Windows平台下的Symantec Backup Exec存在未明远程漏洞

BUGTRAQ ID: 26837 CNCAN ID:CNCAN-2007121405 Symantec Backup Exec是一款集中式管理功能的网络数据保护解决方案。 Window平台下的Symantec Backup Exec存在未明安全问题，远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 目前没有详细漏洞细节提供。 Symantec Backup Exec for Windows Servers 11d 目前没有详细解决方案提供： http://www.symantec.com/backupexec/index.jsp...

CVE-2007-5741

Plone 2.5 through 2.5.4 and 3.0 through 3.0.2 allows remote attackers to execute arbitrary Python code via network data containing pickled objects for the 1 statusmessages or 2 linkintegrity module, which the module unpickles and executes...

CVE-2007-5741

Plone 2.5 through 2.5.4 and 3.0 through 3.0.2 allows remote attackers to execute arbitrary Python code via network data containing pickled objects for the 1 statusmessages or 2 linkintegrity module, which the module unpickles and executes...

[CVE-2007-5741] Plone: statusmessages and linkintegrity unsafe network data hotfix

A vulnerability in both the statusmessages and linkintegrity modules has been identified, where untrusted network data was treated as a pickle and loaded. This allows an attacker to run arbitrary python code within the Zope/Plone process. This issue has been assigned CVE-2007-5741 Affected versio...

plone -- unsafe data interpreted as pickles

Plone projectreports: This hotfix corrects a vulnerability in the statusmessages and linkintegrity modules, where unsafe network data was interpreted as python pickles. This allows an attacker to run arbitrary python code within the Zope/Plone process...

Update Protection against Sun Microsystems Java System Web Proxy sockd Daemon Buffer Overflow Vulnerability

A buffer overflow vulnerability has been reported in the Java System Web Proxy sockd daemon. Java System Web Proxy Server collects and distributes data from the network. It provides protocol support for SOCKS - an Internet protocol that allows client-server applications to transparently use the...

Debian DSA-1084-1 : typespeed - buffer overflow

Niko Tyni discovered a buffer overflow in the processing of network data in typespeed, a game for testing and improving typing speed, which could lead to the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin we...

CVE-2005-2738

Java 1.4.2 before 1.4.2 Release 2 on Apple Mac OS X does not prevent multiple programs from opening the same port as a Java ServerSocket, which allows local users to operate a Java program that intercepts network data intended for the ServerSocket of a different Java program...

[SECURITY] [DSA 1084-1] New typespeed packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1084-1 [email protected] http://www.debian.org/security/ Steve Kemp May 31st, 2006 http://www.debian.org/security/faq -...

DSA-1084-1 typespeed - buffer overflow

Bulletin has no description...

Authentication flaw

Advantage Century Telecommunication ACT P202S IP Phone 1.01.21 running firmware 1.1.21 has multiple undocumented ports available, which 1 might allow remote attackers to obtain sensitive information, such as memory contents and internal operating-system data, by directly accessing the VxWorks WDB...

CVE-2005-2738

Java 1.4.2 before 1.4.2 Release 2 on Apple Mac OS X does not prevent multiple programs from opening the same port as a Java ServerSocket, which allows local users to operate a Java program that intercepts network data intended for the ServerSocket of a different Java program...

VERITAS Backup Agent Detection

The remote host is running a Backup Agent that uses the Network Data Management Protocol NDMP. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid20175; scriptversion"1.16"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/10/12";...

OpenTTD game (Transport Tycoon Deluxe clone) format string bug

Format string bug on network data parsing...

Microsoft Windows Kerberos PKINIT Man In The Middle Vulnerability

Description The PKINIT implementation in Microsoft Windows is susceptible to a man in the middle vulnerability. This issue is due to a failure of the software to properly validate network data. This issue is only exploitable by attackers that have access to valid logon credentials. Attackers...

CVE-2005-0983

Quake 3 engine, as used in multiple games, allows remote attackers to cause a denial of service client disconnect via a long message, which is not properly truncated and causes the engine to process the remaining data as if it were network data...

NTOP Network Tool Detection

Binary data 2719.prm...

Digital Illusions CE Codename Eagle - Remote Denial of Service

Digital Illusions CE Codename Eagle - Remote Denial of Service source: https://www.securityfocus.com/bid/11887/info A remote denial of service vulnerability reportedly affects Digital Illusions CE Codename Eagle. This issue is due to a failure of the application to properly handle exceptional...

Digital Illusions CE Codename Eagle - Remote Denial of Service

source: https://www.securityfocus.com/bid/11887/info A remote denial of service vulnerability reportedly affects Digital Illusions CE Codename Eagle. This issue is due to a failure of the application to properly handle exceptional network data. An attacker may leverage this issue to cause the...

SecureAction Research Secure Network Messenger 1.4.x - Remote Denial of Service

SecureAction Research Secure Network Messenger 1.4.x - Remote Denial of Service source: https://www.securityfocus.com/bid/11670/info A remote denial of service vulnerability affects SecureAction Research Secure Network Messenger. This issue is due to a failure of the application to properly handl...