Lucene search
K

203 matches found

Prion
Prion
added 2011/12/30 1:55 a.m.24 views

Design/Logic Flaw

The CaseInsensitiveHashProvider.getHashCode function in the HashTable implementation in the ASP.NET subsystem in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, whic...

7.8CVSS7AI score0.58895EPSS
Exploits1References7Affected Software4
CVE
CVE
added 2011/12/30 1:0 a.m.150 views

CVE-2011-3414

CVE-2011-3414 concerns a denial-of-service in the Microsoft .NET Framework ASP.NET HashTable mapping. The vulnerability arises from the CaseInsensitiveHashProvider.getHashCode function used by the HashTable implementation across .NET Framework 1.1 SP1, 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0, which can ...

7.8CVSS6.4AI score0.58895EPSS
Exploits1References7Affected Software5
Cvelist
Cvelist
added 2011/12/30 1:0 a.m.30 views

CVE-2011-3414

The CaseInsensitiveHashProvider.getHashCode function in the HashTable implementation in the ASP.NET subsystem in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, whic...

6.3AI score0.58895EPSS
Exploits1References7
NVD
NVD
added 2011/02/15 1:0 a.m.21 views

CVE-2008-7274

IBM WebSphere Application Server WAS 6.1.0.9, when the JAAS Login functionality is enabled, allows attackers to perform an internal application hashtable login by 1 not providing a password or 2 providing an empty password...

4.3CVSS6.5AI score0.00971EPSS
Exploits0References1
Prion
Prion
added 2011/02/15 1:0 a.m.23 views

Default credentials

IBM WebSphere Application Server WAS 6.1.0.9, when the JAAS Login functionality is enabled, allows attackers to perform an internal application hashtable login by 1 not providing a password or 2 providing an empty password...

4.3CVSS6.7AI score0.00971EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2011/02/14 11:0 p.m.27 views

CVE-2008-7274

IBM WebSphere Application Server WAS 6.1.0.9, when the JAAS Login functionality is enabled, allows attackers to perform an internal application hashtable login by 1 not providing a password or 2 providing an empty password...

6.4AI score0.00971EPSS
Exploits0References1
securityvulns
securityvulns
added 2010/05/11 12:0 a.m.45 views

MOPS-2010-006: PHP addcslashes() Interruption Information Leak Vulnerability

MOPS-2010-006: PHP addcslashes Interruption Information Leak Vulnerability May 3rd, 2010 PHP’s addcslashes function can be abused for information leak attacks, because of the call time pass by reference feature. Affected versions Affected is PHP 5.2 = 5.2.13 Affected is PHP 5.3 = 5.3.2 Credits Th...

7.2AI score
Exploits0
securityvulns
securityvulns
added 2010/05/11 12:0 a.m.44 views

MOPS-2010-008: PHP chunk_split() Interruption Information Leak Vulnerability

MOPS-2010-008: PHP chunksplit Interruption Information Leak Vulnerability May 4th, 2010 PHP’s chunksplit function can be abused for information leak attacks, because of the call time pass by reference feature. Affected versions Affected is PHP 5.2 = 5.2.13 Affected is PHP 5.3 = 5.3.2 Credits The...

7.2AI score
Exploits0
NVD
NVD
added 2010/03/19 7:30 p.m.25 views

CVE-2010-0733

Integer overflow in src/backend/executor/nodeHash.c in PostgreSQL 8.4.1 and earlier, and 8.5 through 8.5alpha2, allows remote authenticated users to cause a denial of service daemon crash via a SELECT statement with many LEFT JOIN clauses, related to certain hashtable size calculations...

3.5CVSS6.2AI score0.06902EPSS
Exploits2References16
Metasploit
Metasploit
added 2008/10/19 9:3 p.m.37 views

PHP 4 unserialize() ZVAL Reference Counter Overflow (Cookie)

This module exploits an integer overflow vulnerability in the unserialize function of the PHP web server extension. This vulnerability was patched by Stefan in version 4.5.0 and applies all previous versions supporting this function. This particular module targets numerous web applications and is...

6.8CVSS7.6AI score0.40435EPSS
Exploits7
UbuntuCve
UbuntuCve
added 2007/03/27 1:19 a.m.24 views

CVE-2007-1700

The session extension in PHP 4 before 4.4.5, and PHP 5 before 5.2.1, calculates the reference count for the session variables without considering the internal pointer from the session globals, which allows context-dependent attackers to execute arbitrary code via a crafted string in the...

7.5CVSS6.3AI score0.09017EPSS
Exploits1References2
securityvulns
securityvulns
added 2007/03/25 12:0 a.m.36 views

MOPB-30-2007:PHP _SESSION unset() Vulnerability

Summary The session extension does not set the correct reference count value for the session variables, because it does not include the internal pointer from within the session globals. Due to this unsetting SESSION and HTTPSESSIONVARS will destroy the Hashtable containing the session data althou...

1.6AI score
Exploits0
seebug.org
seebug.org
added 2007/03/25 12:0 a.m.15 views

PHP < 4.4.5 / 5.2.1 _SESSION Deserialization Overwrite Exploit

No description provided by source. ?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || \ // // | |/ || '|/ |/ -| ' \ / -/ |||| /| || / // // ||||,||| ,|||||||,| || |||||| // // // // Proof of concept code from the Hardened-PHP...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2007/03/25 12:0 a.m.81 views

PHP < 4.4.5/5.2.1 - '_SESSION unset()' Local Overflow

?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || \ // // | |/ || '|/ |/ -| ' \ / -/ |||| /| || / // // ||||,||| ,|||||||,| || |||||| // // // // Proof of concept code from the Hardened-PHP Project // // C Copyright 2007 Stefan...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2007/03/20 12:0 a.m.30 views

MOPB-extfilter.txt

?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || \ // // | |/ || '|/ |/ -| ' \ / -/ |||| /| || / // // ||||,||| ,|||||||,| || |||||| // // // // Proof of concept code from the Hardened-PHP Project // // C Copyright 2007 Stefan...

0.1AI score
Exploits0
0day.today
0day.today
added 2007/03/14 12:0 a.m.29 views

PHP 5.2.0/5.2.1 Rejected Session ID Double Free Exploit

Exploit for linux platform in category local exploits ======================================================= PHP 5.2.0/5.2.1 Rejected Session ID Double Free Exploit ======================================================= ?php //////////////////////////////////////////////////////////////////////...

6.8AI score
Exploits0
seebug.org
seebug.org
added 2007/03/14 12:0 a.m.21 views

PHP 5.2.0/5.2.1 Rejected Session ID Double Free Exploit

No description provided by source. ?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || \ // // | |/ || '|/ |/ -| ' \ / -/ |||| /| || / // // ||||,||| ,|||||||,| || |||||| // // // // Proof of concept code from the Hardened-PHP...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/03/02 12:0 a.m.14 views

PHP 4.4.4 - Unserialize() ZVAL Reference Counter Overflow (PoC)

PHP 4.4.4 - Unserialize ZVAL Reference Counter Overflow PoC ?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || \ // // | |/ || '|/ |/ -| ' \ / -/ |||| /| || / // // ||||,||| ,|||||||,| || |||||| // // // // Proof of concept code...

0.5AI score
Exploits0
seebug.org
seebug.org
added 2007/03/02 12:0 a.m.65 views

PHP 4 Userland ZVAL Reference Counter Overflow Exploit PoC

No description provided by source. ?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || // // | |/ || '|/ |/ -| ' / -/ |||| /| || / //...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/03/01 12:0 a.m.21 views

PHP 4 - Userland ZVAL Reference Counter Overflow (PoC)

PHP 4 - Userland ZVAL Reference Counter Overflow PoC Refcount drops down to 0...

0.6AI score
Exploits0
Rows per page
Query Builder