8 matches found
SUSE CVE-2006-6303
The readmultipart function in cgi.rb in Ruby before 1.8.5-p2 does not properly detect boundaries in MIME multipart content, which allows remote attackers to cause a denial of service infinite loop via crafted HTTP requests, a different issue than CVE-2006-5467...
SuSE9 Security Update : perl-MIME-tools (YOU Patch Number 9460)
A bug when parsing empty MIME boundaries was fixed that allowed a mail virus to slip through virus scanners undetected. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Gentoo Security Advisory GLSA 200411-06 (MIME-tools)
The remote host is missing updates announced in advisory GLSA 200411-06. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
ruby DoS
SPU axhaustion in CGI library on parsing HTTP request with invalid MIME booundaries...
CVE-2006-6303
The readmultipart function in cgi.rb in Ruby before 1.8.5-p2 does not properly detect boundaries in MIME multipart content, which allows remote attackers to cause a denial of service infinite loop via crafted HTTP requests, a different issue than CVE-2006-5467...
Another DoS Vulnerability in CGI Library
The readmultipart function in cgi.rb in Ruby before 1.8.5-p2 does not properly detect boundaries in MIME multipart content, which allows remote attackers to cause a denial of service infinite loop via crafted HTTP requests, a different issue than CVE-2006-5467...
GLSA-200603-16 : Metamail: Buffer overflow
The remote host is affected by the vulnerability described in GLSA-200603-16 Metamail: Buffer overflow Ulf Harnhammar discovered a buffer overflow in Metamail when processing mime boundaries. Impact : By sending a specially crafted email, attackers could potentially exploit this vulnerability to...
PT-2003-2363
Name of the Vulnerable Software and Affected Versions Apache HTTP Server versions 1.3.22 through 1.3.27 Description The issue allows remote attackers to obtain sensitive information. This can be achieved via the ETag header, which reveals the inode number, or the multipart MIME boundary, which...