Mulitple Buffer Overflow conditions in RealPlayer/RealOne (#NISR22112002)

NGSSoftware Insight Security Research Advisory Name: Multiple Buffer Overruns RealOne / RealPlayer / RealOne Enterprise Desktop Systems Affected: Windows All Severity: Critical Category: Remote Buffer Overrun Vendor URL: http://www.real.com/ Author: Mark Litchfield [email protected] Date: 22nd...

syslog-ng buffer overflow

---------------------------------------------------------------------------- PACKAGE : syslog-ng VERSION : -1.4.15 stable and -1.5.20 development SUMMARY : buffer overflow TYPE : remote exploit VULNERABLE: : exploitable not in default configuration ZORP-OS SPECIFIC : No ZSA-AUTHOR : Balazs...

Authoria HR Suite - AthCGI.exe Cross-Site Scripting

Authoria HR Suite - AthCGI.exe Cross-Site Scripting source: https://www.securityfocus.com/bid/5932/info Authoria HR Suite is prone to cross-site scripting attacks. An attacker could construct a malicious link to a vulnerable host that contains arbitrary HTML and script code. If this link is visit...

Foundstone Research Labs Advisory - Remotely Exploitable Buffer Overflow in ISS Scanner

Foundstone Research Labs Advisory - 091802-ISSC Advisory Name: Remotely Exploitable Buffer Overflow in ISS Scanner Release Date: September 18, 2002 Application: ISS Scanner 6.2.1 Platforms: Windows NT/2000/XP Severity: Remote code execution Vendors: Internet Security Systems http://www.iss.net...

Netris 0.30.40.5 - Remote Memory Corruption

Netris 0.30.40.5 - Remote Memory Corruption // source: https://www.securityfocus.com/bid/5680/info Netris is prone to a remotely exploitable memory corruption issue. Netris is prone to a remotely exploitable memory corruption issue. An attacker may exploit this to execute arbitrary code with the...

Foundstone Labs Advisory - Remotely Exploitable Buffer Overflow in PGP

Foundstone Labs Advisory - 090502-PCRO Advisory Name: Remotely Exploitable Buffer Overflow in PGP Release Date: September 5, 2002 Application: PGP Corporate Desktop 7.1.1 Platforms: Windows 2000/XP Severity: Remote code execution and plaintext passphrase disclosure Vendors: PGP Corporation...

CORE-20020618: Vulnerabilities in Windows SMB (DoS)

CORE SECURITY TECHNOLOGIES http://www.corest.com Vulnerability report for Windows SMB DoS Date Published: 2002-08-22 Last Update: 2002-08-22 Advisory ID: CORE-20020618 Bugtraq ID: N/A CVE: CAN-2002-0724 CERT: VU311619, VU342243,VU250635 Title: Denial of Service Vulnerabilities in Windows SMB...

Inso DynaWeb HTTPd 3.1/4.0.2/4.1 - Format String

// source: https://www.securityfocus.com/bid/5384/info Inso DynaWeb webserver, dwhttpd, is used as a subcomponent in products such as Sun's AnswerBook2, which is shipped as part of the Solaris operating environment. The dwhttpd webserver is prone to a remotely exploitable format-string...

Moderate: Red Hat Security Advisory: : : : Updated util-linux package fixes password locking race

A locally exploitable vulnerability is present in the util-linux package which shipped with Red Hat Linux. Updated 8 July 2003 Added packages for Red Hat Linux on IBM iSeries and pSeries systems. The util-linux package contains a large variety of low-level system utilities that are necessary for ...

[CORE-20020528] Multiple vulnerabilities in ToolTalk Database server

CORE SECURITY TECHNOLOGIES http://www.corest.com Multiple vulnerabilities in Tooltalk database server Date Published: 2002-07-10 Last Update: 2002-07-10 Advisory ID: CORE-20020528 Bugtraq ID: 5082,5083 CVE: CAN-2002-0677, CAN-2002-0678 CERT: VU975403 VU299816 Title: Multiple vulnerabilities in...

[DER #11] - Remotey exploitable fmt string bug in squid

------------------------------------------- - DAVID EVLIS REIGN SECURITY ADVISORY 11 - ------------------------------------------- - WHAT - Remotely Exploitable Format string Hole - WHO - MSNT squid auth for NtDomains - DETAILS ON PRODUCT - This is an authentication module for the Squid proxy...

CORE-20020409: Multiple vulnerabilities in stack smashing protection technologies

CORE SECURITY TECHNOLOGIES Advisory http://www.corest.com Multiple vulnerabilities in stack smashing protection technologies Date Published: 2002-04-23 Last Update: 2002-04-23 Advisory ID: CORE-20020409 Bugtraq ID: Non-assigned yet CVE CAN: Non-assigned yet Title: Multiple vulnerabilities in stac...

Buffer overflow in Microsoft Windows Shell

Overview A remotely exploitable buffer overflow exists in the Microsoft Windows Shell. Description There is a buffer overflow in the Microsoft Windows Shell. The Shell provides the basic human-computer interface for Windows systems. Quoting from Microsoft Security Bulletin MS02-014:The Windows...

Security Update: [CSSA-2002-SCO.8] OpenServer: dlvr_audit: exploitable buffer overflow

To: [email protected] [email protected] [email protected] Caldera International, Inc. Security Advisory Subject: OpenServer: dlvraudit: exploitable buffer overflow Advisory number: CSSA-2002-SCO.8 Issue date: 2002 March 11 Cross reference: 1. Problem Description The dlvraud...

Tarantella Enterprise 3 - Symbolic Link

Tarantella Enterprise 3 - Symbolic Link source: https://www.securityfocus.com/bid/4115/info Tarantella Enterprise 3 contains a locally exploitable symbolic link vulnerability during it's installation procedure. This vulnerability can be exploited to elevate privileges. An attacker anticipating th...

Buffer overflow in awhttpd (Re: Format string bug in awhttpd (Re: [AP] awhttpd v2.2 local DoS))

Hello 3APA3A, OK, format string issue exists only in proposed patch... What about this issue: There are at least 2 buffer overflows with heap corruption, tpbuf can be up to 210 characters while getreqsi is malloc100. Of cause, target file should exist... tpbuf is base dir concatenated with 100...

SapporoWorks Black JumboDog 2.6.4/2.6.5 - HTTP Proxy Buffer Overflow

// source: https://www.securityfocus.com/bid/3858/info Black JumboDog 2.6.4 and 2.6.5 HTTP proxy is vulnerable to an exploitable buffer overflow. The buffer overflow can be exploited by sending excessively long "expires", "if-modified-since", and "LastModified" strings containing executable code....

Aspupload installs exploitable scripts

Title: ASPUPLOAD Installs Exploitable Scripts By Default http://www.aspupload.com/ Author: Brett Moore [email protected] Systems Affected: Version 2.1 On Windows Version 3.0 Was Not Available For Testing Release Date: 30/11/2001 Vendor Contacted: 31/10/2001 Vendor Responded:31/10/2001...

Advisory CA-2001-31 Buffer Overflow in CDE Subprocess Control Service

CERT Advisory CA-2001-31 Buffer Overflow in CDE Subprocess Control Service Original release date: November 12, 2001 Last revised: -- Source: CERT/CC A complete revision history can be found at the end of this file. Systems Affected Systems running CDE Overview There is a remotely exploitable buff...

SECURITY.NNOV: accessing cookies via ftp

Hello bugtraq, Article below describes a vulnerability that can be treated as either software vulnerability or specific server configuration problem depending on your point of view. Many servers on Internet are affected by this problem though. Topic: accessing cookies via ftp Affected Software: a...