1984 matches found
linux/x86 shared memory exec 50 bytes
No description provided by source. / [email protected] - http://www.nopninjas.com Platform: Linux x86 Length: 50 bytes - This shellcode connects to the shared memory segment matching the key and executes the code at that address. xorl %edi,%edi xorl %esi,%esi xorl %edx,%edx movl $0xdeadbeef,%ec...
Mozilla may allow violation of cross-domain scripting policies via dragging
Overview A vulnerability affecting Mozilla web browsers may allow violation of cross-domain scripting policies and possibly execute code originating from a remote source. Description Mozilla web browsers allow the dragging of links and objects from one window to another. Should the object copied ...
CVE-2004-0194
Stack-based buffer overflow in the OutputDebugString function for Adobe Acrobat Reader 5.1 allows remote attackers to execute arbitrary code via a PDF document with XML Forms Data Format XFDF data...
EUVD-2002-1451
Buffer overflow in errpt in AIX 4.3.3 allows local users to execute arbitrary code as root...
libpng: Numerous vulnerabilities
Background libpng is a standard library used to process PNG Portable Network Graphics images. It is used by several other programs, including web browsers and potentially server processes. Description libpng contains numerous vulnerabilities including null pointer dereference errors and boundary...
Mandrake Linux Security Advisory : tcpdump (MDKSA-2002:032)
Several buffer overflows were found in the tcpdump package by FreeBSD developers during a code audit, in versions prior to 3.5. However, newer versions of tcpdump, including 3.6.2, are also vulnerable to another buffer overflow in the AFS RPC decoding functions, which was discovered by Nick...
CVE-2004-0727
Microsoft Internet Explorer 6.0.2800.1106 on Microsoft Windows XP SP2, and other versions including 5.01 and 5.5, allows remote web servers to bypass zone restrictions and execute arbitrary code in the local computer zone by redirecting a function to another function with the same name, as...
CVE-2004-0579
Format string vulnerability in super before 3.23 allows local users to execute arbitrary code as root...
Gaim contains a buffer overflow vulnerability in the Extract Info Field function
Overview There is a buffer overflow vulnerability in the gaimmarkupextractinfofield function, which could allow an unauthenticated, remote attacker to cause a denial of service or execute arbitrary code. Description Gaim is a multi-protocol instant messenger client available for a number of...
CVE-2004-0238
Multiple buffer overflows in Overkill 0verkill 0.15pre3 might allow local users to execute arbitrary code in the client via a long HOME environment variable in the 1 loadcfg and 2 savecfg functions; possibly allow remote attackers to execute arbitrary code via long strings to 3 the sendmessage...
CVE-2004-0340
Stack-based buffer overflow in WFTPD Pro Server 3.21 Release 1, Pro Server 3.20 Release 2, Server 3.21 Release 1, and Server 3.10 allows local users to execute arbitrary code via long 1 LIST, 2 NLST, or 3 STAT commands...
CVE-2004-0083
Buffer overflow in ReadFontAlias from dirfile.c of XFree86 4.1.0 through 4.3.0 allows local users and remote attackers to execute arbitrary code via a font alias file font.alias with a long token, a different vulnerability than CVE-2004-0084 and CVE-2004-0106...
CVE-2004-0172
Heap-based buffer overflow in the searchforcommand function of ltrace 0.3.10, if it is installed setuid, could allow local users to execute arbitrary code via a long filename. NOTE: It is unclear whether there are any packages that install ltrace as a setuid program, so this candidate might be...
Sendmail 8.12.9 - 'Prescan()' Variant Remote Buffer Overrun
/ source: https://www.securityfocus.com/bid/8641/info Sendmail is prone to a buffer overrun vulnerability in the prescan function. This issue is different than the vulnerability described in BID 7230. This vulnerability could permit remote attackers to execute arbitrary code via vulnerable versio...
myServer 0.4.x - 'cgi-lib.dll' Remote Buffer Overflow (PoC)
source: https://www.securityfocus.com/bid/8612/info myServer has been reported prone to a remote buffer overflow vulnerability. It is possible to trigger this issue by sending overly long values for URI parameters. Although unconfirmed, this vulnerability may be potentially exploited to execute...
Tutos 1.1 - 'File_Select.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/8011/info It has been reported that Tutos does not properly handle input to the fileselect script. Because of this, an attacker may be able to execute code in the browser of another user with the privileges of the vulnerable site...
Microsoft Security Bulletin MS03-018: Cumulative Patch for Internet Information Service (811114)
-----BEGIN PGP SIGNED MESSAGE----- - - ------------------------------------------------------------------ Title: Cumulative Patch for Internet Information Service 811114 Date: 28 May 2003 Software: Microsoftr Windows NTr 4.0, Windowsr 2000, or Windowsr XP Impact: Allow an attacker to execute code...
Ifenslave 0.0.7 - Argument Local Buffer Overflow (2)
// source: https://www.securityfocus.com/bid/7682/info ifenslave for Linux has been reported prone to a buffer overflow vulnerability. The issue is reportedly due to a lack of sufficient bounds checking performed on user-supplied data before it is copied into an internal memory space. It is...
Snowblind Web Server 1.01.1 - GET Buffer Overflow
Snowblind Web Server 1.01.1 - GET Buffer Overflow source: https://www.securityfocus.com/bid/7619/info Snowblind Web Server has been reported prone to a buffer overflow vulnerability. The vulnerability exists when the web server attempts to process HTTP requests of excessive length. Although...
CVE-2002-0968
AnaloxX SimpleServer:WWW (version 1.16 and earlier) is affected by a buffer overflow that can be triggered by a long HTTP request method name, allowing a remote attacker to crash the server and potentially execute arbitrary code. OpenVAS/Nessus/NVD entries confirm a remote DoS vector and, in some...