73 matches found
EUVD-2004-2493
Malware in sbrugna...
Malicious code in try-catch-core-2 (npm)
The package try-catch-core-2 was found to contain malicious code...
CVE-2006-7215
The Intel Core 2 Extreme processor X6800 and Core 2 Duo desktop processor E6000 and E4000 incorrectly set the memory page Access A bit for a page in certain circumstances involving proximity of the code segment limit to the end of a code page, which has unknown impact and attack vectors on certai...
OpenVMPSd <= 1.3 - Remote Format String Exploit (Multiple Targets)
No description provided by source. / gexp-openvmpsd.c OpenVMPSd v1.3 Remote Format String Exploit Copyright C 2005 Gotfault Security Bug found and developed by: barros and xgc Original Reference: http://gotfault.net/research/exploit/gexp-openvmpsd.c / include getopt.h include sys/types.h include...
Qwik SMTP 0.3 - Remote Root Format String Exploit
No description provided by source. / qwik-smtp Remote Root Exploit ------------------------------- Bug found by: Dark Eagle darkeagle at list d0t ru Exploit coded by: Carlos Barros barros at barrossecurity d0t com Home Page: http://www.barrossecurity.com Exploitation techinique: This bug is a...
Monit <= 4.2 Basic Authentication Remote Root Exploit
No description provided by source. / THE EYE ON SECURITY RESEARCH GROUP - INDIA http://www.eos-india.net/poc/305monit.c Remote Root Exploit for Monit = 4.2 Vulnerability: Buffer overflow in handling of Basic Authentication informations. Server authenticates clients through: Authentication: Basic...
Fedora Core 2 : unarj-2.63a-7 (2004-414)
A buffer overflow bug has been discovered in unarj when handling long file names contained in an archive. An attacker could create an archive with a specially crafted path which could cause unarj to crash or execute arbitrary instructions. The Common Vulnerabilities and Exposures project...
Intel Core 2 Duo T5750, Intel Atom N270 CPU cache controller bug exploit
Exploit for hardware platform in category dos / poc /---------------------------------------------------------------------------- CPU cache controller bug exploit ================================ allows you to change content of arbitrary memory cells,including the kernel memory from the user leve...
CVE-2006-7215
CVE-2006-7215 affects Intel Core 2 Extreme X6800 and Core 2 Duo E6000/E4000 processors. The issue is that memory page Access (A) bit is incorrectly set for a page in certain circumstances when the code segment limit is near the end of a code page. The impact is unclear and described as unknown; a...
Intel CORE 2处理器多个本地拒绝服务漏洞
Intel CORE 2是非常流行的双核处理器。 CORE 2处理器中存在多个拒绝服务漏洞: 如果温度达到了无效的温度,则即使已经超过了设置的阀值,CPU仍不会生成Thermal中断; 在执行一系列REP存储指令期间,存储可能会在完成指令之前便试图分派内存,导致处理器锁定和/或系统挂起; 如果一个逻辑处理器写入非脏页面(dirty page),另一个逻辑处理器写入相同的非脏页面或在相关的页面表项中明确的设置脏位,则内部处理器行为的复杂交互会导致不可预测的系统行为并挂起; 如果从Core 1请求数据导致L1缓存丢失,就会将请求发送给L2缓存。如果这个请求遇到了Core...
Intel Core 2 CPUs multiple security vulnerabilities
Multiple vulnerabilities allow application to access protected pages and corrupt data in memory...
OpenVMPSd <= 1.3 Remote Format String Exploit (Multiple Targets)
Exploit for linux platform in category remote exploits ================================================================ OpenVMPSd include include include include include include include include include include /== Prototypes ==/ void Usagechar ; void fatalchar ; int CreateEvilBufferint, int, int,...
OpenVMPSd 1.3 - Remote Format String
/ gexp-openvmpsd.c OpenVMPSd v1.3 Remote Format String Exploit Copyright C 2005 Gotfault Security Bug found and developed by: barros and xgc Original Reference: http://gotfault.net/research/exploit/gexp-openvmpsd.c / include include include include include include include include include include...
CVE-2004-2502
im-switch before 11.4-46.1 in Fedora Core 2 allows local users to overwrite arbitrary files via a symlink attack on the imswitcherPID temporary file...
CVE-2004-2502
CVE-2004-2502 : The vulnerability affects im-switch before 11.4-46.1 on Fedora Core 2, where a symlink race on the imswitcher[PID] temporary file allows a local user to overwrite arbitrary files. The root cause is a race condition involving the temporary file used by im-switcher, enabling tamperi...
XSS Vulnerability in MIVA Merchant 5 - Includes Fix
MIVA Merchant 5 is vulnerable to XSS attack. Users can use javascript to embed their own inputs into the MM5 screens and checkout pages overriding various store safeguards and functions. MIVA Corporation has been very cooperative and has already posted an update to their software entitled core-4...
Fedora Core 2 : postgresql-7.4.7-3.FC2.1 (2005-158)
Mon Feb 21 2005 Tom Lane 7.4.7-3.FC2.1 - Repair improper error message in init script when PGVERSION doesn't match. - Arrange for auto update of version embedded in init script. - Fix improper call of strerrorr, which leads to junk error messages in libpq. - Patch additional buffer overruns in...
Fedora Core 2 : krb5-1.3.6-4 (2005-269)
Updated krb5 packages which fix two buffer overflow vulnerabilities in the included Kerberos-aware telnet client are now available. Kerberos is a networked authentication system which uses a trusted third-party a KDC to authenticate clients and servers to each other. The krb5-workstation package...
Fedora Core 2 : mailman-2.1.5-10.fc2 (2005-241)
A cross-site scripting XSS flaw in the driver script of mailman prior to version 2.1.5 could allow remote attackers to execute scripts as other web users. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned the name CVE-2004-1177 to this issue. Users of mailman should upda...
Fedora Core 2 : mysql-3.23.58-16.FC2.1 (2005-305)
Sat Apr 2 2005 Tom Lane 3.23.58-16.FC2.1 - Repair uninitialized variable in security2 patch. - Enable testing on 64-bit arches; continue to exclude s390x which still has issues. - Fri Mar 18 2005 Tom Lane 3.23.58-15.FC2.1 - Backpatch repair for CVE-2005-0709, CVE-2005-0710, CVE-2005-0711...