220 matches found
Google Chrome 'chromehtml: URI' DoS Vulnerability
Google Chrome is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2009-2974
Removed by vendor...
Design/Logic Flaw
The 1 sendfile and 2 sendfilev functions in Sun Solaris 8 through 10, and OpenSolaris before snv110, allow local users to cause a denial of service panic via vectors related to vnode function calls...
CVE-2009-2912
The 1 sendfile and 2 sendfilev functions in Sun Solaris 8 through 10, and OpenSolaris before snv110, allow local users to cause a denial of service panic via vectors related to vnode function calls...
openSUSE Security Update : libnasl (libnasl-451)
This update of libnasl adds missing return value checks for openssl function calls. CVE-2009-0125 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update libnasl-451. The text description of this plug...
Impact Software AdPeeps 8.5d1 - Cross-Site Scripting HTML Injection
Impact Software AdPeeps 8.5d1 - Cross-Site Scripting HTML Injection AdPeeps Ad Rotator - XSS and HTML Injection Vulnerabilities Version Affected: 8.5d1 3-18-09 newest Info: Ad Peeps is a banner rotator and text ad rotator - all in one that allows you to track, sell and manage banner ads,...
CVE-2008-4618
The Stream Control Transmission Protocol sctp implementation in the Linux kernel before 2.6.27 does not properly handle a protocol violation in which a parameter has an invalid length, which allows attackers to cause a denial of service panic via unspecified vectors, related to...
Ruby 1.9 - Safe Level Multiple Function Restriction Bypass
source: https://www.securityfocus.com/bid/30644/info Ruby is prone to multiple vulnerabilities that can be leveraged to bypass security restrictions or cause a denial of service: - Multiple security-bypass vulnerabilities occur because of errors in the 'safe level' restriction implementation...
CVE-2007-4490
Multiple buffer overflows in EarthAgent.exe in Trend Micro ServerProtect 5.58 for Windows before Security Patch 4 allow remote attackers to have an unknown impact via certain RPC function calls to 1 RPCFNEVENTBACKDoHotFix or 2 CMDCHANGEAGENTREGISTERINFO...
Buffer overflow
Multiple buffer overflows in EarthAgent.exe in Trend Micro ServerProtect 5.58 for Windows before Security Patch 4 allow remote attackers to have an unknown impact via certain RPC function calls to 1 RPCFNEVENTBACKDoHotFix or 2 CMDCHANGEAGENTREGISTERINFO...
CVE-2007-4490
Multiple buffer overflows in EarthAgent.exe in Trend Micro ServerProtect 5.58 for Windows before Security Patch 4 allow remote attackers to have an unknown impact via certain RPC function calls to 1 RPCFNEVENTBACKDoHotFix or 2 CMDCHANGEAGENTREGISTERINFO...
Code injection
Eltima Software Virtual Serial Port VSPAX ActiveX control VSPort.DLL allows remote attackers to cause a denial of service via certain function calls, as demonstrated via the 1 Attach, 2 Write, and 3 WriteStr functions...
CVE-2007-3661
CVE-2007-3661 affects Eltima Software Virtual Serial Port (VSPAX) ActiveX control (VSPort.DLL). The provided documents indicate that remote attackers can cause a denial of service through specific API calls, namely Attach, Write, and WriteStr. The description does not reveal additional technical ...
CVE-2007-3661
Eltima Software Virtual Serial Port VSPAX ActiveX control VSPort.DLL allows remote attackers to cause a denial of service via certain function calls, as demonstrated via the 1 Attach, 2 Write, and 3 WriteStr functions...
CVE-2006-0058
Signal handler race condition in Sendmail 8.13.x before 8.13.6 allows remote attackers to execute arbitrary code by triggering timeouts in a way that causes the setjmp and longjmp function calls to be interrupted and modify unexpected memory locations...
CVE-2005-4532
scponlyc in scponly 4.1 and earlier, when the operating system supports LDPRELOAD mechanisms, allows local users to execute arbitrary code with root privileges by creating a chroot directory in their home directory, hard linking to a system setuid application, and using a modified LDPRELOAD to...
CVE-2005-4511
The CVE-2005-4511 is a format-string vulnerability in TN3270 Resource Gateway 1.1.0. The underlying issue is unvalidated format specifiers in syslog function calls, enabling local users to cause a denial of service and potentially execute arbitrary code. The vulnerability is characterized by a lo...
CVE-2005-1407
Skype for Windows 1.2.0.0 to 1.2.0.46 allows local users to bypass the identity check for an authorized application, then call arbitrary Skype API functions by modifying or replacing that application...
Microsoft Windows - DCOM RPC2 Universal Shellcode
MS Windows DCOM RPC2 Universal Shellcode. Shellcode exploit for win32 platform ; Segment type: Pure code ;seg000 segment byte public 'CODE' use32 ; assume cs:seg000 ; assume es:nothing, ss:nothing, ds:nothing, fs:nothing, gs:nothing .386 assume cs:seg000 var29C = byte ptr -29Ch var28C = byte ptr...
Unsafe Signal Handling in Sendmail
RAZOR advisory: Unsafe Signal Handling in Sendmail Issue Date: May 28, 2001 Contact: Michal Zalewski [email protected] Topic: Sendmail signal handlers used for dealing with specific signals are vulnerable to numerous race conditions. Affected Systems: Any systems running sendmail tested ...