Lucene search
K

1914 matches found

RedHat Linux
RedHat Linux
added 2011/02/22 5:37 p.m.5 views

kernel: possible kernel oops from user MSS

The dotcpsetsockopt function in net/ipv4/tcp.c in the Linux kernel before 2.6.37-rc2 does not properly restrict TCPMAXSEG aka MSS values, which allows local users to cause a denial of service OOPS via a setsockopt call that specifies a small value, leading to a divide-by-zero error or incorrect u...

4.9CVSS5.8AI score0.01355EPSS
Exploits15References4
0day.today
0day.today
added 2011/01/09 12:0 a.m.21 views

VideoSpirit Pro <= v1.68 Local BoF Exploit

Exploit for windows platform in category local exploits Exploit Title: VideoSpirit Pro v1.68 Local BoF Exploit Date: 01/08/2011 Author: xsploitedsec URL: http://www.x-sploited.com/ Contact: xsploitedsecatx-sploited.com Software Link: http://www.verytools.com/videospirit/download.html Vulnerable...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2010/12/13 2:47 a.m.8 views

Second Dutch Teen Arrested Over Pro-WikiLeaks Cyber Attacks

Police in the Netherlands have arrested a second teenager in connection with the pro-WikiLeaks distributed denial-of-service DDoS attacks seen earlier this week. The arrest of the 19-year-old man follows Friday's attacks on websites belonging to the Dutch Police and the national prosecutor's...

6.9AI score
Exploits0
Positive Technologies
Positive Technologies
added 2010/11/20 12:0 a.m.3 views

PT-2010-5331 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.37-rc2 Description: The issue is related to the do tcp setsockopt function in the Linux kernel, which does not properly restrict TCP MAXSEG aka MSS values. This allows local users to cause a denial of servic...

4.9CVSS4.1AI score0.01355EPSS
Exploits18References33
ThreatPost
ThreatPost
added 2010/11/10 9:51 p.m.19 views

Man Pleads Guilty in $4.8m ATM Fraud

A Connecticut man pleaded guilty to automatic teller machine ATM fraud on Tuesday following a scheme that conned $4.8 million from a Rhode Island bank over the last few years. John DeMilo of Branford, Conn. faces jail time for helping defraud Cranston-based Domestic Bank. Between 2000 and 2010,...

7.2AI score
Exploits0References2
Metasploit
Metasploit
added 2010/11/05 4:0 a.m.40 views

Metasploit Web Crawler

This auxiliary module is a modular web crawler, to be used in conjunction with wmap someday or standalone. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework Web Crawler. Author: Efrain Torres et at metasploit.com 2010...

7.3AI score
Exploits0
seebug.org
seebug.org
added 2010/11/03 12:0 a.m.21 views

Trend Micro Titanium Maximum Security 2011 0day Local Kernel Exploit

No description provided by source. 1.Description: The tmtdi.sys kernel driver distributed with Trend Micro Titanium Maximum Security 2011 contains a pointer overwrite vulnerability in the handling of IOCTL 0x220404. Exploitation of this issue allows an attacker to execute arbitrary code within th...

7.1AI score
Exploits0
0day.today
0day.today
added 2010/11/02 12:0 a.m.35 views

Trend Micro Titanium Maximum Security 2011 0day Local Kernel Exploit

Exploit for windows platform in category local exploits ==================================================================== Trend Micro Titanium Maximum Security 2011 0day Local Kernel Exploit ==================================================================== 1.Description: The tmtdi.sys kerne...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2010/11/02 12:0 a.m.27 views

Trend Micro Titanium Maximum Security 2011 Local Exploit

1.Description: The tmtdi.sys kernel driver distributed with Trend Micro Titanium Maximum Security 2011 contains a pointer overwrite vulnerability in the handling of IOCTL 0x220404. Exploitation of this issue allows an attacker to execute arbitrary code within the kernel. An attacker would need...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2010/11/01 12:0 a.m.34 views

Trend Micro Titanium Maximum Security 2011 - Local Kernel

/ 1.Description: The tmtdi.sys kernel driver distributed with Trend Micro Titanium Maximum Security 2011 contains a pointer overwrite vulnerability in the handling of IOCTL 0x220404. Exploitation of this issue allows an attacker to execute arbitrary code within the kernel. An attacker would need...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2010/11/01 12:0 a.m.31 views

Trend Micro Titanium Maximum Security 2011 - Local Kernel

Trend Micro Titanium Maximum Security 2011 - Local Kernel / 1.Description: The tmtdi.sys kernel driver distributed with Trend Micro Titanium Maximum Security 2011 contains a pointer overwrite vulnerability in the handling of IOCTL 0x220404. Exploitation of this issue allows an attacker to execute...

0.4AI score
Exploits0
OpenVAS
OpenVAS
added 2010/08/06 12:0 a.m.34 views

Adobe Reader Font Parsing Integer Overflow Vulnerability (Linux)

This host is installed with Adobe Reader and are prone to font parsing integer overflow vulnerability. OpenVAS Vulnerability Test $Id: gbadobereaderintoverflowvulnlin.nasl 5263 2017-02-10 13:45:51Z teissa $ Adobe Reader Font Parsing Integer Overflow Vulnerability Linux Authors: Madhuri D Copyrigh...

9.3CVSS1.1AI score0.16305EPSS
Exploits0References2
Cvelist
Cvelist
added 2010/08/05 6:0 p.m.23 views

CVE-2010-2862

Integer overflow in CoolType.dll in Adobe Reader 8.2.3 and 9.3.3, and Acrobat 9.3.3, allows remote attackers to execute arbitrary code via a TrueType font with a large maxCompositePoints value in a Maximum Profile maxp table...

7.6AI score0.16305EPSS
Exploits0References5
Fedora
Fedora
added 2010/07/07 5:48 p.m.14 views

[SECURITY] Fedora 12 Update: python-mako-0.3.4-1.fc12

Mako is a template library written in Python. It provides a familiar, non-X ML syntax which compiles into Python modules for maximum performance. Mako's syntax and API borrows from the best ideas of many others, including Django templates, Cheetah, Myghty, and Genshi. Conceptually, Mako is an...

0.9AI score
Exploits0
NVD
NVD
added 2010/06/08 12:30 a.m.18 views

CVE-2010-1849

The mynetskiprest function in sql/netserv.cc in MySQL 5.0 through 5.0.91 and 5.1 before 5.1.47 allows remote attackers to cause a denial of service CPU and bandwidth consumption by sending a large number of packets that exceed the maximum length...

5CVSS6.2AI score0.03723EPSS
Exploits1References12
seebug.org
seebug.org
added 2010/03/10 12:0 a.m.17 views

cURL/libcURL CURLOPT_ENCODING选项缓冲区溢出漏洞

BUGTRAQ ID: 38162 cURL是命令行传输文件工具,支持FTP、FTPS、HTTP、HTTPS、GOPHER、TELNET、DICT、FILE和LDAP。 在下载数据时,libcurl库使用客户端软件所注册的回调函数将数据传送给应用程序,在完成传输之前会反复的调用该函数。回调函数可接收的最大数据大小为16K(CURLMAXWRITESIZE)。 在HTTP上使用libcurl库下载压缩的内容时应用程序可以要求libcurl自动解压数据。而解压期间libcurl可能错误的向回调函数发送最多可为64K的数据,因此盲目信任libcurl的最大缓冲区限制的应用可能会出现缓冲区溢出。...

6.9AI score
Exploits0
RedHat Linux
RedHat Linux
added 2010/02/09 3:23 p.m.4 views

kernel: r8169 issue reported at 26c3

drivers/net/r8169.c in the r8169 driver in the Linux kernel 2.6.32.3 and earlier does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to 1 cause a denial of service temporary network outage via a packet with a crafted size, in conjunction with...

7.8CVSS6AI score0.05889EPSS
Exploits1References4
curl security advisories
curl security advisories
added 2010/02/09 8:0 a.m.6 views

data callback excessive length

When downloading data, libcurl hands it over to the application using a callback that is registered by the client software. libcurl then calls that function repeatedly with data until the transfer is complete. The callback is documented to receive a maximum data size of 16K CURLMAXWRITESIZE. Usin...

6.8CVSS7.5AI score0.04408EPSS
Exploits0Affected Software2
OSV
OSV
added 2010/02/09 8:0 a.m.10 views

CURL-CVE-2010-0734 data callback excessive length

When downloading data, libcurl hands it over to the application using a callback that is registered by the client software. libcurl then calls that function repeatedly with data until the transfer is complete. The callback is documented to receive a maximum data size of 16K CURLMAXWRITESIZE. Usin...

6.8CVSS6.5AI score0.04408EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2010/01/07 11:26 p.m.4 views

kernel: r8169 issue reported at 26c3

drivers/net/r8169.c in the r8169 driver in the Linux kernel 2.6.32.3 and earlier does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to 1 cause a denial of service temporary network outage via a packet with a crafted size, in conjunction with...

7.8CVSS6AI score0.05889EPSS
Exploits1References4
Rows per page
Query Builder