MS13-007: Vulnerability in Open Data Protocol Could Allow Denial of Service (2769327)

The remote Windows host is running a version of the Microsoft .NET Framework that is affected by a denial of service vulnerability in the Open Data OData protocol. An unauthenticated attacker could exploit this vulnerability by sending a specially crafted HTTP request to the affected site. C...

MS13-007: Vulnerability in Open Data Protocol could allow denial of service: January 8, 2013

Resolves a vulnerability in the Open Data Protocol OData services in the .NET Framework that could allow a Denial of Service application.View products that this article applies to.IntroductionMicrosoft has released the security bulletin MS13-007. You can view the complete security bulletin by goi...

Generic Protocol Detection

Binary data 5768.prm...

security flaw

Firefox 1.0 does not invoke the Javascript Security Manager when a user drags a javascript: or data: URL to a tab, which allows remote attackers to bypass the security model, aka "firetabbing."...

CVE-2002-0864

CVE-2002-0864 corresponds to a Microsoft RDP flaw affecting Windows XP (RDP 5.1) where a Remote Desktop PDU Confirm Active packet that omits the Pattern BLT can cause a denial of service (crash). OpenVAS entries also describe an information-disclosure risk from RDP 5.0/5.1 due to unencrypted chec...

CVE-2002-0864

The Remote Data Protocol RDP version 5.1 in Microsoft Windows XP allows remote attackers to cause a denial of service crash when Remote Desktop is enabled via a PDU Confirm Active data packet that does not set the Pattern BLT command, aka "Denial of Service in Remote Desktop."...

CVE-2002-0863

Remote Data Protocol RDP version 5.0 in Microsoft Windows 2000 and RDP 5.1 in Windows XP does not encrypt the checksums of plaintext session data, which could allow a remote attacker to determine the contents of encrypted sessions via sniffing, aka "Weak Encryption in RDP Protocol."...

CVE-2002-0864

The Remote Data Protocol RDP version 5.1 in Microsoft Windows XP allows remote attackers to cause a denial of service crash when Remote Desktop is enabled via a PDU Confirm Active data packet that does not set the Pattern BLT command, aka "Denial of Service in Remote Desktop."...

EUVD-2002-0855

Remote Data Protocol RDP version 5.0 in Microsoft Windows 2000 and RDP 5.1 in Windows XP does not encrypt the checksums of plaintext session data, which could allow a remote attacker to determine the contents of encrypted sessions via sniffing, aka "Weak Encryption in RDP Protocol."...

CVE-2002-0863

Remote Data Protocol RDP version 5.0 in Microsoft Windows 2000 and RDP 5.1 in Windows XP does not encrypt the checksums of plaintext session data, which could allow a remote attacker to determine the contents of encrypted sessions via sniffing, aka "Weak Encryption in RDP Protocol."...

CVE-2001-0014

CVE-2001-0014 affects Windows 2000 Terminal Services (Remote Data Protocol). The vulnerability arises from improper handling of certain malformed RDP packets, allowing remote attackers to cause a denial of service. The provided documents identify the affected component and DoS impact but do not s...

CVE-2001-0014

Remote Data Protocol RDP in Windows 2000 Terminal Service does not properly handle certain malformed packets, which allows remote attackers to cause a denial of service, aka the "Invalid RDP Data" vulnerability...

Security Bulletin MS01-006

---------------------------------------------------------------------- Title: Patch Available for "Invalid RDP Data" Vulnerability Date: 31 January 2001 Software: Windows 2000 Terminal Services Impact: Denial of Service Bulletin: MS01-006 KB Article: Q286132 Available Soon Microsoft encourages...

netscape.datatrack.txt

Date: Sun, 6 Jun 1999 13:17:04 +0300 From: Georgi Guninski To: [email protected] Subject: Netscape Communicator code injection in JavaScript console using "data:" protocol There is a bug in Netscape Communicator 4.6 Win95, 4.07 Linux probably all 4.x are affected, which allows sniffing URLs fr...