Lucene search
K

27 matches found

0day.today
0day.today
added 2006/06/05 12:0 a.m.60 views

Linux Kernel < 2.6.16.18 (Netfilter NAT SNMP Module) Remote DoS Exploit

Exploit for linux platform in category dos / poc ======================================================================= Linux Kernel Yuri Gushin A patch review we did on the 2.6.16.17-18 Linux kernel source tree revealed a restructuring of code in the snmpparsemangle and the snmptrapdecode...

7AI score0.20561EPSS
Exploits5
exploitpack
exploitpack
added 2006/06/05 12:0 a.m.51 views

Linux Kernel 2.6.16.18 - Netfilter NAT SNMP Module Remote Denial of Service

Linux Kernel 2.6.16.18 - Netfilter NAT SNMP Module Remote Denial of Service / ecl-nf-snmpwn.c - 30/05/06 Alex Behar Yuri Gushin A patch review we did on the 2.6.16.17-18 Linux kernel source tree revealed a restructuring of code in the snmpparsemangle and the snmptrapdecode functions. After furthe...

7.8CVSS0.3AI score0.20561EPSS
Exploits5
exploitpack
exploitpack
added 2005/04/17 12:0 a.m.23 views

Microsoft Windows - Malformed IP Options Denial of Service (MS05-019)

Microsoft Windows - Malformed IP Options Denial of Service MS05-019 / ecl-winipdos.c - 16/04/05 Yuri Gushin Alex Behar This one was actually interesting, an off-by-one by our beloved M$ : When processing an IP packet with an option size 2nd byte after the option of 39, it will crash - since the...

7.3AI score
Exploits0
CVE
CVE
added 2002/03/09 5:0 a.m.55 views

CVE-2000-0891

The CVE-2000-0891 issue concerns Lotus Notes prior to 5.02 where default ECLs were permissive enough to allow arbitrary code execution when a user opens an email containing a malicious program attached to the message. The underlying cause is a misconfigured ECL that lets an attacker attach a prog...

7.5CVSS7.5AI score0.02988EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2001/01/09 12:0 a.m.5 views

PT-2001-1156 · Ibm · Lotus Notes Client

Name of the Vulnerable Software and Affected Versions: Lotus Notes Client R5 Description: The issue concerns the Extended Control List ECL feature of the Java Virtual Machine JVM in the affected software. It allows malicious web site operators to determine the existence of files on the client by...

5CVSS6.6AI score0.02886EPSS
Exploits1References4
CVE
CVE
added 2000/12/19 5:0 a.m.66 views

CVE-2000-1117

CVE-2000-1117 affects the Lotus Notes Client R5. The JVM’s Extended Control List (ECL) feature enables a timing side channel via getSystemResource to infer whether a local file exists, by comparing dialog timing when a Java applet accesses local files. An attacker using a malicious applet in the ...

5CVSS6.5AI score0.02886EPSS
Exploits1References2Affected Software1
CERT
CERT
added 2000/09/26 12:0 a.m.34 views

Notes default ECL allows execution of unsigned code

Overview Lotus Notes prior to version 5.02, had permissive ECLs that allow for the execution of malicious mail messages. Description A Notes ECL is a list consisting of a Notes Username and a set of permissions from the following list for Notes 4.6.x: Access to file system Access to current...

7.5CVSS6.9AI score0.02988EPSS
Exploits1References5
Rows per page
Query Builder