1049 matches found
Debian DSA-393-1 : openssl - denial of service
Dr. Stephen Henson , using a test suite provided by NISCC , discovered a number of errors in the OpenSSL ASN1 code. Combined with an error that causes the OpenSSL code to parse client certificates even when it should not, these errors can cause a denial of service DoS condition on a system using...
Cart32 Input Validation Flaw in 'GetLatestBuilds?cart32=' Permits Remote Cross-Site Scripting Attacks
Indonesia Security Development Team Advisory Cart32 Input Validation Flaw in 'GetLatestBuilds?cart32=' Permits Remote Cross-Site Scripting Attacks ====================================================================================================== Advisory Name: Cart32 Input Validation Flaw in...
[NT] Buffer Overflow Vulnerability in Dr. Web
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion In the US? Contact Beyond Security at our new California office housewarming rates on automated network vulnerability scanning. We also...
Dr.Web 4.x - Virus Scanner Folder Name Buffer Overflow (PoC)
Dr.Web 4.x - Virus Scanner Folder Name Buffer Overflow PoC source: https://www.securityfocus.com/bid/7022/info A buffer overflow vulnerability has been reported for Dr. Web virus scanner. The vulnerability is due to insufficient bounds checking when processing folder names. An attacker is able to...
CVE-2001-0373
Technical details about CVE-2001-0373 are not publicly provided in the supplied documents; only the general description is present. Monitor for updates.
CVE-2001-0373
The default configuration of the Dr. Watson program in Windows NT and Windows 2000 generates user.dmp crash dump files with world-readable permissions, which could allow a local user to gain access to sensitive information...
CVE-2001-0373
The default configuration of the Dr. Watson program in Windows NT and Windows 2000 generates user.dmp crash dump files with world-readable permissions, which could allow a local user to gain access to sensitive information...
Netscape Enterprise Server 3.6 SP2/FastTrack Server 2.0.1 - GET
source: https://www.securityfocus.com/bid/1024/info A GET request containing over 4080 characters will cause the httpd.exe process to crash within Netscape Enterprise Server 3.6, resulting in a Dr. Watson error. Arbitrary code can be executed remotely at this point. Netscape Enterprise Server 3.5...
Update Rollup 3 for System Center 2022 Data Protection Manager
None None...