10 matches found
EUVD-2008-6896
Malware in sbrugna...
CVE-2002-1831
Microsoft MSN Messenger Service 1.0 through 4.6 allows remote attackers to cause a denial of service crash via an invite request that contains hex-encoded spaces %20 in the Invitation-Cookie field...
Design/Logic Flaw
Argument injection vulnerability in Exodus 0.10 allows remote attackers to inject arbitrary command line arguments, overwrite arbitrary files, and cause a denial of service via encoded spaces in an im:// URI...
Design/Logic Flaw
Argument injection vulnerability in Exodus 0.10 allows remote attackers to inject arbitrary command line arguments, overwrite arbitrary files, and cause a denial of service via encoded spaces in an xmpp:// URI, a different vector than CVE-2008-6935 and CVE-2008-6936. NOTE: the provenance of this...
CVE-2008-6937
Argument injection vulnerability in Exodus 0.10 allows remote attackers to inject arbitrary command line arguments, overwrite arbitrary files, and cause a denial of service via encoded spaces in an xmpp:// URI, a different vector than CVE-2008-6935 and CVE-2008-6936. NOTE: the provenance of this...
CVE-2008-6935
CVE-2008-6935 concerns Exodus 0.10. The vulnerability is an argument injection flaw that allows remote attackers to craft inputs (via encoded spaces in an im:// URI) to inject arbitrary command-line arguments, overwrite arbitrary files, and trigger denial of service. Related connected records des...
PT-2006-3920 · Winscp · Winscp
Name of the Vulnerable Software and Affected Versions: WinSCP version 3.8.1 build 328 Description: The issue allows remote attackers to upload or download arbitrary files via encoded spaces and double-quote characters in a scp or sftp URI. Recommendations: For WinSCP version 3.8.1 build 328, upda...
EUVD-2002-1810
Microsoft MSN Messenger Service 1.0 through 4.6 allows remote attackers to cause a denial of service crash via an invite request that contains hex-encoded spaces %20 in the Invitation-Cookie field...
CVE-2002-1831
Microsoft MSN Messenger Service 1.0 through 4.6 allows remote attackers to cause a denial of service crash via an invite request that contains hex-encoded spaces %20 in the Invitation-Cookie field...
Microsoft MSN Messenger 1 < 4 - Malformed Invite Request Denial of Service
source: https://www.securityfocus.com/bid/4827/info Microsoft's MSN Messenger is an instant messenging client for Windows based machines, based on the Passport system. A vulnerability has been reported in some versions of MSN Messenger. Under some circumstances, it may be possible to crash the...