8941 matches found
CVE-2007-4688
The Networking component in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to obtain all addresses for a host, including link-local addresses, via a Node Information Query...
CVE-2007-4268
Integer signedness error in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows local users to execute arbitrary code via a crafted AppleTalk message with a negative value, which satisfies a signed comparison during mbuf allocation but is later interpreted as an unsigned value,...
CVE-2007-4267
Apple Mac OS X 10.4–10.4.10 (and Mac OS X Server 10.4–10.4.10) contain a stack-based kernel overflow in the AppleTalk networking path. The vulnerability arises when an IOCTL adds an AppleTalk zone to a routing table, allowing a local attacker to cause arbitrary code execution with kernel privileg...
CVE-2007-4689
Double free vulnerability in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to cause a denial of service system shutdown or execute arbitrary code via crafted IPV6 packets...
CVE-2007-4689
CVE-2007-4689 is a double-free vulnerability in the Networking component of Apple Mac OS X 10.4 up to 10.4.10 . The issue affects how IPv6 packets are processed, potentially allowing remote attackers to cause a denial of service (system shutdown) or execute arbitrary code. The affected product ra...
CVE-2007-4269
Apple Mac OS X 10.4–10.4.10 is affected by CVE-2007-4269 due to an integer overflow in the AppleTalk ASP handling, which triggers a heap-based buffer overflow when a crafted ASP message is sent to an AppleTalk socket. This vulnerability enables local users to execute arbitrary code with system pr...
CVE-2007-4269
Integer overflow in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows local users to execute arbitrary code via a crafted AppleTalk Session Protocol ASP message on an AppleTalk socket, which triggers a heap-based buffer overflow...
CVE-2007-4688
CVE-2007-4688 affects Apple Mac OS X 10.4–10.4.10. A vulnerability in the Networking component's Node Information Query allows remote attackers to obtain all host addresses, including link-local addresses, exposing information about the host. The issue is an information-disclosure flaw in the Nod...
PT-2007-5460 · Apple · Macos X
Name of the Vulnerable Software and Affected Versions: Mac OS X versions 10.4 through 10.4.10 Description: The issue is related to an integer signedness error in the Networking component, which allows local users to execute arbitrary code via a crafted AppleTalk message. This message contains a...
Mac OS X < 10.4.11 Multiple Vulnerabilities (Security Update 2007-008)
The remote host is running a version of Mac OS X 10.4 which is older than version 10.4.11 or a version of Mac OS X 10.3 which does not have Security Update 2007-008 applied. This update contains several security fixes for the following programs : - Flash Player Plugin - AppleRAID - BIND - bzip2 -...
[SECURITY] Fedora 7 Update: kdenetwork-3.5.8-6.fc7
Networking applications, including: kget: downloader manager kiolan: lan browsing kio slave knewsticker: RDF newsticker applet kopete: chat client kppp: dialer and front end for pppd krdc: a client for Desktop Sharing and other VNC servers krfb: Desktop Sharing server, allow others to access your...
openSUSE 10 Security Update : kernel (kernel-4641)
This kernel update fixes the following security problems : ++ CVE-2006-6058: A local denial of service when mounting MINIX filesystems was fixed. ++ CVE-2007-4997: A 2 byte buffer underflow in the ieee80211 stack was fixed, which might be used by attackers in WLAN reach to crash the machine. and...
Input validation
Unspecified vulnerability in the administrative interface in Avaya Messaging Storage Server MSS 3.1 before SP1, and Message Networking MN 3.1, allows remote attackers to cause a denial of service via unspecified vectors related to "input validation."...
CVE-2007-5830
Unspecified vulnerability in the administrative interface in Avaya Messaging Storage Server MSS 3.1 before SP1, and Message Networking MN 3.1, allows remote attackers to cause a denial of service via unspecified vectors related to "input validation."...
CVE-2007-5830
This CVE (CVE-2007-5830) affects Avaya Messaging Storage Server (MSS) 3.1 before SP1 and Message Networking (MN) 3.1. A vulnerability in the administrative interface allows remote denial-of-service via input validation issues. The NVD entry provides a CVSSv2 base score of 7.8 (HIGH) with network ...
KN2.txt
Title : Knowledge Networking v.1.0.b Local File Inclusion Vulnerability Description : Knowledge Networking v.1.0.b is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. Author : d3hydr8 Homepage : http://www.darkc0de.com Original Post :...
openSUSE 10 Security Update : kernel (kernel-2705)
This kernel update fixes the following security problems : - CVE-2006-5751: An integer overflow in the networking bridge ioctl starting with Kernel 2.6.7 could be used by local attackers to overflow kernel memory buffers and potentially escalate privileges 222656 - CVE-2006-6106: Multiple buffer...
CVE-2007-5422
Unspecified vulnerability in "Solaris Auditing" in the Basic Security Module BSM in Sun Solaris 10, when configured for auditing of networking nt events, allows local users to cause a denial of service panic via unspecified vectors...
Sql injection
SQL injection vulnerability in profile/myprofile.php in psi-labs.com social networking script psisns, probably 1.0, allows remote attackers to execute arbitrary SQL commands via the u parameter...
CVE-2007-4881
SQL injection vulnerability in profile/myprofile.php in psi-labs.com social networking script psisns, probably 1.0, allows remote attackers to execute arbitrary SQL commands via the u parameter...