159 matches found
SQL Injection in Sexy Polling Joomla Extension
High-Tech Bridge Security Research Lab discovered vulnerability in Sexy Polling Joomla Extension, which can be exploited to perform SQL Injection attacks. 1 SQL Injection in Sexy Polling Joomla Extension: CVE-2013-7219 The vulnerability exists due to insufficient validation of "answerid" HTTP POS...
InspIRCd buffer overflow
Buffer overflow on DNS request processing...
ISC BIND Crafted ANY Request Response Multiple RRsets DoS
The version of BIND installed on the remote host suggests that it suffers from a denial of service vulnerability that could be triggered by sending a large volume of recursive queries that return multiple RRsets in the answer section, triggering assertion checks. To be vulnerable you need to have...
CVE-2011-1922
daemon/worker.c in Unbound 1.x before 1.4.10, when debugging functionality and the interface-automatic option are enabled, allows remote attackers to cause a denial of service assertion failure and daemon exit via a crafted DNS request that triggers improper error handling...
CVE-2010-0362
Affected product/versions: Zeus Web Server before 4.3r5. Root cause: failure to use random DNS transaction IDs for DNS requests, which can enable remote attackers to spoof DNS responses. Impact (as stated): DNS spoofing potential. Exploitation details: not provided in the connected documents. Rem...
NSD version Directive Remote Version Disclosure
The remote host is running Name Server Daemon NSD, an open source DNS server. It is possible to extract the version number of the remote installation by sending a special DNS request for the text 'version.bind' in the domain 'chaos'. C Tenable Network Security, Inc. include"compat.inc"; if...
Perl Net::DNS package multiple security vulnerabilities
Weak DNS ID generation allows response spoofing, DoS on parsing DNS request...
Apple Mac OS X Bonjour mDNSResponder buffer overflow
Buffer overflow on malformed DNS request parsing...
dproxy DNS proxy buffer overflow
Buffer overflow on oversized DNS request UDP packet UDP/53...
rPSA-2007-0021-1 bind bind-utils
rPath Security Advisory: 2007-0021-1 Published: 2007-01-25 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Remote Deterministic Denial of Service Updated Versions: bind=/conary.rpath.com@rpl:devel//1/9.3.4-0.1-1 bind-utils=/conary.rpath.com@rpl:devel//1/9.3.4-0.1-1 Reference...
CVE-2006-4518
Qbik WinGate 6.1.4 and earlier allows remote attackers to cause a denial of service CPU consumption via a DNS request with a self-referencing compressed name pointer, which triggers an infinite loop...
CVE-2006-4518
Qbik WinGate 6.1.4 and earlier allows remote attackers to cause a denial of service CPU consumption via a DNS request with a self-referencing compressed name pointer, which triggers an infinite loop...
CVE-2006-4518
CVE-2006-4518 affects Qbik WinGate 6.1.4 and earlier. The vulnerability arises in processing DNS requests with compressed name pointers: a self-referencing pointer can trigger an infinite loop, causing the WinGate proxy to consume 100% of CPU and effectively deny service. Exploitation is unauthen...
iDefense Security Advisory 11.26.06: Qbik WinGate Compressed Name Pointer Denial of Service Vulnerability
Qbik WinGate Compressed Name Pointer Denial of Service Vulnerability iDefense Security Advisory 11.26.06 http://labs.idefense.com/intelligence/vulnerabilities/ Nov 26, 2006 I. BACKGROUND Qbik WinGate is an Internet gateway and communications server. It includes functionality related to efficientl...
Microsoft Windows connection sharing DoS
NULL-pointer dereference on DNS request proxying in Microsoft Windows NAT Helper...
Multiple FAST360 Appliance security vulnerabilities
DNS requiest processing DoS, HTTP filtering bypass...
RHEL 2.1 / 3 : libxml (RHSA-2004:650)
An updated libxml package that fixes multiple buffer overflows is now available. Updated 24 May 2005 Multilib packages have been added to this advisory The libxml package contains a library for manipulating XML files. Multiple buffer overflow bugs have been found in libxml versions prior to 2.6.1...
Moderate: Red Hat Security Advisory: libxml security update
An updated libxml package that fixes multiple buffer overflows is now available. Updated 24 May 2005 Multilib packages have been added to this advisory The libxml package contains a library for manipulating XML files. Multiple buffer overflow bugs have been found in libxml versions prior to 2.6.1...
Moderate: Red Hat Security Advisory: libxml2 security update
An updated libxml2 package that fixes multiple buffer overflows is now available. libxml2 is a library for manipulating XML files. Multiple buffer overflow bugs have been found in libxml2 versions prior to 2.6.14. If an attacker can trick a user into passing a specially crafted FTP URL or FTP pro...