4156 matches found
CVE-2005-0199
Integer underflow in the ListsMakeMask function in lists.c in ngIRCd before 0.8.2 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a long MODE line that causes an incorrect length calculation, which leads to a buffer overflow...
CVE-2004-1002
Integer underflow in pppd in cbcp.c for ppp 2.4.1 allows remote attackers to cause a denial of service daemon crash via a CBCP packet with an invalid length value that causes pppd to access an incorrect memory location...
CVE-2004-1002
Integer underflow in pppd in cbcp.c for ppp 2.4.1 allows remote attackers to cause a denial of service daemon crash via a CBCP packet with an invalid length value that causes pppd to access an incorrect memory location...
security flaw
Multiple integer handling errors in PHP before 4.3.10 allow attackers to bypass safe mode restrictions, cause a denial of service, or execute arbitrary code via 1 a negative offset value to the shmopwrite function, 2 an "integer overflow/underflow" in the pack function, or 3 an "integer...
CVE-2005-0199
Integer underflow in the ListsMakeMask function in lists.c in ngIRCd before 0.8.2 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a long MODE line that causes an incorrect length calculation, which leads to a buffer overflow...
CVE-2005-0199
ngIRCd is vulnerable to an integer underflow in Lists_MakeMask() in lists.c. In all versions before 0.8.2, a long MODE line can trigger an incorrect length calculation, causing a buffer overflow that enables a remote attacker to crash the server and possibly execute arbitrary code. The issue is c...
ngIRCd: Buffer overflow
Background ngIRCd is a free open source daemon for Internet Relay Chat IRC. Description Florian Westphal discovered a buffer overflow caused by an integer underflow in the ListsMakeMask function of lists.c. Impact A remote attacker can exploit this buffer overflow to crash the ngIRCd daemon and...
[SECURITY] [DSA 659-1] New libpam-radius-auth packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 659-1 [email protected] http://www.debian.org/security/ Martin Schulze January 26th, 2005 http://www.debian.org/security/faq -...
DSA-659-1 libpam-radius-auth - information leak, integer underflow
Bulletin has no description...
Mandrake Linux Security Advisory : kernel (MDKSA-2005:022)
A number of vulnerabilities are fixed in the 2.4 and 2.6 kernels with this advisory : - Multiple race conditions in the terminal layer of 2.4 and 2.6 kernels prior to 2.6.9 can allow a local attacker to obtain portions of kernel data or allow remote attackers to cause a kernel panic by switching...
Debian DSA-659-1 : libpam-radius-auth - information leak, integer underflow
Two problems have been discovered in the libpam-radius-auth package, the PAM RADIUS authentication module. The Common Vulnerabilities and Exposures Project identifies the following problems : - CAN-2004-1340 The Debian package accidentally installed its configuration file /etc/pamradiusauth.conf...
CVE-2004-1361
The CVE-2004-1361 issue affects Microsoft Windows where winhlp32.exe parses help files (.hlp). Affected: Windows NT, Windows 2000 (SP4), Windows XP (SP2), Windows 2003; vulnerability arises from an integer/length miscalculation in handling .hlp content, causing a heap-based buffer overflow. Conse...
CVE-2004-0816
Integer underflow in the firewall logging rules for iptables in Linux before 2.6.8 allows remote attackers to cause a denial of service application crash via a malformed IP packet...
CVE-2004-1361
Integer underflow in winhlp32.exe in Windows NT, Windows 2000 through SP4, Windows XP through SP2, and Windows 2003 allows remote attackers to execute arbitrary code via a malformed .hlp file, which leads to a heap-based buffer overflow...
CVE-2004-1018
CVE-2004-1018 affects PHP versions before 4.3.10, due to integer handling errors in shmop_write, pack, and unpack. These flaws could allow a remote attacker to bypass safe mode restrictions, cause denial of service, or execute arbitrary code. Several advisories (Ubuntu USN-99-1, Red Hat RHSA advi...
Linux Kernel 2.6.x - IPTables Logging Rules Integer Underflow Remote (PoC)
Linux Kernel 2.6.x - IPTables Logging Rules Integer Underflow Remote PoC / source: https://www.securityfocus.com/bid/11488/info It is reported that an integer underflow vulnerability is present in the iptables logging rules of the Linux kernel 2.6 branch. A remote attacker may exploit this...
Linux Kernel 2.6.x - IPTables Logging Rules Integer Underflow Remote (PoC)
/ source: https://www.securityfocus.com/bid/11488/info It is reported that an integer underflow vulnerability is present in the iptables logging rules of the Linux kernel 2.6 branch. A remote attacker may exploit this vulnerability to crash a computer that is running the affected kernel. The 2.6...
CVE-2004-1002
Integer underflow in pppd in cbcp.c for ppp 2.4.1 allows remote attackers to cause a denial of service daemon crash via a CBCP packet with an invalid length value that causes pppd to access an incorrect memory location...
CVE-2004-1002
Integer underflow in pppd in cbcp.c for ppp 2.4.1 allows remote attackers to cause a denial of service daemon crash via a CBCP packet with an invalid length value that causes pppd to access an incorrect memory location...
[UNIX] IPTables Log Integer Underflow (PoC)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...