CVE-2005-2086

PHP remote file inclusion vulnerability in viewtopic.php in phpBB 2.0.15 and earlier allows remote attackers to execute arbitrary PHP code...

CVE-2005-0073

Buffer overflow in queue.c in a support script for sympa 3.3.3, when running setuid, allows local users to execute arbitrary code...

CVE-2001-1448

CVE-2001-1448 affects Magic eDeveloper Enterprise Edition 8.30-5 and earlier. The vulnerability arises from local file overwrites and potential code execution via a symlink attack on temporary files created by the scripts (1) mkuserproc, (2) mgrnt, and (3) mgdatasrvr.sc. The described impact is l...

security flaw

PostgreSQL pgsql 7.4.x, 7.2.x, and other versions allows local users to load arbitrary shared libraries and execute code via the LOAD extension...

CVE-2004-1448

Jetbox One 2.0.8 and possibly other versions allow remote attackers with Author privileges in the IMAGES module to upload PHP files and execute arbitrary code...

CVE-2005-0117

Buffer overflow in XShisen before 1.36 allows local users to execute arbitrary code via a long GECOS field...

CVE-2004-0852

Buffer overflow in htget 0.93 allows remote attackers to execute arbitrary code via a crafted URL...

CVE-2004-1208

Buffer overflow in Orbz 2.10 and earlier allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a long password field in a join request...

Debian DSA-260-1 : file - buffer overflow

iDEFENSE discovered a buffer overflow vulnerability in the ELF format parsing of the 'file' command, one which can be used to execute arbitrary code with the privileges of the user running the command. The vulnerability can be exploited by crafting a special ELF binary which is then input to file...

linux/x86 shared memory exec 50 bytes

No description provided by source. / [email protected] - http://www.nopninjas.com Platform: Linux x86 Length: 50 bytes - This shellcode connects to the shared memory segment matching the key and executes the code at that address. xorl %edi,%edi xorl %esi,%esi xorl %edx,%edx movl $0xdeadbeef,%ec...

Mozilla may allow violation of cross-domain scripting policies via dragging

Overview A vulnerability affecting Mozilla web browsers may allow violation of cross-domain scripting policies and possibly execute code originating from a remote source. Description Mozilla web browsers allow the dragging of links and objects from one window to another. Should the object copied ...

CVE-2004-0194

Stack-based buffer overflow in the OutputDebugString function for Adobe Acrobat Reader 5.1 allows remote attackers to execute arbitrary code via a PDF document with XML Forms Data Format XFDF data...

EUVD-2002-1451

Buffer overflow in errpt in AIX 4.3.3 allows local users to execute arbitrary code as root...

libpng: Numerous vulnerabilities

Background libpng is a standard library used to process PNG Portable Network Graphics images. It is used by several other programs, including web browsers and potentially server processes. Description libpng contains numerous vulnerabilities including null pointer dereference errors and boundary...

Mandrake Linux Security Advisory : tcpdump (MDKSA-2002:032)

Several buffer overflows were found in the tcpdump package by FreeBSD developers during a code audit, in versions prior to 3.5. However, newer versions of tcpdump, including 3.6.2, are also vulnerable to another buffer overflow in the AFS RPC decoding functions, which was discovered by Nick...

CVE-2004-0727

Microsoft Internet Explorer 6.0.2800.1106 on Microsoft Windows XP SP2, and other versions including 5.01 and 5.5, allows remote web servers to bypass zone restrictions and execute arbitrary code in the local computer zone by redirecting a function to another function with the same name, as...

CVE-2004-0579

Format string vulnerability in super before 3.23 allows local users to execute arbitrary code as root...

Gaim contains a buffer overflow vulnerability in the Extract Info Field function

Overview There is a buffer overflow vulnerability in the gaimmarkupextractinfofield function, which could allow an unauthenticated, remote attacker to cause a denial of service or execute arbitrary code. Description Gaim is a multi-protocol instant messenger client available for a number of...

CVE-2004-0238

Multiple buffer overflows in Overkill 0verkill 0.15pre3 might allow local users to execute arbitrary code in the client via a long HOME environment variable in the 1 loadcfg and 2 savecfg functions; possibly allow remote attackers to execute arbitrary code via long strings to 3 the sendmessage...

CVE-2004-0340

Stack-based buffer overflow in WFTPD Pro Server 3.21 Release 1, Pro Server 3.20 Release 2, Server 3.21 Release 1, and Server 3.10 allows local users to execute arbitrary code via long 1 LIST, 2 NLST, or 3 STAT commands...