5149 matches found
brk_poc.asm
The following program can be used to test if a x86 Linux system is vulnerable to the dobrk exploit; use at your own risk. $ nasm brkpoc.asm -o a.out $ chmod 755 a.out $ uname -a Linux test3 2.4.22-10mdk 1 Thu Sep 18 12:30:58 CEST 2003 i686 unknown unknown GNU/Linux $ ./a.out & 1 1698 $ cat...
CVE-2003-0386
OpenSSH 3.6.1 and earlier, when restricting host access by numeric IP addresses and with VerifyReverseMapping disabled, allows remote attackers to bypass "from=" and "user@host" address restrictions by connecting to a host from a system whose reverse DNS hostname contains the numeric IP address...
DEBIAN-CVE-2003-0386
OpenSSH 3.6.1 and earlier, when restricting host access by numeric IP addresses and with VerifyReverseMapping disabled, allows remote attackers to bypass "from=" and "user@host" address restrictions by connecting to a host from a system whose reverse DNS hostname contains the numeric IP address...
PT-2003-1047 · Openssh +1 · Openssh +1
Name of the Vulnerable Software and Affected Versions: OpenSSH versions 3.6.1 and earlier Description: The issue allows remote attackers to bypass "from=" and "user@host" address restrictions by connecting to a host from a system whose reverse DNS hostname contains the numeric IP address, when...
MS00-019: Microsoft IIS ISAPI Virtual Directory UNC Mapping ASP Source Disclosure (uncredentialed check)
It is possible to get the source code of the remote ASP scripts which are hosted on a mapped network share by appending '%5c' to the end of the request. ASP source code usually contains sensitive information such as logins and passwords. %NASLMINLEVEL 70300 [email protected] http://libpcap.net See...
DNS Server Detection
The remote service is a Domain Name System DNS server, which provides a mapping between hostnames and IP addresses. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11002; scriptversion"$Revision: 1.22 $"; scriptcvsdate"$Date: 2017/05/16 19:35:38 $";...
IIS 5.0 Cross Site Scripting vulnerability
SYSTEMS AFFECTED ======== IIS 5.0 / Windows 2000 SP2 - SRP1 exploited with a browser CONTENTS ========= Subject: IIS 5.0 Cross Site Scripting Vulnerability Date: 27 September 2002 Risk: Medium DESCRIPTION ========= IIS 5.0 can be forced to return malicious content in user's browser. By using a...
Apache Tomcat /servlet Mapping XSS
Apache Tomcat is the servlet container that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies. By using the /servlet/ mapping to invoke various servlets / classes it is possible to cause Tomcat to throw an exception, allowing XSS attacks...
Apache Tomcat 4.0.3 - Servlet Mapping Cross-Site Scripting
Apache Tomcat 4.0.3 - Servlet Mapping Cross-Site Scripting source: https://www.securityfocus.com/bid/5193/info A vulnerability has been reported for Apache Tomcat 4.0.3 on Microsoft Windows and Linux platforms. Reportedly, it is possible for an attacker to launch a cross site scripting attack. Wh...
Apache Tomcat 4.0.3 - Servlet Mapping Cross-Site Scripting
source: https://www.securityfocus.com/bid/5193/info A vulnerability has been reported for Apache Tomcat 4.0.3 on Microsoft Windows and Linux platforms. Reportedly, it is possible for an attacker to launch a cross site scripting attack. When servlet mapping is enabled, it is possible to invoke...
Protection bypass for linux grsecurity
It's possible to modify kernel memory by using memory mapping...
Falcon Web Server Authentication Circumvention Vulnerability
Strumpf Noir Society Advisories ! Public release ! -- -= Falcon Web Server Authentication Circumvention Vulnerability =- Release date: Wednesday, February 13, 2002 Introduction: Falcon Web Server is a ISAPI and WinCGI supporting web server running on the Microsoft Windows OS's. Falcon Web Server ...
Zope < 2.3.3 ZClass Permission Mapping Modification Local Privilege Escalation
The remote web server uses a version of Zope which is older than version 2.3.3. In such versions, any user can visit a ZClass declaration and change the ZClass permission mappings for methods and other objects defined within the ZClass, possibly allowing for unauthorized access within the Zope...
CVE-2001-0567
Digital Creations Zope 2.3.2 and earlier allows a local attacker to gain additional privileges via the changing of ZClass permission mappings for objects and methods in the ZClass...
How to remove .printer mapping (WAS RE: Permanently remove IIS printer mapping)
This is from another list I receive. It explains this scenario rather well. Keith --------------------------------------------------- All IIS Administrators Please Read this Immediately --------------------------------------------------- I wanted to get this out right away. More info to follow. O...
Локальный DoS через mmap в FreeBSD
Из-за некорректной обработки сбоев при отображении страниц памяти возможно завесить систему...
Gauntlet Firewall Vulnerability
In some circumstances NAI Gauntlet firewall performs Network Address Translation in an unexpected manner, causing incorrect routable IP addresses to be generated. This can enable unprivileged users on the protected network to knowingly or unknowingly generate spurious source IP addresses. Vendor...
CVE-1999-0824
CVE-1999-0824 involves Windows NT where a user can use SUBST to map a drive letter to a folder. This mapping is not unmapped after log off, potentially allowing the affected user to influence the location of folders accessed by later users. The description covers the mapping behavior and its pers...
CVE-1999-0824
A Windows NT user can use SUBST to map a drive letter to a folder, which is not unmapped after the user logs off, potentially allowing that user to modify the location of folders accessed by later users...
FrontPage 9798 - Server Image Mapper Buffer Overflow
FrontPage 9798 - Server Image Mapper Buffer Overflow source: https://www.securityfocus.com/bid/1117/info The htimage.exe and imagemap.exe files included with FrontPage handle server-side image mapping functions. Under normal operations, it would be passed a map name and a set of coordinates in th...