CVE-2006-6404

INNOVATION Data Processing FDR/UPSTREAM 3.3.0 GA Oct 2003 allows remote attackers to cause a denial of service service outage via a sequence of TCP SYN packets to many ports, as demonstrated using nmap. NOTE: the vendor's testing reportedly found that no denial of service occurred...

CVE-2006-6404

The CVE-2006-6404 entry concerns INNOVATION Data Processing FDR/UPSTREAM 3.3.0. A DoS vulnerability is described: remote attackers could cause service outages by sending a sequence of TCP SYN packets to many ports (demonstrated with nmap). The description notes vendor testing reportedly found no ...

RHEL 3 / 4 / 5 : java-1.4.2-ibm (RHSA-2008:0132)

Updated java-1.4.2-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 4 Extras, and 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team. IBM's 1.4.2 SR10 Java release includes the IBM...

irssi off-by-one buffer overflow

Off-by-one overflow on server data processing...

Non Compliant IBM DB2 TCP

IBM DB2 Database is a relational database management system that consists of a set of services that work together to provide data processing functionalities.IBM DB2 Protections use the Distributed Relational Database Architecture DRDA standard...

Amaya (id) Remote Stack Overflow Vulnerability

W3C Amaya 10.1 Web Browser Amaya id Remote Stack Overflow Vulnerability Written and discovered by: r0ut3r writ3r at gmail.com / www.bmgsec.com.au Advisory: http://www.bmgsec.com.au/advisory/41/ ------------------------------------------------------ Shellcode notes: The application fails to...

OpenLDAP slapd DoS

Crash on ASR.1 BER data processing...

Code injection

Unspecified vulnerability in the JAX-WS client and service in Sun Java Runtime Environment JRE in JDK and JRE 6 Update 6 and earlier allows remote attackers to access URLs or cause a denial of service via unknown vectors involving "processing of XML data" by a trusted application...

CVE-2008-3106

Unspecified vulnerability in Sun Java Runtime Environment JRE in JDK and JRE 6 Update 6 and earlier and JDK and JRE 5.0 Update 15 and earlier allows remote attackers to access URLs via unknown vectors involving processing of XML data by an untrusted 1 application or 2 applet, a different...

Fedora 8 : libvorbis-1.2.0-2.fc8 (2008-3934)

Will Drewry of the Google Security Team reported several flaws in the way libvorbis processed audio data. An attacker could create a carefully crafted OGG audio file in such a way that it could cause an application linked with libvorbis to crash, or execute arbitrary code when it was opened...

Microsoft Security Bulletin MS08-024 - Critical Cumulative Security Update for Internet Explorer (947864)

Microsoft Security Bulletin MS08-024 - Critical Cumulative Security Update for Internet Explorer 947864 Published: April 8, 2008 Version: 1.0 General Information Executive Summary This security update resolves one privately reported vulnerability. The vulnerability could allow remote code executi...

Moderate: Red Hat Security Advisory: java-1.4.2-bea security update

Updated java-1.4.2-bea packages that correct several security issues and add enhancements are now available for Red Hat Enterprise Linux 3 Extras, Red Hat Enterprise Linux 4 Extras, and Red Hat Enterprise Linux 5 Supplementary. This update has been rated as having moderate security impact by the...

X-pad guestbook there is a great security-vulnerability warning-the black bar safety net

This program can search http://www. baidu. com/baidu? wd=x-pad&cl=3x-pad the keywords.。 On this guestbook, I found a modified version of the drawing: "Based on the text of the php guestbook,easy to install,powerful,good safety,the appearance of custom is strong,is a very useful guest book,...

Safari 3.0.3 (522.15.5) Buffer overflow

Azizov E. azizov at itdefence dot ru email concealed 1. At processing of data, which has more than 65474 bytes in size, occurs buffer overflow. POC: html body script var maxbuf = 65474; buff = "A"; for i=0;imaxbuf;i++ buff = buff+"A"; document.location.hash = buff+"BOW! ";...

MiMMS媒体流处理远程栈溢出漏洞

MiMMS是一款使用MMS协议下载并保存流媒体的程序。 MiMMS在处理畸形的数据时，远程攻击者可能利用此漏洞在用用户机器上执行任意指令。 MiMMS的getheader和getmediapacket函数在从服务器读取数据时存在栈溢出漏洞。如果用户受骗连接到了恶意的服务器的话，就会触发这个漏洞，导致执行任意代码。 xine xine-lib 1.1.0 xine xine-lib 1.0.1 xine xine-lib 1.0 MiMMS MiMMS 0.0.9 厂商补丁： Gentoo ------ Gentoo已经为此发布了一个安全公告（GLSA-200607-07）以及相应补丁:...

Links_ ELinks smbclient - Remote Command Execution

Links ELinks smbclient - Remote Command Execution source: https://www.securityfocus.com/bid/21082/info Links and ELinks are prone to a remote command-execution vulnerability because the applications fail to properly process website data containing 'smb' commands. An attacker can exploit this issu...

PlanetFileServer mshftp.dll Data Processing Remote Overflow

The remote host appears to be running PlanetFileServer, an FTP server for Windows from PlanetDNS. The installed version of PlanetFileServer is vulnerable to a buffer overflow when processing large commands. An unauthenticated attacker can trigger this flaw to crash the service or execute arbitrar...

RealPlayer Skin File Handling Buffer Overflow

Binary data 2381.prm...

Heimdal ftpd/tnftpd/lukemftpd signal handling race conditions

Problem with OOB data processing...

Mantis Cross-Site Request Forgery Vulnerabilities

Binary data 4506.prm...