CVE-2007-4347

Multiple integer overflows in the Job Engine bengine.exe service in Symantec Backup Exec for Windows Servers BEWS 11d build 11.0.7170 and 11.0.6.6235 allow remote attackers to cause a denial of service CPU and memory consumption via a crafted packet to port 5633/tcp, which triggers an infinite lo...

CVE-2007-4346

The Job Engine bengine.exe service in Symantec Backup Exec for Windows Servers BEWS 11d build 11.0.7170 and 11.0.6.6235 allows remote attackers to cause a denial of service NULL dereference and service crash via a crafted packet to port 5633/tcp...

CVE-2007-4347

Multiple integer overflows in the Job Engine bengine.exe service in Symantec Backup Exec for Windows Servers BEWS 11d build 11.0.7170 and 11.0.6.6235 allow remote attackers to cause a denial of service CPU and memory consumption via a crafted packet to port 5633/tcp, which triggers an infinite lo...

Symantec Backup Exec DoS

bengine.exe TCP/5633 integer overflows and NULL pointer dereference...

Secunia Research: Symantec Backup Exec Job Engine Denial of Service

====================================================================== Secunia Research 28/11/2007 - Symantec Backup Exec Job Engine Denial of Service - ====================================================================== Table of Contents Affected...

Symantec Backup Exec for Windows Servers Denial of Service Vulnerabilities

Backup Exec for Windows Servers, a commercial backup product from Symantec, is installed on the remote host. The version of the Backup Exec Job Engine, bengine.exe, installed as part of Backup Exec for Windows Server on the remote host contains a NULL pointer dereference error when handling...

Apple QuickTime 7.2/7.3 RSTP Response Code Exec Exploit (Vista/XP)

No description provided by source. / ============================================================= Apple Quicktime Vista/XP RSTP Response Remote Code Exec ============================================================= Discovered by: h07 Author: InTeL Tested on:...

Apple QuickTime 7.2/7.3 RSTP Response Code Exec Exploit (Vista/XP)

Exploit for unknown platform in category remote exploits ================================================================== Apple QuickTime 7.2/7.3 RSTP Response Code Exec Exploit Vista/XP ================================================================== /...

EMC NetWorker Remote Exec service subcmd buffer overflow

Added: 11/09/2007 CVE: CVE-2007-3618 BID: 25375 OSVDB: 39744 Background EMC NetWorker is a centralized data backup solution. Problem A buffer overflow vulnerability in the Remote Exec service nsrexecd.exe allows remote attackers to execute arbitrary commands by sending a long, invalid subcmd to a...

EMC NetWorker Remote Exec service subcmd buffer overflow

Added: 11/09/2007 CVE: CVE-2007-3618 BID: 25375 OSVDB: 39744 Background EMC NetWorker is a centralized data backup solution. Problem A buffer overflow vulnerability in the Remote Exec service nsrexecd.exe allows remote attackers to execute arbitrary commands by sending a long, invalid subcmd to a...

EMC NetWorker Remote Exec service subcmd buffer overflow

Added: 11/09/2007 CVE: CVE-2007-3618 BID: 25375 OSVDB: 39744 Background EMC NetWorker is a centralized data backup solution. Problem A buffer overflow vulnerability in the Remote Exec service nsrexecd.exe allows remote attackers to execute arbitrary commands by sending a long, invalid subcmd to a...

EMC NetWorker Remote Exec service subcmd buffer overflow

Added: 11/09/2007 CVE: CVE-2007-3618 BID: 25375 OSVDB: 39744 Background EMC NetWorker is a centralized data backup solution. Problem A buffer overflow vulnerability in the Remote Exec service nsrexecd.exe allows remote attackers to execute arbitrary commands by sending a long, invalid subcmd to a...

CVE-2007-5549

Unspecified vulnerability in Command EXEC in Cisco IOS allows local users to bypass command restrictions and obtain sensitive information via an unspecified "variation of an IOS command" involving "two different methods", aka CSCsk16129. NOTE: as of 20071016, the only disclosure is a vague...

Stack overflow

Multiple stack-based buffer overflows in Command EXEC in Cisco IOS allow local users to gain privileges via unspecified vectors, aka 1 PSIRT-0474975756 and 2 PSIRT-0388256465. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is fr...

CVE-2007-5549

Unspecified vulnerability in Command EXEC in Cisco IOS allows local users to bypass command restrictions and obtain sensitive information via an unspecified "variation of an IOS command" involving "two different methods", aka CSCsk16129. NOTE: as of 20071016, the only disclosure is a vague...

CVE-2007-5548

Multiple stack-based buffer overflows in Command EXEC in Cisco IOS allow local users to gain privileges via unspecified vectors, aka 1 PSIRT-0474975756 and 2 PSIRT-0388256465. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is fr...

CVE-2007-5549

Cisco IOS: vulnerable component is Command EXEC that allows local users to bypass command restrictions and access sensitive information via an unspecified variation of an IOS command (two disclosed methods, CSCsk16129). The exact root cause, affected IOS versions, and remediation are not provided...

Xen pygrub TOOLS/PYGRUB/SRC/GRUBCONF.PY本地命令注入漏洞

XenSource是一款流行的虚拟化程序。 XenSource包含的'tools/pygrub/src/GrubConf.py'脚本存在输入验证，本地攻击者可以利用漏洞提升特权执行任意命令。 当启动客户域时，pygrub使用Python exec来处理来自grub.conf中的不可信数据，通过构建grub.conf文件，在客户域中的root用户可以在domain 0中执行任意python代码。 修改grub.conf文件中的'default'： default "+str0os.system" insert evil command here "+" 可导致任意命令执行。 XenSour...

Code injection

inc/exif.inc.php in Original Photo Gallery 0.11.2 and earlier allows remote attackers to execute arbitrary programs via the exifprog parameter, which is specified in an exec function call...

CVE-2007-5224

inc/exif.inc.php in Original Photo Gallery 0.11.2 and earlier allows remote attackers to execute arbitrary programs via the exifprog parameter, which is specified in an exec function call...