Freeciv 2.0.7 - Jumbo Malloc Crash (Denial of Service)

Freeciv 2.0.7 - Jumbo Malloc Crash Denial of Service / by Luigi Auriemma / include include include include ifdef WIN32 include / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include include void stderrvoid char error;...

Freeciv <= 2.0.7 (Jumbo Malloc) Denial of Service Crash

Exploit for unknown platform in category dos / poc ======================================================= Freeciv include include include ifdef WIN32 include / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include...

Freeciv 2.0.7 - Jumbo Malloc Crash (Denial of Service)

/ by Luigi Auriemma / include include include include ifdef WIN32 include / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include include void stderrvoid char error; switchWSAGetLastError case 10004: error = "Interrupte...

CVE-2005-3504

Buffer overflow in swcons in IBM AIX 5.2, when debug malloc is enabled, allows remote attackers to cause a core dump and possibly execute arbitrary code...

CVE-2005-3396

CVE-2005-3396 : The issue is in IBM AIX 5.2 and 5.3, affecting the chcons (chcon) command. The root cause is a buffer overflow when DEBUG MALLOC is enabled, which could allow an attacker to execute arbitrary code via a long command line argument. The connected documents (NVD entry and related adv...

CVE-2005-3396

Buffer overflow in the chcons chcon command in IBM AIX 5.2 and 5.3, when DEBUG MALLOC is enabled, might allow attackers to execute arbitrary code via a long command line argument...

CVE-2005-2748

The malloc function in the libSystem library in Apple Mac OS X 10.3.9 and 10.4.2 allows local users to overwrite arbitrary files by setting the MallocLogFile environment variable to the target file before running a setuid application...

CVE-2005-2748

The CVE-2005-2748 issue affects Apple Mac OS X 10.3.9 and 10.4.2, where the malloc function in libSystem can be manipulated via the MallocLogFile environment variable before running a setuid application. This allows local users to overwrite arbitrary files. Root cause: environment-controlled log ...

CVE-2005-2748

The malloc function in the libSystem library in Apple Mac OS X 10.3.9 and 10.4.2 allows local users to overwrite arbitrary files by setting the MallocLogFile environment variable to the target file before running a setuid application...

[Full-disclosure] Mac OS X - malloc&#40;&#41; local privilege escalation vulnerability.

Suresec Security Advisory - 00007 25/09/2005 Mac OS X - malloc insecure use of environment variable. Advisory: http://www.suresec.org/advisories/adv7.pdf Description: The malloc function on Mac OS X insecurely trusts a debug variable, regardless of the fact that the calling application may be sui...

MacOS X malloc&#40;&#41; privilege escalation

With MallocLogFile it's possible to overwrite any system file with application which uses malloc function...

CVE-2004-2259

vsftpd before 1.2.2, when under heavy load, allows attackers to cause a denial of service crash via a SIGCHLD signal during a malloc or free call, which is not re-entrant...

CVE-2004-2259

Vulnerability CVE-2004-2259 affects vsftpd before 1.2.2. Under heavy load, a SIGCHLD signal during malloc/free (non-reentrant) can cause the FTP daemon to crash, producing a denial of service. Multiple connected sources confirm a signal-handling bug where unsafe operations in signal handlers coul...

CVE-2004-2259

vsftpd before 1.2.2, when under heavy load, allows attackers to cause a denial of service crash via a SIGCHLD signal during a malloc or free call, which is not re-entrant...

FreeBSD : zgv -- exploitable heap overflows (249a8c42-6973-11d9-ae49-000c41e2cdad)

infamous41md reports : zgv uses malloc frequently to allocate memory for storing image data. When calculating how much to allocate, user-supplied data from image headers is multiplied and/or added without any checks for arithmetic overflows. We can overflow numerous calculations, and cause small...

RHEL 3 : glibc (RHSA-2005:256)

Updated glibc packages that address several bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The GNU libc packages known as glibc contain the standard C libraries used by applications. It was discovered that the use of LDDEBUG...

Low: Red Hat Security Advisory: glibc security update

Updated glibc packages that address several bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The GNU libc packages known as glibc contain the standard C libraries used by applications. It was discovered that the use of LDDEBUG...

CVE-2005-0325

Xpand Rally 1.0.0.0 allows remote attackers or remote malicious game servers to cause a denial of service application crash via a packet with large values that are not properly handled in certain malloc or memcpy operations...

WvTFTPd 0.9 Remote Root Heap Overflow Exploit

Exploit for linux platform in category remote exploits ============================================= WvTFTPd 0.9 Remote Root Heap Overflow Exploit ============================================= / wvtftp option name heap overflow remote root exploit infamous42md AT hotpop DOT com exploitation is no...

Interbase 6.0 malloc&#40;&#41; issues

====================================================================== Strategic Reconnaissance Team Security Advisory SRT2002-06-17-1043 Topic : Interbase 6.0-1 Date : June 17, 2002 Credit : KF dotslashatsnosoft.com Site : http://www.snosoft.com...