MS02-045: Unchecked buffer in Network Share Provider (326830)

Due to a flaw in Microsoft's SMB implementation, the remote host is vulnerable to a denial of service attack. By sending a specially crafted packet request, an attacker could launch a denial of service, causing the affected host to crash. Note that this vulnerability is not exploitable without...

Filtering devices spotting

SECURITY ALERT Systems Affected 100 of packet filtering systems included commercial embedded devices no unaffected system known at the moment Risk low Overview Multiple vendors' implementations of a packet filtering engine doesn't check the level 4 checksum. This could be used by an attacker to...

CVE-2002-1983

The timer implementation in QNX RTOS 6.1.0 allows local users to cause a denial of service hang and possibly execute arbitrary code by creating multiple timers with a 1-ms tick...

[SECURITY] [DSA 201-1] New Free/SWan packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 201-1 [email protected] http://www.debian.org/security/ Martin Schulze December 2nd, 2002 http://www.debian.org/security/faq -...

MS02-063: Unchecked Buffer in PPTP Implementation Could Enable DOS Attacks (329834)

The remote version of Windows contains a flaw in its PPTP implementation. If the remote host is configured to act as a PPTP server, a remote attacker can send a specially crafted packet to corrupt the kernel memory and crash the remote system. C Tenable Network Security, Inc. include"compat.inc";...

CVE-2002-1290

The CVE-2002-1290 entry describes a vulnerability in the Microsoft Java implementation used by Internet Explorer. An applet can abuse the INativeServices ClipBoardGetText/ClipBoardSetText interfaces to read and modify the user’s clipboard contents. This yields potential unauthorized disclosure an...

idefense.smrsh.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDEFENSE Security Advisory 10.01.02 Sendmail smrsh bypass vulnerabilities DESCRIPTION It is possible for an attacker to bypass the restrictions imposed by The Sendmail Consortium’s Restricted Shell SMRSH and execute a binary of his choosing by inserti...

NetBSD Security Advisory 2002-018: Multiple security isses with kfd daemon

-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2002-018 ================================= Topic: Multiple security isses with kfd daemon Version: NetBSD-current: source prior to September 10, 2002 NetBSD 1.6: affected NetBSD-1.5.3: affected NetBSD-1.5.2: affected NetBSD-1.5.1: affect...

CORE-20020618: Vulnerabilities in Windows SMB (DoS)

CORE SECURITY TECHNOLOGIES http://www.corest.com Vulnerability report for Windows SMB DoS Date Published: 2002-08-22 Last Update: 2002-08-22 Advisory ID: CORE-20020618 Bugtraq ID: N/A CVE: CAN-2002-0724 CERT: VU311619, VU342243,VU250635 Title: Denial of Service Vulnerabilities in Windows SMB...

TinySSL Vendor Statement: Basic Constraints Vulnerability

TinySSL is an open source, compact 125k jar, SSLv3 client implementation written in Java 1.1+. Version 1.02 and earlier is vulnerable to the attack posted last week by Mike Benham: http://online.securityfocus.com/archive/1/286290 An updated version 1.03 has been posted which fixes this...

Multiple vendors' Internet Key Exchange (IKE) implementations do not properly handle IKE response packets

Overview Internet Key Exchange IKE implementations from several vendors contain buffer overflows and denial-of-service conditions. The buffer overflow vulnerabilities could permit an attacker to execute arbitrary code on a vulnerable system. Description The CERT/CC has received a report describin...

Bug in Eupload

Bug in Eupload ----------------- | By ZeroByte || [email protected] | | ICQ 98177781 | 1.1 - What is Eupload? Eupload, is an web utility used to facilitate the update of web sites by means of scripts CGI. This tool allows the ascent of files to the servant by means of an web interface. The...

KPMG-2002034: Jigsaw Webserver DOS device DoS

-------------------------------------------------------------------- Title: Jigsaw Webserver DOS device DoS BUG-ID: 2002034 Released: 17th Jul 2002 -------------------------------------------------------------------- Problem: ======== A malicious user can tie up working threads on the web server...

[CORE-20020528] Multiple vulnerabilities in ToolTalk Database server

CORE SECURITY TECHNOLOGIES http://www.corest.com Multiple vulnerabilities in Tooltalk database server Date Published: 2002-07-10 Last Update: 2002-07-10 Advisory ID: CORE-20020528 Bugtraq ID: 5082,5083 CVE: CAN-2002-0677, CAN-2002-0678 CERT: VU975403 VU299816 Title: Multiple vulnerabilities in...

CVE-2001-1147

The PAM implementation in /bin/login of the util-linux package before 2.11 causes a password entry to be rewritten across multiple PAM calls, which could provide the credentials of one user to a different user, when used in certain PAM modules such as pamlimits...

CVE-2002-0381

The TCP implementation in various BSD operating systems tcpinput.c does not properly block connections to broadcast addresses, which could allow remote attackers to bypass intended filters via packets with a unicast link layer address and an IP broadcast address...

CVE-2001-1376

Buffer overflow in digest calculation function of multiple RADIUS implementations allows remote attackers to cause a denial of service and possibly execute arbitrary code via shared secret data...

CVE-2002-0510

CVE-2002-0510 describes a fingerprinting flaw in the UDP/IP stack of Linux 2.4.x: the IP Identification field is kept at 0 for non-fragmented packets, enabling remote observers to determine if a target runs Linux. The available connected documents reiterate the Linux kernel vulnerability and refe...

CVE-2002-0510

The UDP implementation in Linux 2.4.x kernels keeps the IP Identification field at 0 for all non-fragmented packets, which could allow remote attackers to determine that a target system is running Linux...

QNX 6.x - ptrace() Arbitrary Process Modification

QNX 6.x - ptrace Arbitrary Process Modification source: https://www.securityfocus.com/bid/4919/info The QNX implementation of 'ptrace' is reportedly insecure. An unprivileged process may attach to a setuid program without restriction. Since the attaching process may view or edit memory, an attack...