php -- memory_limit related vulnerability

Stefan Esser of e-matters discovered a condition within PHP that may lead to remote execution of arbitrary code. The memorylimit facility is used to notify functions when memory contraints have been met. Under certain conditions, the entry into this facility is able to interrupt functions such as...

Mac OS X Multiple Vulnerabilities (Security Update 2003-12-19)

The remote host is missing Security Update 2003-12-19. This security update includes the following components : - AFP Server - cd9600.util - Directory Services - fetchmail - fsusage - rsync - System Initialization For MacOS X 10.3, it also includes : - ASN.1 Decoding for PKI This update contains...

CVE-2004-0535

CVE-2004-0535 relates to the Linux kernel's e1000 NIC driver (2.4.x and earlier) where memory used by the driver was not properly initialized before access. This could permit a local attacker to read portions of kernel memory. The issue is documented and linked to several vendor advisories (e.g.,...

CVE-2004-0535

The e1000 driver for Linux kernel 2.4.26 and earlier does not properly initialize memory before using it, which allows local users to read portions of kernel memory. NOTE: this issue was originally incorrectly reported as a "buffer overflow" by some sources...

security flaw

Real time clock RTC routines in Linux kernel 2.4.23 and earlier do not properly initialize their structures, which could leak kernel data to user space...

Samba 3.0.x password initialization bug

From the Samba 3.0.2 release notes: Security Announcement: It has been confirmed that previous versions of Samba 3.0 are susceptible to a password initialization bug that could grant an attacker unauthorized access to a user account created by the mksmbpasswd.sh shell script...

CVE-2003-0984

Real time clock RTC routines in Linux kernel 2.4.23 and earlier do not properly initialize their structures, which could leak kernel data to user space...

SudBox Boutique 1.2 - 'login.php' Authentication Bypass

source: https://www.securityfocus.com/bid/7651/info A vulnerability has been reported for SudBox Boutique. The problem occurs due to insufficient initialization of variables and may allow an unauthorized user to gain authenticate. Specifically, by making a malicious request to the login.php scrip...

CVE-2002-0082

The dbm and shm session cache code in modssl before 2.8.7-1.3.23, and Apache-SSL before 1.3.22+1.46, does not properly initialize memory using the i2dSSLSESSION function, which allows remote attackers to use a buffer overflow to execute arbitrary code via a large client certificate that is signed...

[SECURITY] [DSA 117-1] New CVS packages fix potential security problems

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 117-1 [email protected] http://www.debian.org/security/ Martin Schulze March 5th, 2002 -...

[SECURITY] [DSA 117-1] New CVS packages fix potential security problems

-------------------------------------------------------------------------- Debian Security Advisory DSA 117-1 [email protected] http://www.debian.org/security/ Martin Schulze March 5th, 2002 - -------------------------------------------------------------------------- Package : cvs Vulnerability...

[SECURITY] [DSA 117-1] New CVS packages fix potential security problems

-------------------------------------------------------------------------- Debian Security Advisory DSA 117-1 [email protected] http://www.debian.org/security/ Martin Schulze March 5th, 2002 - -------------------------------------------------------------------------- Package : cvs Vulnerability...

OpenSSH does not initialize PAM session thereby allowing PAM restrictions to be bypassed

Overview OpenSSH is an implementation of the Secure Shell SSH protocol. It can be configured to use Linux Pluggable Authentication Modules PAM for added authentication. A vulnerability exists in OpenSSH, and perhaps other implementations of SSH, which can allow to potentially bypass PAM...

CVE-2001-0475

index.php in Jelsoft vBulletin does not properly initialize a PHP variable that is used to store template information, which allows remote attackers to execute arbitrary PHP code via special characters in the templatecache parameter...

CVE-2001-0160

Lucent/ORiNOCO WaveLAN cards generate predictable Initialization Vector IV values for the Wireless Encryption Protocol WEP which allows remote attackers to quickly compile information that will let them decrypt messages...

Дырка в phpWebLog

Из-за некорректной инициализации переменных пользователь может получить доступ к администрированию...

Bypassing admin authentication in phpWebLog

Note: Although this software is still in beta stage, there are many websites using it, so i think it's a relevant issue. Author: Jason Hines Homepage: http://www.phpweblog.org | http://sourceforge.net/projects/phpweblog/ Version: 0.4.2 others? Problem: in common.inc.php, $CONF is not properly...

Дырка в HP-UX net.init

Инициализирующий скрипт некорректно работает с временными файлами, в результате любой файл можно испортить с помощью символьных линков...

[SECURITY] New version of canna released.

Package : canna Problem type : remote exploit Debian-specific: no The canna package as distributed in Debian GNU/Linux 2.1 can be remotely exploited to gain access. This could be done by overflowing a buffer by sending a SRINIT command with a very long usernamd or groupname. This has been fixed i...

DEBIAN-CVE-2023-53835

In the Linux kernel, the following vulnerability has been resolved: ext4: don't clear SBRDONLY when remounting r/w until quota is re-enabled When a file system currently mounted read/only is remounted read/write, if we clear the SBRDONLY flag too early, before the quota is initialized, and there ...