1039 matches found
GNU libc regcomp() stack exhaustion denial of service
Overview The regcomp function of GNU libc is susceptible to stack exhaustion which may result in a denial of service. Description It is possible to trigger deep recursion which results in stack exhaustion. An example trigger is: grep -E ".10,10,10,10,10," --- Impact An attacker may be able to...
ProFTPD IAC Remote Root Exploit
No description provided by source. Exploit Title: ProFTPD IAC Remote Root Exploit Date: 7 November 2010 Author: Kingcope use IO::Socket; $numtargets = 13; @targets = Plain Stack Smashing Confirmed to work "FreeBSD 8.1 i386, ProFTPD 1.3.3a Server binary", PLATFORM SPEC "FreeBSD", OPERATING SYSTEM ...
ProFTPD IAC Remote Root Exploit
Exploit Title: ProFTPD IAC Remote Root Exploit Date: 7 November 2010 Author: Kingcope use IO::Socket; $numtargets = 13; @targets = Plain Stack Smashing Confirmed to work "FreeBSD 8.1 i386, ProFTPD 1.3.3a Server binary", PLATFORM SPEC "FreeBSD", OPERATING SYSTEM 0, EXPLOIT STYLE 0xbfbfe000, OFFSET...
UBUNTU-CVE-2010-3192
Certain run-time memory protection mechanisms in the GNU C Library aka glibc or libc6 print argv0 and backtrace information, which might allow context-dependent attackers to obtain sensitive information from process memory by executing an incorrect program, as demonstrated by a setuid program tha...
Oracle Java 6 - OBJECT tag launchjnlpdocbase Remote Buffer Overflow
Oracle Java 6 - OBJECT tag launchjnlpdocbase Remote Buffer Overflow Source: http://code.google.com/p/skylined/issues/detail?id=23 SSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSS ,dSSSSSSSSSSSS SSSS ,dSSY' SSSS SSSS SSSS SSSS SSSSb, SS...
Oracle Java 6 - OBJECT tag 'launchjnlp'/'docbase' Remote Buffer Overflow
Source: http://code.google.com/p/skylined/issues/detail?id=23 SSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSSS ,dSSSSSSSSSSSS SSSS ,dSSY' SSSS SSSS SSSS SSSS SSSSb, SSSS ,dSSSSSSSSSSSS SSSSSSSSSSSSb, SSSS SSSS ,dSSY' SSSS SSSS SSSS SSS...
Multiple Vendors libc/glob(3) Resource Exhaustion
Source: http://securityreason.com/securityalert/7822 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Multiple Vendors libc/glob3 resource exhaustion +0day remote ftpd-anon Author: Maksymilian Arciemowicz http://netbsd.org/donations/ http://securityreason.com/ http://cxib.net/ Date: - - Dis.:...
FTP Flaw Could Disable Wide Range of Servers
FTP Flaw Could Disable Wide Range of Servers An easily exploitable flaw exists that could enable an anonymous hacker to cause a denial of service on many common FTP server platforms , including some public FTP servers run by software giants Adobe and HP, according to a report published by...
libcglob(3) - Resource Exhaustion Remote ftpd-anonymous (Denial of Service)
libcglob3 - Resource Exhaustion Remote ftpd-anonymous Denial of Service Source: http://securityreason.com/securityalert/7822 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Multiple Vendors libc/glob3 resource exhaustion +0day remote ftpd-anon Author: Maksymilian Arciemowicz...
libc/glob(3) - Resource Exhaustion / Remote ftpd-anonymous (Denial of Service)
Source: http://securityreason.com/securityalert/7822 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Multiple Vendors libc/glob3 resource exhaustion +0day remote ftpd-anon Author: Maksymilian Arciemowicz http://netbsd.org/donations/ http://securityreason.com/ http://cxib.net/ Date: - - Dis.:...
Mini-stream Ripper v3.1.2.1 Buffer Overflow (DEP Bypass)
Exploit for windows platform in category local exploits ======================================================== Mini-stream Ripper v3.1.2.1 Buffer Overflow DEP Bypass ======================================================== / DISCLAIMER THIS PROGRAM IS NOT INTENDED TO BE USED ON OTHER COMPUTERS...
Mini-stream Ripper 3.1.2.1 - Local Buffer Overflow (DEP Bypass)
/ DISCLAIMER THIS PROGRAM IS NOT INTENDED TO BE USED ON OTHER COMPUTERS AND IT IS DESTINED FOR PERSONAL RESEARCH ONLY!!!! The programs are provided as is without any guarantees or warranty. The author is not responsible for any damage or losses of any kind caused by the use or misuse of the...
Mini-stream Ripper 3.1.2.1 - Local Buffer Overflow (DEP Bypass)
Mini-stream Ripper 3.1.2.1 - Local Buffer Overflow DEP Bypass / DISCLAIMER THIS PROGRAM IS NOT INTENDED TO BE USED ON OTHER COMPUTERS AND IT IS DESTINED FOR PERSONAL RESEARCH ONLY!!!! The programs are provided as is without any guarantees or warranty. The author is not responsible for any damage ...
Mandriva Linux Security Advisory : kdelibs4 (MDVSA-2010:028)
Multiple vulnerabilities was discovered and corrected in kdelibs4 : KDE KSSL in kdelibs 3.5.4, 4.2.4, and 4.3 does not properly handle a '\0' NUL character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary...
Mandriva Linux Security Advisory : kdelibs4 (MDVSA-2010:027)
Multiple vulnerabilities was discovered and corrected in kdelibs4 : KDE KSSL in kdelibs 3.5.4, 4.2.4, and 4.3 does not properly handle a '' NUL character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL...
Sun Solaris multiple security vulnerabilities
Crossite scripting in ftpd, DoS against file utilities, buffer overflow in LIBC functions...
Sun Solaris多个libc库数字转换函数缓冲区溢出漏洞
BUGTRAQ ID: 40309 Solaris是一款由Sun开发和维护的商业UNIX操作系统。 Solaris操作系统的libc库中所使用的econvert、ecvt、fcvt和gcvt等函数在执行数字转换操作时存在缓冲区溢出漏洞,攻击者提交恶意请求就可以触发这些溢出,导致执行任意指令。 Sun Solaris 10.0x86 Sun Solaris 10.0 厂商补丁: Sun --- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://sunsolve.sun.com/security - --- 1. Sun Solar...
Sun Solaris 10 libc/*convert Buffer Overflow
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Sun Solaris 10 libc/convert cvt buffer overflow Author: Maksymilian Arciemowicz http://SecurityReason.com Date: - - Dis.: 15.04.2010 - - Pub.: 21.05.2010 Affected Software: - - Sun Solaris 10 10/9 Original URL:...
Aircrack-NG Tools svn r1675 Remote Exploit
Exploit for multiple platform in category dos / poc ========================================== Aircrack-NG Tools svn r1675 Remote Exploit ========================================== !/usr/bin/env python -- coding: UTF-8 -- ''' A remote-exploit against the aircrack-ng tools. Tested up to svn r1675...
Aircrack-NG Tools svn r1675 - Remote Heap Buffer Overflow (PoC)
Aircrack-NG Tools svn r1675 - Remote Heap Buffer Overflow PoC !/usr/bin/env python -- coding: UTF-8 -- ''' A remote-exploit against the aircrack-ng tools. Tested up to svn r1675. The tools' code responsible for parsing IEEE802.11-packets assumes the self-proclaimed length of a EAPOL-packet to be...