CVE-2004-0189

The "%xx" URL decoding function in Squid 2.5STABLE4 and earlier allows remote attackers to bypass urlregex ACLs via a URL with a NULL "%00" character, which causes Squid to use only a portion of the requested URL when comparing it against the access control lists...

Immunity Canvas: MS04_007

Name| ms04007 ---|--- CVE| CVE-2003-0818 Exploit Pack| CANVAS Description| ASN.1 bitstring decoding exploit Notes| References: http://www.eeye.com/html/Research/Advisories/AD20040210-2.html CVE Name: CVE-2003-0818 VENDOR: Microsoft MSADV: MS04-007 Repeatability: Single shot Date public: Not publi...

squid ACL bypass due to URL decoding bug

From the Squid advisory: Squid versions 2.5.STABLE4 and earlier contain a bug in the "%xx" URL decoding function. It may insert a NUL character into decoded URLs, which may allow users to bypass urlregex ACLs...

DEBIAN-CVE-2004-0057

The rawprint function in the ISAKMP decoding routines print-isakmp.c for tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service segmentation fault via malformed ISAKMP packets that cause invalid "len" or "loc" values to be used in a loop, a different vulnerability than...

tcpdump contains vulnerability in ISAKMP decoding routine

Overview tcpdump contains a vulnerability in the way it decodes Internet Security Association and Key Management Protocol ISAKMP packets. Description tcpdump is a widely-used network sniffer that is capable of decoding ISAKMP packets. A vulnerability exists in the way tcpdump parses specially...

tcpdump contains vulnerability in ISAKMP decoding function rawprint() in print-isakmp.c

Overview tcpdump contains a vulnerability in the way it parses Internet Security Association and Key Management Protocol ISAKMP packets. Description tcpdump is a widely-used network sniffer that is capable of decoding ISAKMP packets. A vulnerability exists in the way the tcpdump rawprint function...

Moderate: Red Hat Security Advisory: tcpdump security update

Updated tcpdump, libpcap, and arpwatch packages fix vulnerabilities in ISAKMP and RADIUS parsing. Updated 15 Jan 2004 Updated the text description to better describe the vulnerabilities found by Jonathan Heusser and give them CVE names. Tcpdump is a command-line tool for monitoring network traffi...

OpenSSL does not securely handle invalid public key when configured to ignore errors

Overview A vulnerability in the way OpenSSL handles invalid public keys in client certificate messages could allow a remote attacker to cause a denial of service. This vulnerability requires as a precondition that an application is configured to ignore public key decoding errors, which is typical...

CVE-2003-0576

Unknown vulnerability in the NFS daemon nfsd in SGI IRIX 6.5.19f and earlier allows remote attackers to cause a denial of service kernel panic via certain packets that cause XDR decoding errors, a different vulnerability than CVE-2003-0619...

CVE-2003-0576

Unknown vulnerability in the NFS daemon nfsd in SGI IRIX 6.5.19f and earlier allows remote attackers to cause a denial of service kernel panic via certain packets that cause XDR decoding errors, a different vulnerability than CVE-2003-0619...

CVE-2003-0576

CVE-2003-0576 is a remote DoS in SGI IRIX 6.5.x via the NFS daemon (nfsd) stemming from XDR decoding errors that cause kernel panics. The SGI advisory (CAN-2003-0576) states IRIX 6.5.19f and earlier are affected and recommends upgrading to IRIX 6.5.20 or applying the listed patches. The connected...

Denial of Service Vulnerability in NFS on IRIX

-----BEGIN PGP SIGNED MESSAGE----- SGI Security Advisory Title : Denial of Service Vulnerability in NFS XDR decoding Number : 20030801-01-P Date : August 13, 2003 Reference: CVE 2003-0576 Reference: SGI BUG 894659 Fixed in : IRIX 6.5.20 or patches 5229, 5230, 5240, 5241, 5227, 5228 SGI provides...

MIT Kerberos V5 ASN.1 decoder fails to perform bounds checking on data element length fields

Overview The MIT Kerberos V5 implementation contains an ASN.1 decoding flaw that may allow remote attackers to crash affected Kerberos applications. Description Kerberos V5 protocol messages are defined using Abstract Syntax Notation One ASN.1, a formal language that allows protocol specification...

DEBIAN-CVE-2002-1350

The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial of service application crash...

CVE-2002-1350

The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial of service application crash...

CVE-2002-1350

The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial of service application crash...

[SECURITY] [DSA-206-1] tcpdump BGP decoding error

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-206-1 [email protected] http://www.debian.org/security/ Wichert Akkerman December 10, 2002 -...

[SECURITY] [DSA-206-1] tcpdump BGP decoding error

------------------------------------------------------------------------ Debian Security Advisory DSA-206-1 [email protected] http://www.debian.org/security/ Wichert Akkerman December 10, 2002 - ------------------------------------------------------------------------ Package : tcpdump Problem...

DSA-206 tcpdump - denial of service

Bulletin has no description...

Exploitable pine heap overflow (Re: Remote pine Denial of Service)

Dear Linus Sjberg, There is a classic and probably exploitable heap overflow in bldaddr.c addrliststring. else char charset = NULL; list = char fsgetsizetestsizeadrlist; list0 = '0'; rfc822writeaddressdecodelist, adrlist, verbose ? NULL : &charset, doquote; ifcharset fsgivevoid &charset; estsize...