wetfish_pentest

sv Everything you need to build a Svelte project, powered by...

EUVD-2005-1905

Malware in sbrugna...

EUVD-2023-23474

Malicious code in bioql PyPI...

SUSE CVE-2010-2777

Stack-based buffer overflow in the IMAP server component in GroupWise Internet Agent GWIA in Novell GroupWise 7.x before 7.0 post-SP4 FTF and 8.x before 8.0 SP2 allows remote attackers to execute arbitrary code via a long mailbox name in a CREATE command...

Design/Logic Flaw

An out-of-bounds OOB memory read flaw was found in parseleasestate in the KSMBD implementation of the in-kernel samba server and CIFS in the Linux kernel. When an attacker sends the CREATE command with a malformed payload to KSMBD, due to a missing check of NameOffset in the parseleasestate...

UBUNTU-CVE-2023-1194

An out-of-bounds OOB memory read flaw was found in parseleasestate in the KSMBD implementation of the in-kernel samba server and CIFS in the Linux kernel. When an attacker sends the CREATE command with a malformed payload to KSMBD, due to a missing check of NameOffset in the parseleasestate...

CVE-2023-1194 Use-after-free in parse_lease_state()

An out-of-bounds OOB memory read flaw was found in parseleasestate in the KSMBD implementation of the in-kernel samba server and CIFS in the Linux kernel. When an attacker sends the CREATE command with a malformed payload to KSMBD, due to a missing check of NameOffset in the parseleasestate...

CVE-2023-1194

An out-of-bounds OOB memory read flaw was found in parseleasestate in the KSMBD implementation of the in-kernel samba server and CIFS in the Linux kernel. When an attacker sends the CREATE command with a malformed payload to KSMBD, due to a missing check of NameOffset in the parseleasestate...

OPC UA Monitored Item Create Request Command

...

Command injection

chef-server-api/app/controllers/clients.rb in Chef Server in Chef before 0.9.20, and 0.10.x before 0.10.6, does not require administrative privileges for creating admin clients, which allows remote authenticated users to bypass intended access restrictions by leveraging read permission for the...

Scientific Linux Security Update : xen on SL5.x i386/x86_64

It was discovered that the hypervisor's para-virtualized framebuffer PVFB backend failed to validate the frontend's framebuffer description properly. This could allow a privileged user in the unprivileged domain DomU to cause a denial of service, or, possibly, elevate privileges to the privileged...

DEBIAN-CVE-2011-2769

Tor before 0.2.2.34, when configured as a bridge, accepts the CREATE and CREATEFAST values in the Command field of a cell within an OR connection that it initiated, which allows remote relays to enumerate bridges by using these values...

Stack overflow

Stack-based buffer overflow in the IMAP server component in GroupWise Internet Agent GWIA in Novell GroupWise 7.x before 7.0 post-SP4 FTF and 8.x before 8.0 SP2 allows remote attackers to execute arbitrary code via a long mailbox name in a CREATE command...

Preemptive Protection against Novell GroupWise Internet Agent IMAP Service Stack Buffer Overflow

A buffer overflow vulnerability exists in Novell GroupWise Internet Agent, a client-server collaborative software and email system provided by Novell. The vulnerability is within the IMAP component of the GroupWise Internet Agent service and is due to a boundary error while handling provided...

CVE-2003-1470

Buffer overflow in IMAP service in MDaemon 6.7.5 and earlier allows remote authenticated users to cause a denial of service crash and execute arbitrary code via a CREATE command with a long mailbox name...

Multiple MDaemon mail server vulnerabilities

DoS on incomlete CRAM-MD4 handshake, buffer overflow on IMAP CREATE command...

Alt-N MDaemon 8.0 - IMAP Server CREATE Remote Buffer Overflow (PoC)

Alt-N MDaemon 8.0 - IMAP Server CREATE Remote Buffer Overflow PoC source: https://www.securityfocus.com/bid/14315/info Alt-N MDaemon IMAP Server is affected by a remote buffer overflow vulnerability. This issue presents itself when an attacker submits excessive data through the CREATE command...

CVE-2005-1903

Buffer overflow in the IMAP service for SPA-PRO Mail @Solomon 4.00 allows remote authenticated users to execute arbitrary code via a long CREATE command...

MDaemon IMAP Service CREATE Command Mailbox Name Handling Overflow

Binary data 1094.prm...

MDaemon IMAP Server CREATE Command Mailbox Name Handling Overflow

According to its banner, the version of MDaemon running on the remote host has a buffer overflow vulnerability in the CREATE command. A remote attacker could exploit this to execute arbitrary code, or cause a denial of service. A crash would prevent other MDaemon services SMTP, POP from running a...