123 matches found
Arbitrary Code Execution
glibc is vulnerable to arbitrary code execution attacks. The vulnerability exists as a heap-based buffer overflow in the nsshostnamedigitsdots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the 1...
GNU C Library (glibc) __nss_hostname_digits_dots() function vulnerable to buffer overflow ("GHOST")
Lenovo Security Advisory: LEN-2015-007 Potential Impact: Execution of Arbitrary Code Severity: High Summary: A vulnerability has been found in the GNU C Library glibc nsshostnamedigitsdots function that allows both local and remote users to cause a buffer overflow in network function calls...
The vulnerability of microprogrammed software in Cisco Nexus 1000V virtual switches allows a remote attacker to execute arbitrary code.
Overfilling the buffer in the dynamic memory of the nsshostnamedigitsdots function in the glibc library allows a remote attacker to execute arbitrary code by using the gethostbyname and gethostbyname2 functions...
The vulnerability of the Red Hat Enterprise Virtualization operating system allows a remote attacker to execute arbitrary code or cause a service failure.
The vulnerability of the rhev-hypervisor6-6.6 package of the Red Hat Enterprise Virtualization operating system lies in a buffer overflow within the nsshostnamedigitsdots function, which is used by functions like gethostbyname and gethostbyname2. As a result of exploiting this vulnerability, a...
The vulnerability of the Debian GNU/Linux operating system allows a remote attacker to execute arbitrary code or cause a service failure.
The vulnerability in the eglibc package of the Debian GNU/Linux operating system lies in the buffer overflow within the function nsshostnamedigitsdots, which is used by functions like gethostbyname and gethostbyname2. As a result of exploiting this vulnerability, a malicious individual can execut...
Siemens SIMATIC HMI Basic, SINUMERIK, and Ruggedcom APE GHOST Vulnerability (Update A)
OVERVIEW This updated advisory is a follow-up to the original advisory titled ICSA-15-064-01 Siemens SIMATIC HMI Basic, SINUMERIK, and Ruggedcom APE GHOST Vulnerability that was published March 5, 2015, on the NCCIC/ICS-CERT web site. The “GHOST”Further information about the GHOST vulnerability:...
CVE-2007-0453
Buffer overflow in the nsswinbind.so.1 library in Samba 3.0.21 through 3.0.23d, as used in the winbindd daemon on Solaris, allows attackers to execute arbitrary code via the 1 gethostbyname and 2 getipnodebyname functions...
Amazon Linux: Security Advisory (ALAS-2015-494)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
The vulnerability of the microprogramming software of the Cisco Wireless LAN Controller 2000 allows a remote attacker to execute arbitrary code.
Overfilling the buffer in the dynamic memory of the nsshostnamedigitsdots function in the glibc library allows a remote attacker to execute arbitrary code by using the gethostbyname and gethostbyname2 functions...
The vulnerability of the microprogramming software of the Cisco Wireless LAN Controller 2500 allows a remote attacker to execute arbitrary code.
Overfilling the buffer in the dynamic memory of the nsshostnamedigitsdots function in the glibc library allows a remote attacker to execute arbitrary code by using the gethostbyname and gethostbyname2 functions...
The vulnerability of the microprogramming software of the Cisco Wireless LAN Controller 5500 allows a malicious attacker to execute arbitrary code.
Overfilling the buffer in the dynamic memory of the nsshostnamedigitsdots function in the glibc library allows a remote attacker to execute arbitrary code by using the gethostbyname and gethostbyname2 functions...
The vulnerability of the microprogramming software of the Cisco Wireless LAN Controller 2100 allows a remote attacker to execute arbitrary code.
Overfilling the buffer in the dynamic memory of the nsshostnamedigitsdots function in the glibc library allows a remote attacker to execute arbitrary code by using the gethostbyname and gethostbyname2 functions...
The vulnerability of Cisco ASR router’s microprogramming software allows a remote attacker to execute arbitrary code.
Overfilling the buffer in the dynamic memory of the nsshostnamedigitsdots function in the glibc library allows a remote attacker to execute arbitrary code by using the gethostbyname and gethostbyname2 functions...
The vulnerability of the microprogramming software of Cisco Nexus 5000 allows a intruder to execute arbitrary code.
Overfilling the buffer in the dynamic memory of the nsshostnamedigitsdots function in the glibc library allows a remote attacker to execute arbitrary code by using the gethostbyname and gethostbyname2 functions...
The vulnerability of the microprogramming software of the Cisco Unified Communications Manager allows a remote attacker to execute arbitrary code.
Overfilling the buffer in the dynamic memory of the nsshostnamedigitsdots function in the glibc library allows a remote attacker to execute arbitrary code by using the gethostbyname and gethostbyname2 functions...
The vulnerability of the microprogramming software of Cisco Nexus 7000 allows a remote attacker to execute arbitrary code.
Overfilling the buffer in the dynamic memory of the nsshostnamedigitsdots function in the glibc library allows a remote attacker to execute arbitrary code by using the gethostbyname and gethostbyname2 functions...
Exploit for Out-of-bounds Write in Gnu Glibc
PoC exploit for CVE-2015-0235, a Glibc Gethostbyname DoS vulne...
Exim GHOST (glibc gethostbyname) Buffer Overflow
This module remotely exploits CVE-2015-0235, aka GHOST, a heap-based buffer overflow in the GNU C Library's gethostbyname functions on x86 and x8664 GNU/Linux systems that run the Exim mail server. This module requires Metasploit: https://metasploit.com/download Current source:...
Amazon Linux AMI : php54 (ALAS-2015-493) (GHOST)
A heap-based buffer overflow was found in glibc's nsshostnamedigitsdots function, which is used by the gethostbyname and gethostbyname2 glibc function calls. A remote attacker able to make an application call either of these functions could use this flaw to execute arbitrary code with the...
Critical: php54
Issue Overview: A heap-based buffer overflow was found in glibc's nsshostnamedigitsdots function, which is used by the gethostbyname and gethostbyname2 glibc function calls. A remote attacker able to make an application call either of these functions could use this flaw to execute arbitrary code...