209 matches found
Cyrus IMAPD 2.3.2 (pop3d) Remote Buffer Overflow Exploit (2)
Exploit for multiple platform in category remote exploits ============================================================ Cyrus IMAPD 2.3.2 pop3d Remote Buffer Overflow Exploit 2 ============================================================ !/usr/bin/ruby cyrus-imapd pop3d exploit by bannedit...
Cyrus IMAPD 2.3.2 - 'pop3d' Remote Buffer Overflow (2)
!/usr/bin/ruby cyrus-imapd pop3d exploit by bannedit 05/23/2006 This exploit takes advantage of a stack based overflow. Once the stack corruption has occured it is possible to overwrite a pointer which is later used for a memcpy this gives us a write anything anywhere condition similar to a forma...
CVE-2006-1242
The ippushpendingframes function in Linux 2.4.x and 2.6.x before 2.6.16 increments the IP ID field when sending a RST after receiving unsolicited TCP SYN-ACK packets, which allows remote attackers to conduct an Idle Scan nmap -sI attack, which bypasses intended protections against such attacks...
Mandrake Linux Security Advisory : kernel (MDKSA-2006:040)
A number of vulnerabilities were discovered and corrected in the Linux 2.6 kernel : The udpv6getport function in udp.c, when running IPv6, allows local users to cause a Denial of Service infinite loop and crash CVE-2005-2973. The mqopen system call in certain situations can decrement a counter...
CVE-2005-3848
Memory leak in the icmppushreply function in Linux 2.6 before 2.6.12.6 and 2.6.13 allows remote attackers to cause a denial of service memory consumption via a large number of crafted packets that cause the ipappenddata function to fail, aka "DST leak in icmppushreply."...
CVE-2005-3848
Memory leak in the icmppushreply function in Linux 2.6 before 2.6.12.6 and 2.6.13 allows remote attackers to cause a denial of service memory consumption via a large number of crafted packets that cause the ipappenddata function to fail, aka "DST leak in icmppushreply."...
CVE-2005-2973
CVE-2005-2973 : Linux kernel vn UDPv6 port handling flaw in udp_v6_get_port (in Linux 2.6 before 2.6.14-rc5) allows a local user, when IPv6 is enabled, to trigger an infinite loop and kernel crash (local DoS). Ubuntu advisory USN-219-1 references this CVE and notes kernel updates as remediation. ...
CVE-2005-2973
The udpv6getport function in udp.c in Linux 2.6 before 2.6.14-rc5, when running IPv6, allows local users to cause a denial of service infinite loop and crash...
Snort 2.4.2 - Back Orifice Parsing Remote Buffer Overflow
Snort 2.4.2 - Back Orifice Parsing Remote Buffer Overflow / THCsnortbo 0.3 - Snort BackOrifice PING exploit by [email protected] THC PUBLIC SOURCE MATERIALS Bug was found by Internet Security Systems http://xforce.iss.net/xforce/alerts/id/207 v0.3 - removed/cleaned up info for public release v0.2 -...
CVE-2005-3276
The sysgetthreadarea function in process.c in Linux 2.6 before 2.6.12.4 and 2.6.13 does not clear a data structure before copying it to userspace, which might allow a user process to obtain sensitive information...
CVE-2005-3273
The rosertioctl function in roseroute.c for Radionet Open Source Environment ROSE in Linux 2.6 kernels before 2.6.12, and 2.4 before 2.4.29, does not properly verify the ndigis argument for a new route, which allows attackers to trigger array out-of-bounds errors with a large number of digipeats...
CVE-2005-3274
Race condition in ipvsconnflush in Linux 2.6 before 2.6.13 and 2.4 before 2.4.32-pre2, when running on SMP systems, allows local users to cause a denial of service null dereference by causing a connection timer to expire while the connection table is being flushed before the appropriate lock is...
CVE-2005-3274
Race condition in ipvsconnflush in Linux 2.6 before 2.6.13 and 2.4 before 2.4.32-pre2, when running on SMP systems, allows local users to cause a denial of service null dereference by causing a connection timer to expire while the connection table is being flushed before the appropriate lock is...
CVE-2005-3110
Race condition in ebtables netfilter module ebtables.c in Linux 2.6, when running on an SMP system that is operating under a heavy load, might allow remote attackers to cause a denial of service crash via a series of packets that cause a value to be modified after it has been read but before it h...
CVE-2005-3106
Race condition in Linux 2.6, when threads are sharing memory mapping via CLONEVM such as linuxthreads and vfork, might allow local users to cause a denial of service deadlock by triggering a core dump while waiting for a thread that has just performed an exec...
CVE-2005-3105
The mprotect code mprotect.c in Linux 2.6 on Itanium IA64 Montecito processors does not properly maintain cache coherency as required by the architecture, which allows local users to cause a denial of service and possibly corrupt data by modifying PTE protections...
CVE-2005-3105
The mprotect code mprotect.c in Linux 2.6 on Itanium IA64 Montecito processors does not properly maintain cache coherency as required by the architecture, which allows local users to cause a denial of service and possibly corrupt data by modifying PTE protections...
CVE-2005-3109
The HFS and HFS+ hfsplus modules in Linux 2.6 allow attackers to cause a denial of service oops by using hfsplus to mount a filesystem that is not hfsplus...
CVE-2005-3108
mm/ioremap.c in Linux 2.6 on 64-bit x86 systems allows local users to cause a denial of service or an information leak via an ioremap on a certain memory map that causes the iounmap to perform a lookup of a page that does not exist...
CVE-2005-3110
Race condition in ebtables netfilter module ebtables.c in Linux 2.6, when running on an SMP system that is operating under a heavy load, might allow remote attackers to cause a denial of service crash via a series of packets that cause a value to be modified after it has been read but before it h...