223 matches found
Jetty information leakage
Memory buffers content leakage...
PHP <= 5.2.8 'popen()' Function Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/33216/info PHP is prone to a buffer-overflow vulnerability because it fails to perform boundary checks before copying user-supplied data to insufficiently sized memory buffers. An attacker can exploit this issue to execut...
AdPlug 2.0 - Multiple Remote File Buffer Overflow Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/18859/info The AdPlug library is affected by multiple remote buffer-overflow vulnerabilities. These issues are due to the library's failure to properly bounds-check user-supplied input before copying it into insufficientl...
UltraVNC 1.0.1 - Multiple Remote Error Logging Buffer Overflow Vulnerabilities (1)
No description provided by source. source: http://www.securityfocus.com/bid/17378/info UltraVNC is susceptible to multiple error-logging remote buffer-overflow vulnerabilities. These issues are due to the application's failure to properly bounds-check user-supplied input before copying it to...
Move Media Player 1.0 Quantum Streaming ActiveX Control Multiple Buffer Overflow Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/25529/info Move Media Player is prone to multiple remote buffer-overflow vulnerabilities because the application fails to properly bounds-check user-supplied data before copying it into insufficiently sized memory buffers...
PHP 5.2 EXT/Filter Function Remote Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/22922/info PHP is prone to a remote buffer-overflow vulnerability because the application fails to perform boundary checks before copying user-supplied data to insufficiently sized memory buffers. An attacker can exploit...
Nokia Phoenix 2008.4.7 Service Software ActiveX Controls Multiple Buffer Overflow Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/33726/info Nokia Phoenix Service Software ActiveX controls are prone to multiple buffer-overflow vulnerabilities because they fail to properly bounds-check user-supplied data before copying it into insufficiently sized...
Cisco IOS Server HTTP Interface Cross Site Scripting - Ver2 (CVE-2005-3921)
A cross-site scripting vulnerability has been reported in Cisco Ios. An attacker could exploit this vulnerability an HTTP interface to the contents of memory buffers. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...
PHP 5.2.8 - 'popen()' Function Buffer Overflow
source: https://www.securityfocus.com/bid/33216/info PHP is prone to a buffer-overflow vulnerability because it fails to perform boundary checks before copying user-supplied data to insufficiently sized memory buffers. An attacker can exploit this issue to execute arbitrary machine code in the...
USN-525-1: libsndfile vulnerability
Robert Buchholz discovered that libsndfile did not correctly validate the size of its memory buffers. If a user were tricked into playing a specially crafted FLAC file, a remote attacker could execute arbitrary code with user privileges...
Move Media Player 1.0 Quantum Streaming - ActiveX Control Multiple Buffer Overflow Vulnerabilities
Move Media Player 1.0 Quantum Streaming - ActiveX Control Multiple Buffer Overflow Vulnerabilities source: https://www.securityfocus.com/bid/25529/info Move Media Player is prone to multiple remote buffer-overflow vulnerabilities because the application fails to properly bounds-check user-supplie...
T1lib - 'intT1_Env_GetCompletePath' Buffer Overflow (PoC)
source: https://www.securityfocus.com/bid/25079/info T1lib is prone to a buffer-overflow vulnerability because the library fails to perform boundary checks before copying user-supplied data to insufficiently sized memory buffers. An attacker can exploit this issue to execute arbitrary machine cod...
Design/Logic Flaw
Multiple unspecified vulnerabilities in the KSSL kernel module in Sun Solaris 10, when configured with the KSSL proxy, allow remote attackers to cause a denial of service kernel panic via unspecified vectors related to "memory buffers" of Secure Socket Layer SSL records...
CVE-2007-3470
Multiple unspecified vulnerabilities in the KSSL kernel module in Sun Solaris 10, when configured with the KSSL proxy, allow remote attackers to cause a denial of service kernel panic via unspecified vectors related to "memory buffers" of Secure Socket Layer SSL records...
CVE-2007-3470
CVE-2007-3470 affects the Sun Solaris 10 KSSL kernel module when configured with the KSSL proxy. The report describes multiple unspecified vulnerabilities that can be triggered remotely to cause a denial of service (kernel panic) via unspecified vectors related to SSL record memory buffers. The p...
PHP 5.2 - EXT/Filter Function Remote Buffer Overflow
source: https://www.securityfocus.com/bid/22922/info PHP is prone to a remote buffer-overflow vulnerability because the application fails to perform boundary checks before copying user-supplied data to insufficiently sized memory buffers. An attacker can exploit this issue to execute arbitrary...
W3C Amaya 9.4 - textarea rows Attribute Value Overflow
W3C Amaya 9.4 - textarea rows Attribute Value Overflow source: https://www.securityfocus.com/bid/17507/info W3C Amaya is susceptible to multiple remote buffer-overflow vulnerabilities. These issues are due to the application's failure to properly bounds-check user-supplied data before copying it ...
CVE-2005-3921
Cross-site scripting XSS vulnerability in Cisco IOS Web Server for IOS 12.02a allows remote attackers to inject arbitrary web script or HTML by 1 packets containing HTML that an administrator views via an HTTP interface to the contents of memory buffers, as demonstrated by the URI...
- Cisco IOS HTTP Server code injection/execution vulnerability-
It has been identified a vulnerability in the Cisco IOS Web Server. An attacker can inject arbitrary code in some of the dynamically generated web pages. To succesfully exploit the vulnerability the attacker only needs to know the IP of the Cisco. THERE'S NO NEED TO HAVE ACCESS TO THE WEB SERVER!...
CVE-2004-0171
The CVE-2004-0171 issue affects FreeBSD 5.1 and earlier and Mac OS X before 10.3.4. It stems from the TCP reassembly queue not limiting the number of out-of-sequence segments, allowing remote attackers to exhaust memory mbufs and crash the system (denial of service) by sending a flood of out-of-s...