wu-ftpd 2.6.2 off-by-one Remote Root Exploit

Exploit for linux platform in category remote exploits ============================================ wu-ftpd 2.6.2 off-by-one Remote Root Exploit ============================================ / wu-ftpd v2.6.2 off-by-one remote 0day exploit. exploit by "you dong-hun"Xpl017Elz Brute-Force function...

cups DoS

DoS on incomplete header...

OpenBB 1.0/1.1 - 'board.php' SQL Injection

source: https://www.securityfocus.com/bid/7404/info It has been reported that OpenBB does not properly check input passed via the 'board.php' script. Because of this, an attacker may be able to inject arbitrary commands to the database in the context of the bulletin board software. The consequenc...

i cracked restriction of 'zone' in mozilla.

i cracked restriction of 'zone' in mozilla. "that's all" is the end of file if you are in a hurry tested OS:"Windows Server 2003" NETSCAPE Ver String: "Mozilla/5.0 Windows; U; Windows NT 5.2; zh-CN; rv:1.0.1 Gecko/20020823 Netscape/7.0 " downloaded on "2003/3/31 UTC+800" MOZILLA Ver String:...

Syscall implementation could lead to whether or not a file exists

include stdlib.h include unistd.h include stdio.h include sys/types.h include fcntl.h ifndef ONOFOLLOW define ONOFOLLOW 0400000 / don't follow links / endif ifndef OLARGEFILE define OLARGEFILE 0100000 endif int flags = ORDONLY|OEXCL|OSYNC|ONOCTTY|ONOFOLLOW; / taken from scuts format string...

TCP/IP implementations handle unusual flag combinations inconsistently

Overview Various vendors' TCP/IP implementations handle packets containing unusual flag combinations in different ways, which may lead to a violation of implicit or explicit security policies. Description Background on TCP/IP Connection Semantics To establish a TCP connection, a client and server...

MS02-045: Unchecked buffer in Network Share Provider (326830)

Due to a flaw in Microsoft's SMB implementation, the remote host is vulnerable to a denial of service attack. By sending a specially crafted packet request, an attacker could launch a denial of service, causing the affected host to crash. Note that this vulnerability is not exploitable without...

Filtering devices spotting

SECURITY ALERT Systems Affected 100 of packet filtering systems included commercial embedded devices no unaffected system known at the moment Risk low Overview Multiple vendors' implementations of a packet filtering engine doesn't check the level 4 checksum. This could be used by an attacker to...

CVE-2002-1983

The timer implementation in QNX RTOS 6.1.0 allows local users to cause a denial of service hang and possibly execute arbitrary code by creating multiple timers with a 1-ms tick...

[SECURITY] [DSA 201-1] New Free/SWan packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 201-1 [email protected] http://www.debian.org/security/ Martin Schulze December 2nd, 2002 http://www.debian.org/security/faq -...

MS02-063: Unchecked Buffer in PPTP Implementation Could Enable DOS Attacks (329834)

The remote version of Windows contains a flaw in its PPTP implementation. If the remote host is configured to act as a PPTP server, a remote attacker can send a specially crafted packet to corrupt the kernel memory and crash the remote system. C Tenable Network Security, Inc. include"compat.inc";...

CVE-2002-1290

The CVE-2002-1290 entry describes a vulnerability in the Microsoft Java implementation used by Internet Explorer. An applet can abuse the INativeServices ClipBoardGetText/ClipBoardSetText interfaces to read and modify the user’s clipboard contents. This yields potential unauthorized disclosure an...

idefense.smrsh.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDEFENSE Security Advisory 10.01.02 Sendmail smrsh bypass vulnerabilities DESCRIPTION It is possible for an attacker to bypass the restrictions imposed by The Sendmail Consortium’s Restricted Shell SMRSH and execute a binary of his choosing by inserti...

NetBSD Security Advisory 2002-018: Multiple security isses with kfd daemon

-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2002-018 ================================= Topic: Multiple security isses with kfd daemon Version: NetBSD-current: source prior to September 10, 2002 NetBSD 1.6: affected NetBSD-1.5.3: affected NetBSD-1.5.2: affected NetBSD-1.5.1: affect...

CORE-20020618: Vulnerabilities in Windows SMB (DoS)

CORE SECURITY TECHNOLOGIES http://www.corest.com Vulnerability report for Windows SMB DoS Date Published: 2002-08-22 Last Update: 2002-08-22 Advisory ID: CORE-20020618 Bugtraq ID: N/A CVE: CAN-2002-0724 CERT: VU311619, VU342243,VU250635 Title: Denial of Service Vulnerabilities in Windows SMB...

TinySSL Vendor Statement: Basic Constraints Vulnerability

TinySSL is an open source, compact 125k jar, SSLv3 client implementation written in Java 1.1+. Version 1.02 and earlier is vulnerable to the attack posted last week by Mike Benham: http://online.securityfocus.com/archive/1/286290 An updated version 1.03 has been posted which fixes this...

Multiple vendors' Internet Key Exchange (IKE) implementations do not properly handle IKE response packets

Overview Internet Key Exchange IKE implementations from several vendors contain buffer overflows and denial-of-service conditions. The buffer overflow vulnerabilities could permit an attacker to execute arbitrary code on a vulnerable system. Description The CERT/CC has received a report describin...

Bug in Eupload

Bug in Eupload ----------------- | By ZeroByte || [email protected] | | ICQ 98177781 | 1.1 - What is Eupload? Eupload, is an web utility used to facilitate the update of web sites by means of scripts CGI. This tool allows the ascent of files to the servant by means of an web interface. The...

KPMG-2002034: Jigsaw Webserver DOS device DoS

-------------------------------------------------------------------- Title: Jigsaw Webserver DOS device DoS BUG-ID: 2002034 Released: 17th Jul 2002 -------------------------------------------------------------------- Problem: ======== A malicious user can tie up working threads on the web server...

[CORE-20020528] Multiple vulnerabilities in ToolTalk Database server

CORE SECURITY TECHNOLOGIES http://www.corest.com Multiple vulnerabilities in Tooltalk database server Date Published: 2002-07-10 Last Update: 2002-07-10 Advisory ID: CORE-20020528 Bugtraq ID: 5082,5083 CVE: CAN-2002-0677, CAN-2002-0678 CERT: VU975403 VU299816 Title: Multiple vulnerabilities in...