CVE-2007-1876

CVE-2007-1876 affects VMware Workstation prior to 5.5.4. In a 64-bit Windows guest on a 64-bit host, debugging a local program and stepping into a syscall instruction could corrupt the virtual machine’s register context, leading to system instability or VM/process failures. The issue is described...

RHEL 4 : gdb (RHSA-2007:0229)

The remote Redhat Enterprise Linux 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2007:0229 advisory. GDB, the GNU debugger, allows debugging of programs written in C, C++, and other languages by executing them in a controlled fashion and then printin...

IDA Pro debugger unauthorized access

Remote debugging request is executed regrdless of authentication state...

PHP 4 - Userland ZVAL Reference Counter Overflow (PoC)

PHP 4 - Userland ZVAL Reference Counter Overflow PoC Refcount drops down to 0...

Fedora Core 5 : kernel-2.6.19-1.2288.fc5 (2007-225)

CVE-2006-0007: The key serial number collision avoidance code in the keyallocserial function in Linux kernel 2.6.9 up to 2.6.20 allows remote attackers to cause a denial of service crash via vectors that trigger a null dereference, as originally reported as 'spinlock CPU recursion.' Major rebase ...

Design/Logic Flaw

Unspecified vulnerability in the "Show debugging information" feature in MoinMoin 1.5.7 allows remote attackers to obtain sensitive information. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

Multiple QNX security vulnerabilites

Unprivileged user can debug suid applications. Clipboard is world accessible...

MOAB-01-01-2007: Apple Quicktime rtsp URL Handler Stack-based Buffer Overflow

Summary The following description of the software is provided by vendor Apple: QuickTime 7 makes the future of video crystal clear with new features including user-friendly controls and pristine H.264 video. Upgrade to QuickTime 7 Pro and capture your own movies, then share them with friends and...

MOAB-02-01-2007: VLC Media Player udp:// Format String Vulnerability

Summary The following description of the software is provided by vendor VideoLAN: VideoLAN is a software project, which produces free software for video, released under the GNU General Public License. The main product is the cross-platform VLC media player. The VLC media player is a highly portab...

MOAB-16-01-2007: Multiple Colloquy IRC Format String Vulnerabilities

Summary Traditionally, chat clients on the Mac have been anything but glamorous. Colloquy is an advanced IRC & SILC client which aims to fill this void. By adhering to Mac OS X interface conventions, Colloquy has the look and feel of a quality Mac application. By making a common mistake the...

Fedora Core 6 : kernel-2.6.19-1.2895.fc6 (2007-058)

This is a large rebase to the latest upstream stable kernel 2.6.19.2 Complete changelogs available at www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.19 www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.19.1 www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.19.2 This update also introduces...

Private Wire Gateway Buffer Overflow

This exploits a buffer overflow in the ADMCREG.EXE used in the PrivateWire Online Registration Facility. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework This file may only be distributed as part of the Metasploit...

Do-it-yourself unlock phone password-vulnerability warning-the black bar safety net

Crash This bar is estimated to be debugging the used,with caution,some crashes only under the battery. 9 9 9 89 2 6 6 display the receiving channel number and received signal strength; 9 9 9 87 8 6 display the contents of the boot time and the boot to the current a long time. Press-after displayi...

DSA-1184-2 kernel-source-2.6.8 - several vulnerabilities

Bulletin has no description...

CVE-2006-4939

backup/backupscheduled.php in Moodle before 1.6.2 generates trace data with the full backup pathname even when debugging is disabled, which might allow attackers to obtain the pathname...

CVE-2006-4939

backup/backupscheduled.php in Moodle before 1.6.2 generates trace data with the full backup pathname even when debugging is disabled, which might allow attackers to obtain the pathname...

DEBIAN-CVE-2006-4679

DokuWiki before 2006-03-09c enables the debug feature by default, which allows remote attackers to obtain sensitive information by calling doku.php with the X-DOKUWIKI-DO HTTP header set to "debug"...

DEBIAN-CVE-2006-4146

Buffer overflow in the 1 DWARF dwarfread.c and 2 DWARF2 dwarf2read.c debugging code in GNU Debugger GDB 6.5 allows user-assisted attackers, or restricted users, to execute arbitrary code via a crafted file with a location block DWFORMblock that contains a large number of operations...

CVE-2006-4146

Buffer overflow in the 1 DWARF dwarfread.c and 2 DWARF2 dwarf2read.c debugging code in GNU Debugger GDB 6.5 allows user-assisted attackers, or restricted users, to execute arbitrary code via a crafted file with a location block DWFORMblock that contains a large number of operations...

CVE-2006-4146

CVE-2006-4146 describes a buffer overflow in GDB 6.5 affecting the DWARF and DWARF2 debugging code (dwarfread.c and dwarf2read.c). A crafted file with a DW_FORM_block containing a large number of operations can allow user‑assisted or restricted users to execute arbitrary code. The issue arises fr...