229 matches found
CVE-2008-0226
Multiple buffer overflows in yaSSL 1.7.5 and earlier, as used in MySQL and possibly other products, allow remote attackers to execute arbitrary code via 1 the ProcessOldClientHello function in handshake.cpp or 2 "inputbuffer& operator" in yasslimp.cpp...
IMail IMAP Service DELETE 命令溢出漏洞
Muts 在 IMail Server 中发现一个安全漏洞, 能被恶意用户利用威胁到系统的安全。 这个漏洞的成因是由于IMAP service "IMAP4D32.exe" 在处理 "DELETE" 命令时没有进行边界检查. 如果用户提交"DELETE"命令时附带超长的参数,约 300 字节 将导致缓冲区溢出。 成功利用者可以执行任意代码。 这个风险在 IMAIL 8.13 版本中发现,其它版本可能也受影响。 IMail Server 8.x 限制使用或暂时停用Imail Server !/usr/bin/perl -w IPSwitch-IMail-8.13-DELETE...
ZoneAlarm Insufficient validation of 'vsdatant' driver input buffer Vulnerability
Hello, We would like to inform you about a vulnerability in ZoneAlarm 6. Description: ZoneAlarm insufficiently protects its driver Devicevsdatant against a manipulation by malicious applications and it fails to validate its input buffer. It is possible to open the driver's device and send arbitra...
[Full-disclosure] Norton Insufficient validation of 'SymTDI' driver input buffer
Hello, We would like to inform you about a vulnerability in Symantec Norton products. Description: Norton insufficiently protects its driver DeviceSymEvent against a manipulation by malicious applications and it fails to validate its input buffer. It is possible to open this driver and send...
Outpost Insufficient validation of 'SandBox' driver input buffer
Hello, We would like to inform you about a vulnerability in Outpost Firewall PRO 4.0. Description: Outpost insufficiently protects its driver DeviceSandBox against a manipulation by malicious applications and it fails to validate its input buffer. It is possible to open this driver and send...
bogofilter -- heap corruption through excessively long words
Matthias Andree reports: Bogofilter's/bogolexer's input handling in version 0.96.2 was not keeping track of its output buffers properly and could overrun a heap buffer if the input contained words whose length exceeded 16,384 bytes, the size of flex's input buffer. A "word" here refers to a...
Microsoft Windows Server 2000 - Telnet Username Denial of Service
Microsoft Windows Server 2000 - Telnet Username Denial of Service source: https://www.securityfocus.com/bid/2838/info Due to a flaw in the implementation of the telnet service, it is possible for a remote client to perform a denial of service attack against a host. If approximately 4300 character...
602Pro Lan Suite 2000a - Long HTTP Request Denial of Service
source: https://www.securityfocus.com/bid/2543/info A denial of service vulnerability exists in versions of 602Pro Lan Suite. A remote attacker may connect to port 80 of the vulnerable host. Via this connection, the attacker submits a long request composed of at least 1033 characters. This excess...
602Pro Lan Suite 2000a - Long HTTP Request Denial of Service
602Pro Lan Suite 2000a - Long HTTP Request Denial of Service source: https://www.securityfocus.com/bid/2543/info A denial of service vulnerability exists in versions of 602Pro Lan Suite. A remote attacker may connect to port 80 of the vulnerable host. Via this connection, the attacker submits a...