7018 matches found
The zlib compression library is vulnerable to a denial-of-service condition
Overview Un-handled error conditions in the zlib compression library may allow an attacker to cause a denial-of-service condition. Description There is a vulnerability in the error handling mechanisms of the decompression functions in the zlib compression library. The decompression functions...
solaris/SPARC execve /bin/sh 52 bytes
Exploit for solaris/sparc platform in category shellcode ===================================== solaris/SPARC execve /bin/sh 52 bytes ===================================== //Solaris/Sparc - LSD char shellcode= "\x20\xbf\xff\xff" / bn,a / "\x20\xbf\xff\xff" / bn,a / "\x7f\xff\xff\xff" / call /...
PHP 4.x5.0.1 - PHP_Variables Remote Memory Disclosure
PHP 4.x5.0.1 - PHPVariables Remote Memory Disclosure source: https://www.securityfocus.com/bid/11334/info A vulnerability is reported to present itself in the array parsing functions of the 'phpvariables.c' PHP source file. The vulnerability occurs when a PHP script is being used to print URI...
PHP 4.x/5.0.1 - PHP_Variables Remote Memory Disclosure
source: https://www.securityfocus.com/bid/11334/info A vulnerability is reported to present itself in the array parsing functions of the 'phpvariables.c' PHP source file. The vulnerability occurs when a PHP script is being used to print URI parameters or data, that are supplied by a third party,...
linux/x86 portbind port 5074 + fork() 130 bytes
No description provided by source. / [email protected] 0x9abril0x7d2 syssocketcall 102 0x66 %eax, esta es nuestra rutina principal. En todas las subrutinas vamos a necesitar a: %eax = 0x66. Luego del archivo include/linux/net.h obtenemos la siguiente lista, echenle un vistazo. Entonces en...
CVE-2000-0894
HTTP server on the WatchGuard SOHO firewall does not properly restrict access to administrative functions such as password resets or rebooting, which allows attackers to cause a denial of service or conduct unauthorized activities...
[NGSEC-2004-7] NtRegmon, local system denial of service.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Next Generation Security Technologies http://www.ngsec.com Security Advisory Title: NtRegmon, local system denial of service. ID: NGSEC-2004-7 Application: NtRegmon http://www.sysinternals.com/ntw2k/source/regmon.shtml Date: 14/Aug/2004 Status: Patche...
MoinMoin: Group ACL bypass
Background MoinMoin is a Python clone of WikiWiki, based on PikiPiki. Description MoinMoin contains two unspecified bugs, one allowing anonymous users elevated access when not using ACLs, and the other in the ACL handling in the PageEditor. Impact Restrictions on anonymous users were not properly...
Sysinternals Regmon 6.11 - Local Denial of Service
Sysinternals Regmon 6.11 - Local Denial of Service // source: https://www.securityfocus.com/bid/11042/info Regmon is reported prone to a local denial of service vulnerability. This issue presents itself because the application fails to handle exceptional conditions and references unvalidated...
Sysinternals Regmon 6.11 - Local Denial of Service
// source: https://www.securityfocus.com/bid/11042/info Regmon is reported prone to a local denial of service vulnerability. This issue presents itself because the application fails to handle exceptional conditions and references unvalidated pointers to kernel functions. Successful exploitation m...
Delegate Multiple Function Remote Overflows
Binary data 1791.prm...
PHP < 4.1.0 Safe Mode Mail Function Command Execution
Binary data 1483.prm...
XV 3.x BMP Parsing Local Buffer Overflow Exploit
Exploit for linux platform in category remote exploits ======================================== Qt BMP Parsing Bug Heap Overflow Exploit ======================================== / heap overflow exploit for qt bmp parsing bug infamous42md AT hotpop DOT com shouts to mitakeet, MB, and peeps...
PHP < 4.3.2 Multiple Function Remote Overflows
Binary data 1484.prm...
Mandrake Linux Security Advisory : postgresql (MDKSA-2002:062-1)
Vulnerabilities were discovered in the Postgresql relational database by Mordred Labs. These vulnerabilities are buffer overflows in the rpad, lpad, repeat, and cashwords functions. The Postgresql developers also fixed a buffer overflow in functions that deal with time/date and timezone. Finally,...
Mandrake Linux Security Advisory : zlib (MDKSA-2003:033)
Richard Kettlewell discovered a buffer overflow vulnerability in the zlib library's gzprintf function. This can be used by attackers to cause a denial of service or possibly even the execution of arbitrary code. Our thanks to the OpenPKG team for providing a patch which adds the necessary configu...
SuSE-SA:2003:051: lftp
The remote host is missing the patch for the advisory SuSE-SA:2003:051 lftp. The the flexible and powerful FTP command-line client lftp is vulnerable to two remote buffer overflows. When using lftp via HTTP or HTTPS to execute commands like 'ls' or 'rels' specially prepared directories on the...
Fedora Core 1 2003-026-1: kernel
The remote host is missing the patch for the advisory FEDORA-2003-026-1 kernel. The kernel package contains the Linux kernel vmlinuz, the core of your Red Hat Linux operating system. The kernel handles the basic functions of the operating system: memory allocation, process allocation, device inpu...
moinmoin -- ACL group bypass
The moinmoin package contains two bugs with ACLs and anonymous users. Both bugs may permit anonymous users to gain access to administrative functions; for example the delete function. There is no known workaround, the vulnerability exists regardless if a site is using ACLs or not...
DSA-521 sup - format string vulnerability
Bulletin has no description...