541 matches found
safari-windows.txt
iframe src='gopher://larholm.com" -chrome...
Safari 3 for Windows Beta Remote Command Execution PoC
No description provided by source. !-- Safari for Windows, 0day exploit in 2 hours http://larholm.com/2007/06/12/safari-for-windows-0day-exploit-in-2-hours/ By Thor Larholm The below PoC exploit will exploit Safari by bouncing through Firefox via the Gopher protocol, passing on unfiltered input f...
CVE-2007-3186
Apple Safari Beta 3.0.1 for Windows allows remote attackers to execute arbitrary commands via shell metacharacters in a URI in the SRC of an IFRAME, as demonstrated using a gopher URI...
Design/Logic Flaw
Apple Safari Beta 3.0.1 for Windows allows remote attackers to execute arbitrary commands via shell metacharacters in a URI in the SRC of an IFRAME, as demonstrated using a gopher URI...
CVE-2007-3186
Apple Safari Beta 3.0.1 for Windows allows remote attackers to execute arbitrary commands via shell metacharacters in a URI in the SRC of an IFRAME, as demonstrated using a gopher URI...
Apple Safari 3 for Windows Beta - Remote Command Execution
Apple Safari 3 for Windows Beta - Remote Command Execution iframe src='gopher://larholm.com" -chrome...
Safari 3 for Windows Beta Remote Command Execution PoC
Exploit for unknown platform in category remote exploits ====================================================== Safari 3 for Windows Beta Remote Command Execution PoC ====================================================== iframe src='gopher://larholm.com" -chrome...
Apple Safari 3 for Windows Beta - Remote Command Execution
iframe src='gopher://larholm.com" -chrome...
Ubuntu 4.10 : squid vulnerabilities (USN-67-1)
infamous41md discovered several Denial of Service vulnerabilities in squid. A malicious Gopher server could crash squid by sending a line bigger than 4096 bytes. CAN-2005-0094 If squid is configured to send WCPP Web Cache Communication Protocol messages to a 'home router', an attacker who was abl...
Debian DSA-832-1 : gopher - buffer overflows
Several buffer overflows have been discovered in gopher, a text-oriented client for the Gopher Distributed Hypertext protocol, that can be exploited by a malicious Gopher server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
[SECURITY] [DSA 832-1] New gopher packages fix several buffer overflows
-------------------------------------------------------------------------- Debian Security Advisory DSA 832-1 [email protected] http://www.debian.org/security/ Martin Schulze September 30th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 832-1] New gopher packages fix several buffer overflows
-------------------------------------------------------------------------- Debian Security Advisory DSA 832-1 [email protected] http://www.debian.org/security/ Martin Schulze September 30th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 832-1] New gopher packages fix several buffer overflows
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 832-1 [email protected] http://www.debian.org/security/ Martin Schulze September 30th, 2005 http://www.debian.org/security/faq -...
DSA-832-1 gopher - buffer overflows
Bulletin has no description...
CVE-2005-2772
Multiple stack-based buffer overflows in University of Minnesota gopher client 3.0.9 allow remote malicious servers to execute arbitrary code via 1 a long "+VIEWS:" reply, which is not properly handled in the VIfromLine function, and 2 certain arguments when launching third party programs such as...
CVE-2005-2772
Multiple stack-based buffer overflows in University of Minnesota gopher client 3.0.9 allow remote malicious servers to execute arbitrary code via 1 a long "+VIEWS:" reply, which is not properly handled in the VIfromLine function, and 2 certain arguments when launching third party programs such as...
CVE-2005-2772
Multiple stack-based buffer overflows in University of Minnesota gopher client 3.0.9 allow remote malicious servers to execute arbitrary code via 1 a long "+VIEWS:" reply, which is not properly handled in the VIfromLine function, and 2 certain arguments when launching third party programs such as...
DEBIAN-CVE-2005-2772
Multiple stack-based buffer overflows in University of Minnesota gopher client 3.0.9 allow remote malicious servers to execute arbitrary code via 1 a long "+VIEWS:" reply, which is not properly handled in the VIfromLine function, and 2 certain arguments when launching third party programs such as...
CVE-2005-2772
Multiple stack-based buffer overflows in University of Minnesota gopher client 3.0.9 allow remote malicious servers to execute arbitrary code via 1 a long "+VIEWS:" reply, which is not properly handled in the VIfromLine function, and 2 certain arguments when launching third party programs such as...
CVE-2005-2772
This CVE concerns the University of Minnesota gopher client 3.0.9, where multiple stack-based buffer overflows allow a remote attacker (via a malicious Gopher server) to execute arbitrary code. The flaws include an overflow in handling a long "+VIEWS:" reply in VIfromLine and issues in FIOgetargv...