WRT120N 1.0.0.7 - Remote Stack Overflow

WRT120N 1.0.0.7 - Remote Stack Overflow !/usr/bin/env python WRT120N v1.0.0.7 stack overflow, ROP to 4-byte overwrite which clears the admin password. Craig Heffner http://www.devttys0.com 2014-02-14 import sys import urllib2 try: target = sys.argv1 except IndexError: print "Usage: %s " % sys.arg...

CVE-2013-6431

The fib6add function in net/ipv6/ip6fib.c in the Linux kernel before 3.11.5 does not properly implement error-code encoding, which allows local users to cause a denial of service NULL pointer dereference and system crash by leveraging the CAPNETADMIN capability for an IPv6 SIOCADDRT ioctl call...

CVE-2013-6431

The fib6add function in net/ipv6/ip6fib.c in the Linux kernel before 3.11.5 does not properly implement error-code encoding, which allows local users to cause a denial of service NULL pointer dereference and system crash by leveraging the CAPNETADMIN capability for an IPv6 SIOCADDRT ioctl call...

USN-2049-1: Linux kernel vulnerabilities

Miroslav Vadkerti discovered a flaw in how the permissions for network sysctls are handled in the Linux kernel. An unprivileged local user could exploit this flaw to have privileged access to files in /proc/sys/net/. CVE-2013-4270 A flaw was discovered in the Linux kernel's dm snapshot facility. ...

CVE-2012-6088

The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 does not return an error code in certain situations involving an "unparseable signature," which allows remote attackers to bypass RPM signature checks via a crafted package...

Apache HTTPD Error Code 400 httpOnly Cookie Handling Information Disclosure (CVE-2012-0053)

An information disclosure vulnerability has been reported in Apache HTTPD server...

Apache HTTPD Error Code 400 httpOnly Cookie Handling Information Disclosure - ver 2 (CVE-2012-0053)

An information disclosure vulnerability has been reported in Apache HTTPD server. The vulnerability is due to an error while creating the default HTTP 400 error page. A remote attacker can exploit this vulnerability by causing the target user's browser to send crafted HTTP requests to the...

Intuit Help System Protocol URL Heap Corruption and Memory Leak

Intuit Help System Protocol URL Heap Corruption and Memory Leak Derek Soeder [email protected] Reported to [email protected] on March 15, 2012; vendor did not respond. Reported to CERT on March 22, 2012; vendor did not respond. Responsible disclosure failed with error code 10060. Published:...

Debian DSA-2405-1 : apache2 - multiple issues

Several vulnerabilities have been found in the Apache HTTPD Server : - CVE-2011-3607 : An integer overflow in appregsub could allow local attackers to execute arbitrary code at elevated privileges via crafted .htaccess files. - CVE-2011-3368 CVE-2011-3639 CVE-2011-4317 : The Apache HTTP Server di...

OpenSSL < 0.9.8o / 1.0.0a Multiple Vulnerabilities

Binary data 5559.prm...

httpd: mod_proxy_ajp remote temporary DoS

The approxyajprequest function in modproxyajp.c in modproxyajp in the Apache HTTP Server 2.2.x before 2.2.15 does not properly handle certain situations in which a client sends no request body, which allows remote attackers to cause a denial of service backend server outage via a crafted request,...

The modified mdb to asp the consequences-vulnerability warning-the black bar safety net

by:SuperHei·Lilo May be with the network security technology development., the administrator of the qualities are on the increase, when using access+asp system, not the database being downloaded to the mdb to asp or asa. The first does not say directly change the suffix, you can directly use the...

DEBIAN-CVE-2010-0408

The approxyajprequest function in modproxyajp.c in modproxyajp in the Apache HTTP Server 2.2.x before 2.2.15 does not properly handle certain situations in which a client sends no request body, which allows remote attackers to cause a denial of service backend server outage via a crafted request,...

RoundCubeWebmail 0.2.x Cross Site Scripting

Exploit Title: RoundCube Webmail XSS Voulerability Date: 6.01.2010 Author: j4ck & Globus from elitehackers.pl Software Link: Software link : http://roundcube.net/download Version: 0.2.X , | possible voulerability in higher versions. Tested on: Code : XSS:...

Code injection

The embedded database engine service aka ovdbrun.exe in HP OpenView Network Node Manager OV NNM 7.51 and 7.53 allows remote attackers to cause a denial of service daemon crash via an invalid Error Code field in a packet...

IBM SolidDB solid.exe远程拒绝服务漏洞

BUGTRAQ ID: 37053 CVE ID: CVE-2009-3840 IBM solidDB是可实现电信级性能的关系数据库。 IBM SolidDB包含有一个内嵌式的数据库服务组件（solid.exe），该服务默认启用，在2315/tcp端口上接受远程连接。在从网络接收到报文时，服务会基于报文中所指定的出错代码编号确定并显示出错代码字符串。如果攻击者发送了带有无效出错代码编号的特制报文，就可以触发异常，强制终止服务。以下是有漏洞部分的代码段： /----- 0061611F 0FB65424 02 MOVZX EDX,BYTE PTR SS:ESP+2 00616124...

CORE-2009-1027: IBM SolidDB invalid error code vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ IBM SolidDB invalid error code vulnerability 1. Advisory Information Title: IBM SolidDB invalid error code vulnerability Advisory Id: CORE-2009-1027 Advisory URL:...

Core Security Technologies Advisory 2009.0814

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ HP Openview NNM 7.53 Invalid DB Error Code vulnerability 1. Advisory Information Title: HP Openview NNM 7.53 Invalid DB Error Code vulnerability Advisory Id:...

IBM SolidDB invalid error code vulnerability

Exploit for unknown platform in category dos / poc ============================================ IBM SolidDB invalid error code vulnerability ============================================ Title: IBM SolidDB invalid error code vulnerability CVE-ID: OSVDB-ID: Author: Core Security Published: 2009-11-...

HP Openview NNM 7.53 Invalid DB Error Code Vulnerability

Exploit for unknown platform in category dos / poc ======================================================== HP Openview NNM 7.53 Invalid DB Error Code Vulnerability ======================================================== Title: HP Openview NNM 7.53 Invalid DB Error Code Vulnerability CVE-ID:...