Cisco Security Advisory: Vulnerabilities in the Internet Key Exchange Xauth Implementation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: ======================== Vulnerabilities in the Internet Key Exchange Xauth Implementation ================================================================= Revision 1.0 For Public Release 2005 April 6 1600 UTC -...

Active Auction House - 'ItemInfo.asp' SQL Injection

source: https://www.securityfocus.com/bid/13034/info Active Auction House is reportedly affected by a SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in a SQL query. Successful exploitation could result in a...

SiteEnable - SQL Injection

SiteEnable - SQL Injection source: https://www.securityfocus.com/bid/12985/info SiteEnable is reported prone to an SQL injection vulnerability. This vulnerability could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks...

tetex security update

CentOS Errata and Security Advisory CESA-2005:354 Updated tetex packages that fix several integer overflows are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. TeTeX is an implementation of TeX for Linux or UNIX systems. TeX take...

CVE-2003-1112

The CVE-2003-1112 entry applies to the SIP implementation in Ingate Firewall and Ingate SIParator prior to version 3.1.3. A crafted INVITE message can trigger denial of service and, possibly, remote code execution, as demonstrated by the OUSPG PROTOS c07-sip tests. Remediation: upgrade to version...

Microsoft Windows XP2003 - Remote Denial of Service

Microsoft Windows XP2003 - Remote Denial of Service / Added Line 1 - BSDSOURCE!!!! /str0ke / define BSDSOURCE include include include include include include include include include include include / Windows Server 2003 and XP SP2 remote DoS exploit Tested under OpenBSD 3.6 at WinXP SP 2 Vuln by...

PuTTY SSH client integer overflow

Integer overflow in SFTP SSH File Transfer Protocol implementation...

CVE-2005-0155

The PerlIO implementation in Perl 5.8.0, when installed with setuid support sperl, allows local users to create arbitrary files via the PERLIODEBUG variable...

CVE-2005-0156

Buffer overflow in the PerlIO implementation in Perl 5.8.0, when installed with setuid support sperl, allows local users to execute arbitrary code by setting the PERLIODEBUG variable and executing a Perl script whose full pathname contains a long directory tree...

Eternal Lines Web Server DoS

Concurrent connections number is limited and timeout is not implemented...

Windows 9x/NT/2k/XP PEB method 35 bytes

Windows 9x/NT/2k/XP PEB method 35 bytes. Shellcode exploit for win32 platform /This is a 35 byte C implementation of the use of the PEB method to get the kernel32 base address on Windows. This is generic code designed to run on both Windows 9x and NT based systems. The code has been optimized to...

CVE-2004-2637

The NAT implementation in Zonet ZSR1104WE Wireless Router Runtime Code Version 2.41 converts IP addresses of inbound connections to the IP address of the router, which allows remote attackers to bypass intended security restrictions...

Hydra: CVS

This plugin runs Hydra to find CVS accounts and passwords by brute force. To use this plugin, enter the 'Logins file' and the 'Passwords file' under the 'Hydra NASL wrappers options' advanced settings block. TRUSTED...

Hydra: IMAP

This plugin runs Hydra to find IMAP accounts and passwords by brute force. To use this plugin, enter the 'Logins file' and the 'Passwords file' under the 'Hydra NASL wrappers options' advanced settings block. TRUSTED...

Opera Web browser 7.54 java implementation - Multiple Vulnerabilities (2)

source: https://www.securityfocus.com/bid/11712/info Multiple remote vulnerabilities reportedly affect the Opera Web Browser Java implementation. These issues are due to the insecure proprietary design of the Web browser's Java implementation. These issues may allow an attacker to craft a Java...

opera Web browser 7.54 java implementation - Multiple Vulnerabilities (3)

source: https://www.securityfocus.com/bid/11712/info Multiple remote vulnerabilities reportedly affect the Opera Web Browser Java implementation. These issues are due to the insecure proprietary design of the Web browser's Java implementation. These issues may allow an attacker to craft a Java...

Opera Web browser 7.54 java implementation - Multiple Vulnerabilities (1)

source: https://www.securityfocus.com/bid/11712/info Multiple remote vulnerabilities reportedly affect the Opera Web Browser Java implementation. These issues are due to the insecure proprietary design of the Web browser's Java implementation. These issues may allow an attacker to craft a Java...

opera Web browser 7.54 java implementation - Multiple Vulnerabilities (3)

opera Web browser 7.54 java implementation - Multiple Vulnerabilities 3 source: https://www.securityfocus.com/bid/11712/info Multiple remote vulnerabilities reportedly affect the Opera Web Browser Java implementation. These issues are due to the insecure proprietary design of the Web browser's Ja...

Opera Web browser 7.54 java implementation - Multiple Vulnerabilities (2)

Opera Web browser 7.54 java implementation - Multiple Vulnerabilities 2 source: https://www.securityfocus.com/bid/11712/info Multiple remote vulnerabilities reportedly affect the Opera Web Browser Java implementation. These issues are due to the insecure proprietary design of the Web browser's Ja...

Apache 2.0.52 Multiple Space Header DoS (c code)

Exploit for unknown platform in category dos / poc ================================================ Apache 2.0.52 Multiple Space Header DoS c code ================================================ /// Apache 2.0.52 and earlier DoS - Chintan Trivedi include "stdafx.h" include "winsock.h" include...