MS Windows COM Structured Storage Local Exploit (MS05-012)

Exploit for unknown platform in category local exploits ========================================================== MS Windows COM Structured Storage Local Exploit MS05-012 ========================================================== // by Cesar Cerrudo - Argeniss - www.argeniss.com // MS05-012 - CO...

OllyDbg debugger format string bug

Format string bug on application debugging...

CVE-2004-2024

The distribution of Zen Cart 1.1.4 before patch 2 includes certain debugging code in the Admin password retrieval functionality, which allows attackers to gain administrative privileges via passwordforgotten.php...

CVE-2004-2024

Zen Cart 1.1.4 prior to patch 2 contains debugging code in the Admin password retrieval path (password_forgotten.php) that can enable attackers to gain administrative privileges. The connected records confirm the product/version and the root cause as debugging code in the admin password recovery ...

SurgeFTP FTP server DoS

Developers left debugging LEAK command, that opens large number of file descriptors...

-==PVDasm Long Name Debug Vulnerability==-

/ -------------------------------------------------------- Neo Security Team NST® - Advisory 10 - 19/03/05 -------------------------------------------------------- Program: PVDasm Homepage: http://pvdasm.reverse-engineering.net/ Vulnerable Versions: v1.6b & lowers Risk: Medium!! Impact: Long Name...

PostScript Utilities - psnup Argument Buffer Overflow

Exploit for linux platform in category local exploits ===================================================== PostScript Utilities - psnup Argument Buffer Overflow ===================================================== !/usr/bin/perl PostScript Utilities - psnup all the utilities of the package are...

OllyDbg long process Module debug Vulnerability

Vendor: Oleh Yuschuk Application: OllyDbg http://home.t-online.de/home/Ollydbg/ Introduction: OllyDbg is a 32-bit assembler level analysing debugger for Microsoft® Windows®. Emphasis on binary code analysis makes it particularly useful in cases where source is unavailable. Affected Versions: 1.10...

Important: Red Hat Security Advisory: perl security update

Updated Perl packages that fix several security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team Perl is a high-level programming language commonly used for system administration utilities...

AwStats <= 6.4 Denial Of Service (with Advisory)

No description provided by source. !/usr/bin/perl Summarized the advisory www.ghc.ru GHC: /str0ke 0 Exploitable example raw log plugin: Attacker can read sensitive information http://server/cgi-bin/awstats-6.4/awstats.pl?pluginmode=rawlog&loadplugin=rawlog 1 Perl code execution. This script...

Cisco 'tech-support' Anonymous User Debugging Information Disclosure

Binary data 2497.prm...

CVE-2004-2024

The distribution of Zen Cart 1.1.4 before patch 2 includes certain debugging code in the Admin password retrieval functionality, which allows attackers to gain administrative privileges via passwordforgotten.php...

Netware screensaver protection bypass

By using debugging features it's possible to terminate screensaver process from console...

DEBIAN-CVE-2004-0777

Format string vulnerability in the authdebug function in Courier-IMAP 1.6.0 through 2.2.1 and 3.x through 3.0.3, when login debugging DEBUGLOGIN is enabled, allows remote attackers to execute arbitrary code...

multi-gnome-terminal information leak

Keystrokes are logged to user's home in debugging mode...

multi-gnome-terminal: Information leak

Background multi-gnome-terminal is an enhanced terminal emulator that is derived from gnome-terminal. Description multi-gnome-terminal contains debugging code that has been known to output active keystrokes to a potentially unsafe location. Output has been seen to show up in the '.xsession-errors...

GLSA-200409-10 : multi-gnome-terminal: Information leak

The remote host is affected by the vulnerability described in GLSA-200409-10 multi-gnome-terminal: Information leak multi-gnome-terminal contains debugging code that has been known to output active keystrokes to a potentially unsafe location. Output has been seen to show up in the...

CVE-2004-0777

Format string vulnerability in the authdebug function in Courier-IMAP 1.6.0 through 2.2.1 and 3.x through 3.0.3, when login debugging DEBUGLOGIN is enabled, allows remote attackers to execute arbitrary code...

Courier-imap debugging format string

Pre-authentication format string bug in debugging function...

Ошибка переполнения буффера в aGsm версии 2.35c и в последней developer-версии (beta)...

Доброго времени суток! Мною обнаружена ошибка переполнения буффера и вероятно возможность удалённого исполнения вредоносного кода в последних версиях aGsm. Заключается она в следующем: При обработке ответа от Half-Life серверов, aGsm, как выяснилось, не проверяет длинну строки hostname, а копируе...