161 matches found
CVE-2003-0939
eo420GetStringFromVarPart in veo420.c for SAP database server SAP DB 7.4.03.27 and earlier may allow remote attackers to execute arbitrary code via a connect packet with a 256 byte segment to the niserver aka serv.exe process on TCP port 7269, which prevents the server from NULL terminating the...
IBM DB2 - 'db2start' Command Line Argument Local Overflow
source: https://www.securityfocus.com/bid/8990/info IBM DB2 has been reported to be prone to multiple buffer overflow vulnerabilities that present themselves in binaries that are shipped with DB2. The vulnerabilities are likely caused due to a lack of sufficient boundary checks performed on user...
[OpenPKG-SA-2003.047] OpenPKG Security Advisory (postgresql)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 OpenPKG Security Advisory The OpenPKG Project http://www.openpkg.org/security.html http://www.openpkg.org [email protected] [email protected] OpenPKG-SA-2003.047 30-Oct-2003 Package: postgresql Vulnerability: remote code execution OpenPKG...
ProFTPD fails to properly handle newline characters when transferring files in ASCII mode
Overview ProFTPD is a popular free File Transfer Protocol FTP server package. A vulnerability in its handling of files transferred in ASCII mode can allow an attacker to compromise the system running the server. Description The File Transfer Protocol FTP described in RFC959 defines operations for...
CVE-2003-0694
The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c...
Tellurian TftpdNT 1.8/2.0 - 'Filename' Buffer Overrun
source: https://www.securityfocus.com/bid/8505/info A vulnerability has been discovered in Tellurian TftpdNT that could allow a remote attacker to execute arbitrary code. The problem likely occurs due to insufficient bounds checking when handling user-supplied filenames. As a result, it may be...
University of Minnesota Gopherd 2.0.x/2.3/3.0.x - FTP Gateway Buffer Overflow
// source: https://www.securityfocus.com/bid/8167/info It has been reported that the FTP gateway component within the gopherd server is prone to a buffer overflow vulnerability. This vulnerability may be present due to a failure to perform bounds checking when processing long filenames returned...
mod_ntlm for Apache Multiple Remote Vulnerabilities
The remote host seems to be running modntlm, a NTLM authentication module for Apache. This version of modntlm has a buffer overflow and a format string vulnerability. A remote attacker could exploit these issues to execute arbitrary code. C Tenable Network Security, Inc. include"compat.inc"; if...
CVE-2003-0128
The tryuudecoding function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a malicious uuencoded UUE header, possibly triggering a heap-based buffer overflow...
moxftp.txt
I. BACKGROUND According to the vendor moxftp is a "Ftp shell under X Window System". /usr/ports/ftp/moxftp II. DESCRIPTION Insufficient bounds checking leads to execution of arbitrary code. III. ANALYSIS Upon parsing the '220 welcome to server' ftp banner a buffer can be overrun, allowing us to...
[EXPL] RealServer 8 Remote Buffer Overflow Vulnerability (Exploit, SETUP, RTSP)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion Beyond Security would like to welcome Tiscali World Online to our service provider team. For more info on their service offering IP-Secure,...
[Global InterSec 2002012101] DeleGate Application Proxy - Multiple Vulnerabilities
-------------------------------------------------------------------------- Global InterSec LLC http://www.globalintersec.com -------------------------------------------------------------------------- GIS Advisory ID: 2002012101 Changed: 07/02/2002 Author: [email protected] Reference:...
ActivePerl perlIS.dll Remote Buffer Overflow
An attacker can run arbitrary code on the remote computer. This is because the remote IIS server is running a version of ActivePerl prior to 5.6.1.630 and has the Check that file exists option disabled for the perlIS.dll. %NASLMINLEVEL 70300 This script was written by Drew Hintz http://guh.nu It ...
MDBms 0.96/0.99 - Query Display Buffer Overflow
source: https://www.securityfocus.com/bid/2867/info MDBMS is a free relational database management system. A buffer overflow condition exists in MDBMS. By issuing the '\s' command to display the query buffer when it contains a large amount of data, it may be possible for a remote user to trigger...
FreeBSD-SA-01:35.licq
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:35 Security Advisory FreeBSD, Inc. Topic: licq contains multiple remote vulnerabilities Category: ports Module: licq Announced: 2001-04-23 Credits: Stan Bubrouski Affects...
ISSalert: Internet Security Systems Security Alert: Remote Vulnerabilities in BIND versions 4 and 8
Internet Security Systems Security Alert January 29, 2001 Remote Vulnerabilities in BIND versions 4 and 8 Synopsis: ISS X-Force is aware of several vulnerabilities in current versions of Internet Software Consortiums Berkeley Internet Name Domain BIND. There is a buffer overflow present in BIND...
[PkC] Advisory #003: micq-0.4.6 remote buffer overflow
/ pkc003.txt / -= SECURITY ADVISORY 003 =- | www.pkcrew.org / | / | | | | | / | | | | | / | | | | / | | / / | | | / | | | | | PkC | | | / | | | | | | || || || / Packet Knights Crew -= SECURITY ADVISORY 003 =- - Vulnerable program: micq-0.4.6 Matt's ICQ clone. Maybe others. - Tested on: Linux/ix86...
Дырки в tcpdump
Переполнения буфера позволяют удаленное выполнение приложений от root...
CVE-2000-1082
The xpenumresultset function in SQL Server and Microsoft SQL Server Desktop Engine MSDE does not properly restrict the length of a buffer before calling the srvparaminfo function in the SQL Server API for Extended Stored Procedures XP, which allows an attacker to cause a denial of service or...
FreeBSD-SA-00:80.halflifeserver
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:80 Security Advisory FreeBSD, Inc. Topic: halflifeserver allows remote code execution Category: ports Module: halflifeserver Announced: 2000-12-20 Credits: Mark Cooper...