CVE-2007-1862

The CVE-2007-1862 issue affects Apache 2.2.4’s mod_mem_cache recall_headers, where not all header levels are copied, potentially causing HTTP responses to include previously used data. This could lead to information disclosure to remote attackers. Connected advisories confirm affected packages an...

CVE-2007-2907

Unspecified vulnerability in SSL-Explorer before 0.2.13 allows remote authenticated users to enter redirect URLs containing 1 JavaScript or 2 HTTP headers via an unspecified vector, possibly the forwardTo parameter to redirect.do. NOTE: the impact might be cross-site scripting XSS or HTTP request...

Crlf injection

CRLF injection vulnerability in index.php in Drake CMS 0.4.0 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the lang parameter. NOTE: Drake CMS has only a beta version available, and the vendor has previously stated "We d...

CVE-2007-2618

The CVE-2007-2618 issue affects Drake CMS 0.4.0, identifying a CRLF injection vulnerability in index.php. The root cause is a CRLF sequence in the lang parameter that enables an attacker to inject arbitrary HTTP headers and perform HTTP response splitting. Public details describe the vulnerable c...

Crlf injection

Multiple CRLF injection vulnerabilities in Devellion CubeCart 3.0.15 allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in a cookie name beginning with "ccSID" to 1 cart.php or 2 index.php...

CVE-2007-2550

Multiple CRLF injection vulnerabilities in Devellion CubeCart 3.0.15 allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in a cookie name beginning with "ccSID" to 1 cart.php or 2 index.php...

Crlf injection

CRLF injection vulnerability in www/delivery/ck.php in Openads 2.3 aka Max Media Manager, MMM before 0.3.31-alpha-pr3 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the destination parameter. NOTE: some of these details a...

Crlf injection

Multiple CRLF injection vulnerabilities in adclick.php in a Openads phpAdsNew 2.0.11 and earlier and b Openads for PostgreSQL phpPgAds 2.0.11 and earlier allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in 1 the dest parameter...

CVE-2007-2046

Multiple CRLF injection vulnerabilities in adclick.php in a Openads phpAdsNew 2.0.11 and earlier and b Openads for PostgreSQL phpPgAds 2.0.11 and earlier allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in 1 the dest parameter...

CVE-2007-2047

Openads 2.3 (aka Max Media Manager, MMM) is affected by a CRLF injection in www/delivery/ck.php, tractable before 0.3.31-alpha-pr3. The vulnerability allows remote attackers to inject arbitrary HTTP headers and perform HTTP response splitting via CRLF sequences in the destination parameter. Impac...

CVE-2007-1204

Stack-based buffer overflow in the Universal Plug and Play UPnP service in Microsoft Windows XP SP2 allows remote attackers on the same subnet to execute arbitrary code via crafted HTTP headers in request or notification messages, which trigger memory corruption...

Stack overflow

Stack-based buffer overflow in the Universal Plug and Play UPnP service in Microsoft Windows XP SP2 allows remote attackers on the same subnet to execute arbitrary code via crafted HTTP headers in request or notification messages, which trigger memory corruption...

CVE-2007-1204

The CVE-2007-1204 issue affects Microsoft Windows XP SP2 with the UPnP service. It is a stack-based buffer overflow triggered by specially crafted HTTP headers in UPnP requests/notifications, allowing a remote attacker on the same subnet to execute arbitrary code in the context of the vulnerable ...

CVE-2007-1204

Stack-based buffer overflow in the Universal Plug and Play UPnP service in Microsoft Windows XP SP2 allows remote attackers on the same subnet to execute arbitrary code via crafted HTTP headers in request or notification messages, which trigger memory corruption...

Crlf injection

CRLF injection vulnerability in IBM WebSphere Application Server WAS before 6.0.2.19 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a single CRLF sequence in a context that is not a valid multi-line header...

CVE-2007-1608

CVE-2007-1608 affects IBM WebSphere Application Server (WAS) 6.0.x prior to 6.0.2.19. The root cause is a CRLF injection in input handling that allows remote attackers to inject arbitrary HTTP headers and perform HTTP response splitting. Impact is exposure of manipulated response headers with pot...

PHP-Stats 0.1.9.1b - 'PC-REMOTE-ADDR' SQL Injection

126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont++;if $cont==15 $cont=0; $result.="\r\n"; $exa.="\r\n"; return $exa."\r\n".$result; $proxyregex = '\b\d1,3.\d1,3.\d1,3.\d1,3:\d1,5...

CVE-2006-7123

Multiple SQL injection vulnerabilities in BSQ Sitestats component for Joomla 1.8.0, and possibly other versions before 2.2.1, allow remote attackers to execute arbitrary SQL commands via 1 unspecified parameters when importing the a ip-to-country.csv file; and the 2 HTTP Referer, 3 HTTP User Agen...

PHP <= 4.4.4 unserialize() ZVAL Reference Counter Overflow Exploit PoC

No description provided by source. ?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || \ // // | |/ || '|/ |/ -| ' \ / -/ |||| /| || / // // ||||,||| ,|||||||,| || |||||| // // // // Proof of concept code from the Hardened-PHP...

Mandrake Linux Security Advisory : libsoup (MDKSA-2007:029)

The soupheadersparse function in soup-headers.c for libsoup HTTP library before 2.2.99 allows remote attackers to cause a denial of service crash via malformed HTTP headers, probably involving missing fields or values. The updated packages have been patched to correct this issue. %NASLMINLEVEL...