22 matches found
Ethereal <= 0.10.10 (SIP) Protocol Dissector Remote BoF Exploit
No description provided by source. / tetherealsip.c now quite functional Ethereal 0.10.0 to 0.10.10 SIP Dissector remote root exploit Advisory: http://www.ethereal.com/appnotes/enpa-sa-00019.html produced by Team W00dp3ck3r: frauk\x41iser mag00n s00n thorben Notes: tested on Debian Sarge Linux...
Enhanced CTorrent / dtorrent "btFiles::BuildFromMI()"缓冲区溢出漏洞
CNCAN ID:CNCAN-2009042102 Enhanced CTorrent是一款UNIX环境下的Bittorrent客户端。 Enhanced CTorrent存在缓冲区溢出,远程攻击者可以利用漏洞以应用程序权限执行任意指令。 btfiles.cpp包含的"btFiles::BuildFromMI"函数存在边界错误,诱使用户打开特殊构建的torrent文件,可导致触发基于栈的缓冲区溢出,可能以应用程序权限执行任意指令。 Enhanced CTorrent 3.x 目前没有解决方案提供: http://sourceforge.net/projects/dtorrent/...
cTorrentDTorrent - .torrent Local Buffer Overflow
cTorrentDTorrent - .torrent Local Buffer Overflow !/usr/bin/python Written By Michael Brooks 04/17/2009 Stack Based Buffer Overflow The vulnerability is in the btFiles::BuildFromMI function inside the btfiles.cpp file Exploit tested on cTorrent 1.3.4 using Debian Sarge using Linux kernel...
cTorrent/DTorrent (.Torrent File) Buffer Overflow Exploit
Exploit for linux platform in category local exploits ========================================================= cTorrent/DTorrent .Torrent File Buffer Overflow Exploit ========================================================= !/usr/bin/python Written By Michael Brooks Stack Based Buffer Overflow...
cTorrent/DTorrent Buffer Overflow
!/usr/bin/python Written By Michael Brooks 04/17/2009 Stack Based Buffer Overflow The vulnerability is in the btFiles::BuildFromMI function inside the btfiles.cpp file Exploit tested on cTorrent 1.3.4 using Debian Sarge using Linux kernel 2.4.27-3-386 Can't get the exploit working on a modern lin...
cTorrent/DTorrent - '.torrent' Local Buffer Overflow
!/usr/bin/python Written By Michael Brooks 04/17/2009 Stack Based Buffer Overflow The vulnerability is in the btFiles::BuildFromMI function inside the btfiles.cpp file Exploit tested on cTorrent 1.3.4 using Debian Sarge using Linux kernel 2.4.27-3-386 Can't get the exploit working on a modern lin...
Debian DSA-1318-1 : ekg - several vulnerabilities
Several remote vulnerabilities have been discovered in ekg, a console Gadu Gadu client. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2005-2370 It was discovered that memory alignment errors may allow remote attackers to cause a denial of service on...
DSA-1318-1 ekg
Bulletin has no description...
DSA-1287-1 ldap-account-manager
Bulletin has no description...
[SECURITY] [DSA 1282-1] New php4 packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 1282-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 26th, 2006 http://www.debian.org/security/faq -...
Apache < 1.3.37/2.0.59/2.2.3 mod_rewrite - Remote Overflow
!/bin/sh Exploit for Apache modrewrite off-by-one. Vulnerability discovered by Mark Dowd. CVE-2006-3747 by jack 2006-08-20 Thx to xuso for help me with the shellcode. I suppose that you've the "RewriteRule kung/. $1" rule if not you must recalculate adressess. Shellcode is based on Taeho Oh...
[Full-disclosure] [SECURITY] [DSA 1040-1] New gdm packages fix local root exploit
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1040-1 [email protected] http://www.debian.org/security/ Martin Schulze April 24th, 2006 http://www.debian.org/security/faq -...
[SECURITY] [DSA 987-1] New tar packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 987-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 7th, 2006 http://www.debian.org/security/faq -...
[SECURITY] [DSA 969-1] New scponly packages fix potential root vulnerability
-------------------------------------------------------------------------- Debian Security Advisory DSA 969-1 [email protected] http://www.debian.org/security/ Martin Schulze February 13th, 2006 http://www.debian.org/security/faq -...
[SECURITY] [DSA 957-2] New ImageMagick packages fix arbitrary command execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 957-2 [email protected] http://www.debian.org/security/ Martin Schulze January 31st, 2006 http://www.debian.org/security/faq -...
[SECURITY] [DSA 931-1] New xpdf packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 931-1 [email protected] http://www.debian.org/security/ Martin Schulze January 9th, 2006 http://www.debian.org/security/faq -...
[SECURITY] [DSA 761-2] New heartbeat packages fix insecure temporary files
-------------------------------------------------------------------------- Debian Security Advisory DSA 761-2 [email protected] http://www.debian.org/security/ Martin Schulze August 15th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 764-1] New cacti packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 764-1 [email protected] http://www.debian.org/security/ Martin Schulze July 21st, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 732-1] New mailutils packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 732-1 [email protected] http://www.debian.org/security/ Martin Schulze June 3rd, 2005 http://www.debian.org/security/faq -...
Ethereal <= 0.10.10 (SIP) Protocol Dissector Remote BoF Exploit
No description provided by source. / tetherealsip.c now quite functional Ethereal 0.10.0 to 0.10.10 SIP Dissector remote root exploit Advisory: http://www.ethereal.com/appnotes/enpa-sa-00019.html produced by Team W00dp3ck3r: frauk\x41iser mag00n s00n thorben Notes: tested on Debian Sarge Linux...