ZipCentral 4.01 - '.ZIP' File Handling Local Buffer Overflow

/ ZipCentral 4.01 Exploit by bratax http://www.bratax.be/ Soooooo many thanks to BuzzDee and c0rrupt for helping me with all the problems I encountered : Wouldn't have finished this without you guys! Greetz to everyone I like... no, that doesn't include you turb00! Some technical info: -...

Important: Red Hat Security Advisory: perl security update

Updated Perl packages that fix security a security issue are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. Perl is a high-level programming language commonly used for system administration...

Low: Red Hat Security Advisory: openssh security update

Updated openssh packages that fix bugs in sshd are now available for Red Hat Enterprise Linux 3. This update has been rated as having low security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol implementation. This package includes the core files...

CentOS 3 / 4 : sysreport (CESA-2005:502)

An updated sysreport package that fixes an information disclosure flaw is now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team Sysreport is a utility that gathers information about a system's hardware and configuration. The information...

MyBulletinBoard (MyBB) 1.1.3 - Remote Code Execution

MyBulletinBoard MyBB 1.1.3 - Remote Code Execution !/usr/bin/perl Tue Jun 13 12:37:12 CEST 2006 [email protected] Exploit HOWTO - read this before flood my Inbox you bitch! - First you need to create the special user to do this use: ./mybibi.pl --host=http://www.example.com --dir=/mybb -1 this st...

MyBulletinBoard (MyBB) < 1.1.3 Remote Code Execution Exploit

Exploit for unknown platform in category web applications ============================================================ MyBulletinBoard MyBB 1.1.3 Remote Code Execution Exploit ============================================================ !/usr/bin/perl Tue Jun 13 12:37:12 CEST 2006 email protected...

Format string

Format string vulnerability in ANSI C Sender Policy Framework library libspf before 1.0.0-p5, when debugging is enabled, allows remote attackers to execute arbitrary code via format string specifiers, possibly in an e-mail address...

CVE-2006-1520

Format string vulnerability in ANSI C Sender Policy Framework library libspf before 1.0.0-p5, when debugging is enabled, allows remote attackers to execute arbitrary code via format string specifiers, possibly in an e-mail address...

CVE-2006-1520

Format string vulnerability in ANSI C Sender Policy Framework library libspf before 1.0.0-p5, when debugging is enabled, allows remote attackers to execute arbitrary code via format string specifiers, possibly in an e-mail address...

CVE-2006-1520

CVE-2006-1520 affects libspf before 1.0.0-p5. When debugging is enabled, it allows remote attackers to execute arbitrary code via format string specifiers, possibly in an e-mail address. Impact: remote code execution. A fix is available in libspf 1.0.0-p5 or later; upgrade to mitigate.

portmap 5 Beta - &#039;Set/Dump&#039; Local Denial of Service

///////////////////////////////////// // portmap Set+Dump Local DoS - PoC //////////////////////////////////// // // Federico L. Bossi Bonin // fbossiatnetcommdotcomdotar //////////////////////////////////// // Tested on Linux with version 5 // USE DEBUGGING MODE ///////////////////// // gdb...

Code injection

choosenewparent in Linux kernel before 2.6.11.12 includes certain debugging code, which allows local users to cause a denial of service panic by causing certain circumstances involving termination of a parent process...

CVE-2006-1855

choosenewparent in Linux kernel before 2.6.11.12 includes certain debugging code, which allows local users to cause a denial of service panic by causing certain circumstances involving termination of a parent process...

Ubuntu 5.04 / 5.10 : linux-source-2.6.10, linux-source-2.6.12 vulnerabilities (USN-281-1)

The sysmbind function did not properly verify the validity of the 'maxnod' argument. A local user could exploit this to trigger a buffer overflow, which caused a kernel crash. CVE-2006-0557 The SELinux module did not correctly handle the tracer SID when a process was already being traced. A local...

Multiple Linux kernel security vulnerabilities

sysmbind buffer overflow, SELinux module DoS, /sys filesystem DoS, amd64 debugging race conditions DoS, getsockopt kernel memory content leak, iprouteinput DoS...

CVE-2003-0885

Xscreensaver 4.14 contains certain debugging code that should have been omitted, which causes Xscreensaver to create temporary files insecurely in the 1 apple2, 2 xanalogtv, and 3 pong screensavers, and allows local users to overwrite arbitrary files via a symlink attack...

Fedora Core 4 : kernel-2.6.15-1.1831_FC4 (2006-102)

This update fixes a remotely exploitable denial of service attack in the icmp networking code CVE-2006-0454. An information leak has also been fixed CVE-2006-0095, and some debugging patches that had accidentally been left applied in the previous update have been removed, restoring the...

FrontPage fp30reg.dll remote debug buffer overflow

Added: 01/30/2006 CVE: CVE-2003-0822 BID: 9007 OSVDB: 2952 Background Microsoft FrontPage Server Extensions includes a remote debugging function. Problem A buffer overflow in fp30reg.dll leads to a vulnerability in the remote debug function in FrontPage Server Extensions. A remote attacker could...

Authentication flaw

Advantage Century Telecommunication ACT P202S IP Phone 1.01.21 running firmware 1.1.21 has multiple undocumented ports available, which 1 might allow remote attackers to obtain sensitive information, such as memory contents and internal operating-system data, by directly accessing the VxWorks WDB...

CVE-2006-0374

Advantage Century Telecommunication ACT P202S IP Phone 1.01.21 running firmware 1.1.21 has multiple undocumented ports available, which 1 might allow remote attackers to obtain sensitive information, such as memory contents and internal operating-system data, by directly accessing the VxWorks WDB...