20 matches found
Debian: Security Advisory (DSA-2281-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 2281-1] opie security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2281-1 [email protected] http://www.debian.org/security/ Steffen Joeris July 21, 2011 http://www.debian.org/security/faq -...
Debian DSA-2281-1 : opie - several vulnerabilities
Sebastian Krahmer discovered that opie, a system that makes it simple to use One-Time passwords in applications, is prone to a privilege escalation CVE-2011-2490 and an off-by-one error, which can lead to the execution of arbitrary code CVE-2011-2489 . Adam Zabrocki and Maksymilian Arciemowicz al...
[SECURITY] [DSA 2281-1] opie security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2281-1 [email protected] http://www.debian.org/security/ Steffen Joeris July 21, 2011 http://www.debian.org/security/faq -...
DSA-2281-1 opie - several
Bulletin has no description...
Nmap NSE net: ftp-libopie
This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Nmap NSE net: ftp-libopie
Checks if an FTPd is prone to CVE-2010-1938 OPIE off-by-one stack overflow, a vulnerability discovered by Maksymilian Arciemowicz and Adam 'pi3' Zabrocki. See the advisory at http://nmap.org/r /fbsd-sa-opie. Be advised that, if launched against a vulnerable host, this script will crash the FTPd...
Ubuntu Update for opie vulnerability USN-955-1
Ubuntu Update for Linux kernel vulnerabilities USN-955-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN9551.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for opie vulnerability USN-955-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...
ftp-libopie NSE Script
Checks if an FTPd is prone to CVE-2010-1938 OPIE off-by-one stack overflow, a vulnerability discovered by Maksymilian Arciemowicz and Adam "pi3" Zabrocki. See the advisory at . Be advised that, if launched against a vulnerable host, this script will crash the FTPd. Script Arguments vulns.short,...
FreeBSD Security Advisory (FreeBSD-SA-10:05.opie.asc)
The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-10:05.opie.asc SPDX-FileCopyrightText: 2010 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
FreeBSD OPIE实现__opiereadrec()函数单字节栈溢出漏洞
BUGTRAQ ID: 40403 CVE ID: CVE-2010-1938 FreeBSD就是一种运行在Intel平台上、可以自由使用的开放源码Unix类系统。 FreeBSD所使用的OPIE认证系统中readrec.c文件的opiereadrec函数存在单字节栈溢出漏洞,在启用了栈保护的情况下,攻击者可以远程导致使用OPIE的服务进程崩溃。以下是有漏洞的代码段: "/src/contrib/opie/opie.h" / Maximum length of a principal read: user name / define OPIEPRINCIPALMAX 32...
CVE-2010-1938
Off-by-one error in the opiereadrec function in readrec.c in libopie in OPIE 2.4.1-test1 and earlier, as used on FreeBSD 6.4 through 8.1-PRERELEASE and other platforms, allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a long username, as...
CVE-2010-1938
Off-by-one error in the opiereadrec function in readrec.c in libopie in OPIE 2.4.1-test1 and earlier, as used on FreeBSD 6.4 through 8.1-PRERELEASE and other platforms, allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a long username, as...
CVE-2010-1938
The CVE-2010-1938 issue affects OPIE’s library (libopie) used by OPIE up to version 2.4.1-test1, on FreeBSD 6.4–8.1-PRERELEASE and other platforms. The vulnerability is an off-by-one error in __opiereadrec/readrec.c that can be triggered by a long USER command to FTP servers linked against libopi...
FreeBSD Security Advisory FreeBSD-SA-10:05.opie
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-10:05.opie Security Advisory The FreeBSD Project Topic: OPIE off-by-one stack overflow Category: contrib Module: contribopie Announced: 2010-05-27 Credits:...
FreeBSD 8.0 ftpd Off-By-One Proof Of Concept
libopie readrec off-by one FreeBSD ftpd remote PoC Authors: - Maksymilian Arciemowicz - Adam 'pi3' Zabrocki http://securityreason.com/achievementsecurityalert/87 http://site.pi3.com.pl/adv/libopie-adv.txt http://blog.pi3.com.pl/?p=111 Date: - Dis.: 04.05.2010 - Pub.: 27.05.2010 CVE: CVE-2010-1938...
FreeBSD 8.0 ftpd off-by one PoC (FreeBSD-SA-10:05)
No description provided by source. FreeBSD 8.0 ftpd off-by one PoC FreeBSD-SA-10:05 CVE-2010-1938 FreeBSD-SA-10:05 Credit: Maksymilian Arciemowicz and Adam Zabrocki http://securityreason.com/achievementsecurityalert/87 http://security.freebsd.org/advisories/FreeBSD-SA-10:05.opie.asc...
FreeBSD-SA-10:05.opie
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-10:05.opie Security Advisory The FreeBSD Project Topic: OPIE off-by-one stack overflow Category: contrib Module: contribopie Announced: 2010-05-27 Credits:...
FreeBSD 8.0 - ftpd (FreeBSD-SA-10:05) Off-By-One (PoC)
FreeBSD 8.0 - ftpd FreeBSD-SA-10:05 Off-By-One PoC FreeBSD 8.0 ftpd off-by one PoC FreeBSD-SA-10:05 CVE-2010-1938 FreeBSD-SA-10:05 Credit: Maksymilian Arciemowicz and Adam Zabrocki http://securityreason.com/achievementsecurityalert/87 http://security.freebsd.org/advisories/FreeBSD-SA-10:05.opie.a...
FreeBSD 8.0 - 'ftpd' (FreeBSD-SA-10:05) Off-By-One (PoC)
FreeBSD 8.0 ftpd off-by one PoC FreeBSD-SA-10:05 CVE-2010-1938 FreeBSD-SA-10:05 Credit: Maksymilian Arciemowicz and Adam Zabrocki http://securityreason.com/achievementsecurityalert/87 http://security.freebsd.org/advisories/FreeBSD-SA-10:05.opie.asc http://blog.pi3.com.pl/?p=111 PoC: Connected to...