CVE-2009-3276

Zoran/WinFormsAdvansed/RegeularDataToXML/Form1.cs in WinFormsAdvansed in NASD CORE.NET Terelik aka corenet1 allows context-dependent attackers to cause a denial of service CPU consumption via an input string composed of many alphabetic characters followed by a ! exclamation point, related to a...

CVE-2009-3277

DataVault.Tesla/Impl/TypeSystem/AssociationHelper.cs in datavault allows context-dependent attackers to cause a denial of service CPU consumption via an input string composed of an open bracket followed by many commas, related to a certain regular expression, aka a "ReDoS" vulnerability...

CVE-2009-3277

CVE-2009-3277 describes a ReDoS vulnerability in DataVault.Tesla/Impl/TypeSystem/AssociationHelper.cs within datavault. The issue allows context-dependent attackers to cause a denial of service by feeding an input string that starts with an opening bracket followed by many commas, exploiting a re...

CVE-2009-3276

CVE-2009-3276 affects Zoran/WinFormsAdvansed/RegeularDataToXML/Form1.cs in WinFormsAdvansed within NASD CORE.NET Terelik (aka corenet1). The vulnerability is a ReDoS: context-dependent attackers can cause CPU exhaustion by supplying an input string consisting of many alphabetic characters followe...

Apple Safari / WebKit DoS

Stack overflow stack memory exhaustion on eval expression parsing...

Code injection

Static code injection vulnerability in admin/configuration/modifier.php in zKup CMS 2.0 through 2.3 allows remote attackers to inject arbitrary PHP code into fichiers/config.php via a null byte %00 in the login parameter in an ajout action, which bypasses the regular expression check...

CVE-2008-7123

Static code injection vulnerability in admin/configuration/modifier.php in zKup CMS 2.0 through 2.3 allows remote attackers to inject arbitrary PHP code into fichiers/config.php via a null byte %00 in the login parameter in an ajout action, which bypasses the regular expression check...

CVE-2008-7123

Static code injection vulnerability in admin/configuration/modifier.php in zKup CMS 2.0 through 2.3 allows remote attackers to inject arbitrary PHP code into fichiers/config.php via a null byte %00 in the login parameter in an ajout action, which bypasses the regular expression check...

CVE-2008-7123

CVE-2008-7123 affects zKup CMS 2.0–2.3. The vulnerability is a static code injection in admin/configuration/modifier.php that allows remote attackers to inject arbitrary PHP code into fichiers/config.php via a null byte (%00) in the login parameter during an ajout action, bypassing the regular ex...

Critical: Red Hat Security Advisory: nspr and nss security update

Updated nspr and nss packages that fix security issues are now available for Red Hat Enterprise Linux 5.2 Extended Update Support. This update has been rated as having critical security impact by the Red Hat Security Response Team. Netscape Portable Runtime NSPR provides platform independence for...

Multiple Products NSS Library Buffer Overflow Vulnerability

This host is installed with Firefox or Thunderbird or SeaMonkey or Evolution or Pidgin or AOL Instant Messenger Products which is prone to Buffer Overflow vulnerability. OpenVAS Vulnerability Test $Id: gbmultprdtsnsslibbofvuln.nasl 5369 2017-02-20 14:48:07Z cfi $ Multiple Products NSS Library...

nss regexp heap overflow

Heap-based buffer overflow in a regular-expression parser in Mozilla Network Security Services NSS before 3.12.3, as used in Firefox, Thunderbird, SeaMonkey, Evolution, Pidgin, and AOL Instant Messenger AIM, allows remote SSL servers to cause a denial of service application crash or possibly...

Critical: Red Hat Security Advisory: nspr and nss security and bug fix update

Updated nspr and nss packages that fix security issues and a bug are now available for Red Hat Enterprise Linux 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. Netscape Portable Runtime NSPR provides platform independence for non-GUI operati...

TransLucid 1.75 Multiple Remote Vulnerabilities

No description provided by source. transLucid - Cross Site Scripting and HTML Injection Vulnerabilities Version Affected: 1.75 newest Info: transLucidonline is the easy website publishing system with which anyone can create and maintain web content, in multiple languages and based on a growing li...

TransLucid 1.75 Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications =============================================== TransLucid 1.75 Multiple Remote Vulnerabilities =============================================== transLucid - Cross Site Scripting and HTML Injection Vulnerabilities Version Affected: 1.75...

TransLucid 1.75 - Multiple Vulnerabilities

TransLucid 1.75 - Multiple Vulnerabilities transLucid - Cross Site Scripting and HTML Injection Vulnerabilities Version Affected: 1.75 newest Info: transLucidonline is the easy website publishing system with which anyone can create and maintain web content, in multiple languages and based on a...

mb_ereg(i)_replace()code injection vulnerability, and extending the regular application of security-vulnerability warning-the black bar safety net

Source: http://www.80vul.com/pch/pch-003.txt mberegireplacecode injection vulnerability, and extends out of the regular application security author: ryatwolvez.org team:http://www.80vul.com date:2009-04-30 A description of the classification mberegreplaceis the support of multibyte regular...

CentOS 3 / 4 / 5 : perl (CESA-2007:0966)

Updated Perl packages that fix a security issue are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Perl is a high-level programming language commonly used for system administration...

Mandriva Linux Security Advisory : tcl (MDVSA-2008:059)

A flaw in the Tcl regular expression handling engine was originally discovered by Will Drewry in the PostgreSQL database server's Tcl regular expression engine. This flaw can result in an infinite loop when processing certain regular expressions. The updated packages have been patched to correct...

CentOS 4 : pcre (CESA-2007:0968)

Updated pcre packages that correct two security flaws are now available for Red Hat Enterprise Linux 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. PCRE is a Perl-compatible regular expression library. Multiple flaws were found in the way...