54 matches found
CVE-2016-7117
Use-after-free vulnerability in the sysrecvmmsg function in net/socket.c in the Linux kernel before 4.5.2 allows remote attackers to execute arbitrary code via vectors involving a recvmmsg system call that is mishandled during error processing...
CVE-2016-7117
Use-after-free vulnerability in the sysrecvmmsg function in net/socket.c in the Linux kernel before 4.5.2 allows remote attackers to execute arbitrary code via vectors involving a recvmmsg system call that is mishandled during error processing...
CVE-2016-7117
Use-after-free vulnerability in the sysrecvmmsg function in net/socket.c in the Linux kernel before 4.5.2 allows remote attackers to execute arbitrary code via vectors involving a recvmmsg system call that is mishandled during error processing...
PT-2016-4746 · Cisco · Cisco Asa
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software versions 9.0 through 9.5.1 Description: The issue is related to the mishandling of IPsec error processing, which can be exploited by remote authenticated users to cause a denial of service memory...
CVE-2006-3334
Buffer overflow in the pngdecompresschunk function in pngrutil.c in libpng before 1.2.12 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors related to "chunk error processing," possibly involving the "chunkname"...
Apache mod_wsgi privilege escalation
Invalid error processing can lead to privilege escalation...
Coppermine Photo Gallery <= 1.4.22 Remote Exploit
No description provided by source. !/usr/bin/perl Coppermine Photo Gallery = 1.4.22 Remote Exploit Need registerglobals = on and magicquotesgpc = off Based on vulnerabilities discussed at http://www.milw0rm.org/exploits/8713 Coded by girex use LWP::UserAgent; ifnot defined $ARGV0 banner; print -...
Huawei Ethernet Switches Y.1731拒绝服务漏洞
Huawei Ethernet Switches存在拒绝服务漏洞。 该漏洞是由于处理某些Y.1731报文时造成的错误,可被黑客利用来导致设备通过特制的数据包重新载入。 0 Huawei S2300 Huawei S3300 Huawei S5300 Huawei S6300 Huawei S9300 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-329625.htm...
FreeSSHd Remote Denial of Service Vulnerability
The host is running FreeSSHd and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: secpodfreesshdremotedosvuln.nasl 7044 2017-09-01 11:50:59Z teissa $ FreeSSHd Remote Denial of Service Vulnerability Authors: Sooraj KS Copyright: Copyright c 2011 SecPod,...
Rhinosoft Serv-U FTP Multiple Vulnerabilities
This host is running Serv-U FTP Server and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodservuftpservermultvuln.nasl 5122 2017-01-27 12:16:00Z teissa $ Rhinosoft Serv-U FTP Multiple Vulnerabilities Authors: Sujit Ghosal Copyright: Copyright c 2009 SecPod,...
Easily the jmp esp mode is rewritten to jmp ebx ways-vulnerability warning-the black bar safety net
Reprint: Q version of the hack overflow tutorial book To write this article, I hope to give think I like the beginner buffer overflow rookie some help, because now indeed haven't found a description of such articles. First, the description in stack overflow, our two use—jmp esp and jmp ebx; next,...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in IBM Tivoli Provisioning Manager Express allow remote attackers to inject arbitrary web script or HTML via the 1 "assess modification," 2 user-id, and other unspecified fields to the /tpmx URI; or 3 involving unspecified vectors related to "erro...
CVE-2007-6407
Multiple cross-site scripting XSS vulnerabilities in IBM Tivoli Provisioning Manager Express allow remote attackers to inject arbitrary web script or HTML via the 1 "assess modification," 2 user-id, and other unspecified fields to the /tpmx URI; or 3 involving unspecified vectors related to "erro...
CVE-2006-3334
Buffer overflow in the pngdecompresschunk function in pngrutil.c in libpng before 1.2.12 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors related to "chunk error processing," possibly involving the "chunkname"...