xorg-server: information leak and denial of service

Olivier Fourdan from Red Hat has discovered a protocol handling issue in the way the X server code base handles the XkbSetGeometry request. The issue stems from the server trusting the client to send valid string lengths in the request data. A malicious client with string lengths exceeding the...

OpenSSL Heartbeat (Heartbleed) Information Leak

This module implements the OpenSSL Heartbleed attack. The problem exists in the handling of heartbeat requests, where a fake length can be used to leak memory data in the response. Services that support STARTTLS may also be vulnerable. The module supports several actions, allowing for scanning,...

OpenSSL Heartbeat (Heartbleed) Information Leak Exploit

This Metasploit module implements the OpenSSL Heartbleed attack. The problem exists in the handling of heartbeat requests, where a fake length can be used to leak memory data in the response. Services that support STARTTLS may also be vulnerable. This module requires Metasploit:...

OpenSSL Heartbeat (Heartbleed) Information Leak

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Auxiliary include Msf::Exploit::Remote::Tcp include Msf::Auxiliary::Scanner include Msf::Auxiliary::Report CIPHERSUITES = 0xc014,...

ALPINE-CVE-2012-2813

The exifconvertutf16toutf8 function in exif-entry.c in the EXIF Tag Parsing Library aka libexif before 0.6.21 allows remote attackers to cause a denial of service out-of-bounds read or possibly obtain sensitive information from process memory via crafted EXIF tags in an image...

Header Customization by Hitachi Web Server RequetHeader Directive Could Allow Attacker to Access Data Deleted from Memory

Overview When using the header customization function through the RequestHeader directive of Hitachi Web Server, if the RequestHeader directive is defined and the modheaders module is being used through the LoadModule directive, it could allow an attacker to gain access to the data that have been...

canvas functions can reveal data from random places in memory

There is a flaw in the way that certain canvas functions are handled, that can cause the canvas to be painted with very small amounts of data constructed from random memory. The resulting canvas image can be read and analyzed by JavaScript, so an attacker can get random samples of the user's...

canvas functions can reveal data from random places in memory – Opera Security Advisories

canvas functions can reveal data from random places in memory – Opera Security Advisories OPCOM Team | December 16, 2008 Severity Moderately severe Problem description There is a flaw in the way that certain canvas functions are handled, that can cause the canvas to be painted with very small...

GLSA-200712-22 : Opera: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200712-22 Opera: Multiple vulnerabilities David Bloom reported two vulnerabilities where plug-ins CVE-2007-6520 and Rich text editing CVE-2007-6522 could be used to allow cross domain scripting. Alexander Klink Cynops GmbH...

Linux kernel ALSA information leak

sndprocmemread returns uninitialized kernel memory data...

How to in Windows 2 0 0 3 to give the login password-vulnerability warning-the black bar safety net

In all NT systems, there are several ways you can get the login user's password. I know of three methods can achieve the purpose. 1. hook the winlogon in the several function, the Internet also has this type ofprogram, called winlogonhijack items in the rootkit. com has to offer, but that project...

security flaw

The JFS file system code in Linux 2.4.x has an information leak in which in-memory data is written to the device for the JFS file system, which allows local users to obtain sensitive information by reading the raw device...

Linux kernel file offset pointer races

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Synopsis: Linux kernel file offset pointer handling Product: Linux kernel Version: 2.4 up to to and including 2.4.26, 2.6 up to to and including 2.6.7 Vendor: http://www.kernel.org/ URL: http://isec.pl/vulnerabilities/isec-0016-procleaks.txt CVE:...

Microsoft Security Bulletin MS03-034: Flaw in NetBIOS Could Lead to Information Disclosure (Q824105)

-----BEGIN PGP SIGNED MESSAGE----- - ---------------------------------------------------------------------- Title: Flaw in NetBIOS Could Lead to Information Disclosure 824105 Date: 03 September 2003 Software: - Microsoft Windows NT 4.0 Server - Microsoft Windows NT 4.0, Terminal Server Edition -...

Linux ICMP information leak

Because of invalid size calculation for SMTP packet with error code, it contains data from memory...

Linux 2.0 remote info leak from too big icmp citation

---------------------------------------------------------------------- Cartel Sйcuritй --- Security Advisory Advisory Number: CARTSA-20030314 Subject: Linux 2.0 remote info leak from too big icmp citation Author: Philippe Biondi [email protected] Discovered: March 14, 2003 Published: June...

3COM 812 DSL information leak

DHCP response contains information from memory...

@stake Security Advisory: iPlanet Web Server 4.x Response Header Overflow (A041601-1)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 @stake, Inc. www.atstake.com Security Advisory Notification Advisory Name: iPlanet Web Server Enterprise Edition 4.0, 4.1 Response Header Overflow Release Date: 04/16/2001 Application: iPlanet Web Server Enterprise Edition 4.0, 4.1 Platform: Solaris...

CVE-2001-0073

Buffer overflow in the finddefaulttype function in libsecure in NSA Security-enhanced Linux, which may allow attackers to modify critical data in memory...