cURL: NTLM username stack overflow

Background cURL is a command line tool and library for transferring files via many different protocols. It supports NTLM authentication to retrieve files from Windows-based systems. Description iDEFENSE reported that insufficient bounds checking on a memcpy of the supplied NTLM username can resul...

CVE-2005-0325

Xpand Rally 1.0.0.0 allows remote attackers or remote malicious game servers to cause a denial of service application crash via a packet with large values that are not properly handled in certain malloc or memcpy operations...

DEBIAN-CVE-2004-0960

FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service core dump via malformed USR vendor-specific attributes VSA that cause a memcpy operation with a -1 argument...

CVE-2005-0108

CVE-2005-0108 is a vulnerability in Apache mod_auth_radius and the libpam-radius-auth PAM module. The Debian and related advisories describe an integer underflow in the mod_auth_radius component that can be triggered by a crafted RADIUS_REPLY_MESSAGE, potentially allowing remote attackers to caus...

CVE-2005-0108

Apache modauthradius 1.5.4 and libpam-radius-auth allow remote malicious RADIUS servers to cause a denial of service crash via a RADIUSREPLYMESSAGE with a RADIUS attribute length of 1, which leads to a memcpy operation with a -1 length argument...

CVE-2005-0108

Apache modauthradius 1.5.4 and libpam-radius-auth allow remote malicious RADIUS servers to cause a denial of service crash via a RADIUSREPLYMESSAGE with a RADIUS attribute length of 1, which leads to a memcpy operation with a -1 length argument...

CVE-2004-0832

The 1 ntlmfetchstring and 2 ntlmgetstring functions in Squid 2.5.6 and earlier, with NTLM authentication enabled, allow remote attackers to cause a denial of service application crash via an NTLMSSP packet that causes a negative value to be passed to memcpy...

CVE-2004-0832

The 1 ntlmfetchstring and 2 ntlmgetstring functions in Squid 2.5.6 and earlier, with NTLM authentication enabled, allow remote attackers to cause a denial of service application crash via an NTLMSSP packet that causes a negative value to be passed to memcpy...

CVE-2004-0832

The 1 ntlmfetchstring and 2 ntlmgetstring functions in Squid 2.5.6 and earlier, with NTLM authentication enabled, allow remote attackers to cause a denial of service application crash via an NTLMSSP packet that causes a negative value to be passed to memcpy...

CVE-2004-0960

FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service core dump via malformed USR vendor-specific attributes VSA that cause a memcpy operation with a -1 argument...

ClamAV < 0.93.1 memcpy() Function Overflow (deprecated)

Binary data 4547.prm...

security flaw

raddecode in FreeRADIUS 0.9.2 and earlier allows remote attackers to cause a denial of service crash via a short RADIUS string attribute with a tag, which causes memcpy to be called with a -1 length argument, as demonstrated using the Tunnel-Password attribute...

CVE-2003-0967

raddecode in FreeRADIUS 0.9.2 and earlier allows remote attackers to cause a denial of service crash via a short RADIUS string attribute with a tag, which causes memcpy to be called with a -1 length argument, as demonstrated using the Tunnel-Password attribute...

CVE-2002-1368

Common Unix Printing System CUPS 1.1.14 through 1.1.17 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code by causing negative arguments to be fed into memcpy calls via HTTP requests with 1 a negative Content-Length value or 2 a negative length in a...

ettercap-0.6.3.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Next Generation Security Technologies http://www.ngsec.com Security Advisory Title: Ettercap, remote root compromise ID: NGSEC-2002-1 Application: ettercap 0.6.3.1 and older http://ettercap.sourceforge.net Date: 05/02/2002 Status: Vendor Contacted, ne...

MacroMedia Flash/Shockwave plug-in on linux : memcpy overrun problem.

X-PMC-CI-e-mail-id: 13428 A replacement library for checking well-known type of stack overrun caused by memory copy / string copy operations has been made available, namely libsafe. I have used it on Linux and I spotted a couple of suspicous popular programs on linux. I have been using libsafe on...