4732 matches found
DSA-659-1 libpam-radius-auth - information leak, integer underflow
Bulletin has no description...
CVE-2004-1361
The CVE-2004-1361 issue affects Microsoft Windows where winhlp32.exe parses help files (.hlp). Affected: Windows NT, Windows 2000 (SP4), Windows XP (SP2), Windows 2003; vulnerability arises from an integer/length miscalculation in handling .hlp content, causing a heap-based buffer overflow. Conse...
CVE-2004-1361
Integer underflow in winhlp32.exe in Windows NT, Windows 2000 through SP4, Windows XP through SP2, and Windows 2003 allows remote attackers to execute arbitrary code via a malformed .hlp file, which leads to a heap-based buffer overflow...
CVE-2004-0816
Integer underflow in the firewall logging rules for iptables in Linux before 2.6.8 allows remote attackers to cause a denial of service application crash via a malformed IP packet...
CVE-2004-1018
CVE-2004-1018 affects PHP versions before 4.3.10, due to integer handling errors in shmop_write, pack, and unpack. These flaws could allow a remote attacker to bypass safe mode restrictions, cause denial of service, or execute arbitrary code. Several advisories (Ubuntu USN-99-1, Red Hat RHSA advi...
Linux Kernel 2.6.x - IPTables Logging Rules Integer Underflow Remote (PoC)
Linux Kernel 2.6.x - IPTables Logging Rules Integer Underflow Remote PoC / source: https://www.securityfocus.com/bid/11488/info It is reported that an integer underflow vulnerability is present in the iptables logging rules of the Linux kernel 2.6 branch. A remote attacker may exploit this...
Linux Kernel 2.6.x - IPTables Logging Rules Integer Underflow Remote (PoC)
/ source: https://www.securityfocus.com/bid/11488/info It is reported that an integer underflow vulnerability is present in the iptables logging rules of the Linux kernel 2.6 branch. A remote attacker may exploit this vulnerability to crash a computer that is running the affected kernel. The 2.6...
CVE-2004-1002
Integer underflow in pppd in cbcp.c for ppp 2.4.1 allows remote attackers to cause a denial of service daemon crash via a CBCP packet with an invalid length value that causes pppd to access an incorrect memory location...
CVE-2004-1002
Integer underflow in pppd in cbcp.c for ppp 2.4.1 allows remote attackers to cause a denial of service daemon crash via a CBCP packet with an invalid length value that causes pppd to access an incorrect memory location...
[UNIX] IPTables Log Integer Underflow (PoC)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...
Linux Kernel 2.6.x Firewall Logging Rules Remote DoS Exploit
Exploit for unknown platform in category dos / poc ============================================================ Linux Kernel 2.6.x Firewall Logging Rules Remote DoS Exploit ============================================================ / iptables.log.integer.underflow.POC.c CAN-2004-0816, BID11488,...
CVE-2004-0816
Integer underflow in the firewall logging rules for iptables in Linux before 2.6.8 allows remote attackers to cause a denial of service application crash via a malformed IP packet...
SUSE-SA:2004:037: kernel
The remote host is missing the patch for the advisory SUSE-SA:2004:037 kernel. An integer underflow problem in the iptables firewall logging rules can allow a remote attacker to crash the machine by using a handcrafted IP packet. This attack is only possible with firewalling enabled. We would lik...
Microsoft GDI+ Library JPEG Segment Length Integer Underflow Vulnerability
Description Microsoft Graphics Device Interface GDI+ JPEG handler is reported prone to an integer underflow vulnerability when handling JPEG format images. This issue presents itself due to a lack of sufficient sanity checks performed on certain JPEG data before this data employed as a bounds val...
tcpdump contains integer underflow vulnerability in ISAKMP "Identification Payload" handling
Overview A vulnerability in tcpdump could allow a remote attacker to cause a denial of service on an affected system. Description The tcpdump tool allows for the inspection of network packets and contains decoders for many standard protocols, including the Internet Security Association and Key...
Integer underflow vulnerability in isakmpd "Certificate Request Payload" handling
Overview A vulnerability exists in the isakmpd that could allow a remote attacker to cause a denial of service. Description The OpenBSD isakmpd establishes security associations for encrypted and authenticated IPsec network traffic. It implements the Internet Security Association and Key Manageme...
Mandrake Linux Security Advisory : tcpdump (MDKSA-2004:030)
A number of vulnerabilities were discovered in tcpdump versions prior to 3.8.1 that, if fed a maliciously crafted packet, could be exploited to crash tcpdump. These vulnerabilities include : Remote attackers can cause a denial of service crash via ISAKMP packets containing a Delete payload with a...
security flaw
Integer underflow in the isakmpidprint for TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service crash via an ISAKMP packet with an Identification payload with a length that becomes less than 8 during byte order conversion, which causes an out-of-bounds read, as...
CVE-2004-0184
Integer underflow in the isakmpidprint for TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service crash via an ISAKMP packet with an Identification payload with a length that becomes less than 8 during byte order conversion, which causes an out-of-bounds read, as...
CVE-2004-0220
isakmpd in OpenBSD 3.4 and earlier allows remote attackers to cause a denial of service via an ISAKMP packet with a malformed Cert Request payload, which causes an integer underflow that is used in a malloc operation that is not properly handled, as demonstrated by the Striker ISAKMP Protocol Tes...