45 matches found
WinMX < 2.6 - Design Error
WinMX Design Error Vendor: Frontcode Technologies Product: WinMX Version: = 2.6 Website: http://www.winmx.com/ BID: 7771 Description: WinMX 2.6 is an older version of the popular file sharing client WinMX. While the current version is 3.31, 2.6 still remains quite popular. Especially amongst user...
Buffer overflows in multiple IMAP clients
There's two common vulnerabilities in IMAP clients written with C and C++: 1. Handling huge literal sizes. Many clients do mallocliteralsize+1 and then read the literal into it. Problem is that if literalsize is UINTMAX-1, the +1 overflows it into malloc0 but server is still allowed to write...
Query: BID 6273: PortailPhp SQL Injection Vulnerability.
Hi, Posting on vuln-dev too since this has a generic PHP-MySQL SQL Injection Vuln question as well. I was working on this vulnerability. I came across the following advisory on SecurityFocus-BugTraq: http://online.securityfocus.com/archive/1/301572 I find that Php's mysqlquery only allows one SQL...
Microsoft Windows NT 4.0 - Invalid LPC Request Denial of Service (MS00-070)
Microsoft Windows NT 4.0 - Invalid LPC Request Denial of Service MS00-070 source: https://www.securityfocus.com/bid/1743/info LPC Local Procedure Call is a message-passing service that allows threads and processes to communicate with each other on a local machine as opposed to RPC Remote Procedur...
CVE-2019-11803
...