on copying HR tag with oversized align to clipboard...

RedHat 9.0 Slackware 8.1 - binmail Carbon Copy Field Buffer Overrun

RedHat 9.0 Slackware 8.1 - binmail Carbon Copy Field Buffer Overrun source: https://www.securityfocus.com/bid/7760/info A vulnerability has been discovered in the Linux /bin/mail utility. The problem occurs when processing excessive data within the carbon copy field. Due to insufficient bounds...

truegalerie.txt

Informations : °°°°°°°°°°°°°° Language : PHP Website : http://www.truelogik.net Version : 1.0 Problems : - Admin Access - File Copy PHP Code/Location : °°°°°°°°°°°°°°°°°°° verifadmin.php, checkadmin.php : ------------------------------------------------------------------------ "; echo ""; echo...

FreeBSD-SA-03:05.xdr

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-03:05.xdr Security Advisory The FreeBSD Project Topic: remote denial-of-service in XDR encoder/decoder Category: core Module: libc Announced: 2003-03-20 Credits:...

DEBIAN-CVE-2002-1368

Common Unix Printing System CUPS 1.1.14 through 1.1.17 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code by causing negative arguments to be fed into memcpy calls via HTTP requests with 1 a negative Content-Length value or 2 a negative length in a...

DEBIAN-CVE-2002-1350

The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial of service application crash...

Unixware/Open Unix rcp DoS

rcp of /prog causes system to hang...

CVE-2002-1016

Adobe eBook Reader allows a user to bypass restrictions for copy, print, lend, and give operations by backing up key data files, performing the operations, and restoring the original data files...

CVE-2002-1016

CVE-2002-1016 concerns the Adobe eBook Reader. Local users can bypass DRM restrictions on copy, print, lend, and give operations by backing up key data files, performing the operations, and restoring the originals. The root cause is how the DRM-enabled workflow handles key data files, enabling ci...

UoW IMAPd Server 10.23412.264 - Remote Buffer Overflow

UoW IMAPd Server 10.23412.264 - Remote Buffer Overflow // source: https://www.securityfocus.com/bid/1110/info A buffer overflow exists in imapd. The vulnerability exists in the list command. By supplying a long, well-crafted string as the second argument to the list command, it becomes possible t...

CVE-2002-0773

The CVE-2002-0773 entry describes a vulnerability in imp_rootdir.asp for Hosting Controller that enables remote attackers to copy or delete arbitrary files and directories by issuing a direct request to imp_rootdir.asp and altering parameters (1) ftp, (2) owwwPath, and (3) oftpPath). Affected sof...

Microsoft SQL Server 2000 - Password Encrypt procedure Buffer Overflow

Microsoft SQL Server 2000 - Password Encrypt procedure Buffer Overflow source: https://www.securityfocus.com/bid/5014/info A buffer overflow vulnerability has been reported in SQL Server 2000. The vunerability is a result of an unchecked buffer when using the password encrypt procedure. This...

Microsoft SQL Server 2000 - Password Encrypt procedure Buffer Overflow

source: https://www.securityfocus.com/bid/5014/info A buffer overflow vulnerability has been reported in SQL Server 2000. The vunerability is a result of an unchecked buffer when using the password encrypt procedure. This procedure is used by administrators to provides support for the storage of...

QNX RTOS 6.1 - 'PKG-Installer' Local Buffer Overflow

/ source: https://www.securityfocus.com/bid/4918/info It has been reported that the pkg-installer utility for QNX is vulnerable to a buffer overflow condition. The vulnerability is a result of an unbounded string copy of the argument to the "-U" commandline option of pkg-installer to a local...

CVE-2001-1541

Buffer overflow in Unix-to-Unix Copy Protocol UUCP in BSDI BSD/OS 3.0 through 4.2 allows local users to execute arbitrary code via a long command line argument...

ActivePerl 5.6.1 - perlIIS.dll Remote Buffer Overflow (1)

ActivePerl 5.6.1 - perlIIS.dll Remote Buffer Overflow 1 // source: https://www.securityfocus.com/bid/3526/info ActivePerl is an implementation of the Perl scripting language for Microsoft Windows systems developed by Activestate. ActivePerl allows for high-performance integration with IIS using a...

Progress Database vulnerabilities

strcpy and pstcopy dbutpstcopy are BAD!@@!$! you need to make use of strncpy or invent pstncopy This is straight from the unix man pages for strcpy NAME strcpy, strncpy - copy a string SYNOPSIS include string.h char strcpychar dest, const char src; BUGS If the destination string of a strcpy is no...