4 matches found
curl: Integer-underflow leads to heap over-read in TFTP implementation
libcurl on commit 3ee1d3b573e6ea36fb478dbd0d9913483b900928 contains a vulnerability in its TFTP implementation that can cause curl or a libcurl-user to send heap memory beyond the bounds of an allocated chunk to a malicious TFTP server. The vulnerability lies in lib/tftp.c, in function...
PT-2024-13937 · Unknown · Simple-Dhcp-Server
Name of the Vulnerable Software and Affected Versions: simple-dhcp-server through ec976d2 Description: The issue allows remote attackers to cause a denial of service daemon crash by sending a DHCP packet without any option fields, which causes free packet in dhcp packet.c to dereference a NULL...
lfi
This plugin will find local file include vulnerabilities. This is done by sending to all injectable parameters file paths like "../../../../../etc/passwd" and searching in the response for strings like "root:x:0:0:". Plugin type Audit Options This plugin doesnt have any user configured options...
backspace_between_dots
This evasion plugin inserts an A and a backspace control character between dots which cancel each other when they are processed and some filters that match ../ are bypassed. Example: Input: ../../etc/passwd Output: .%41%08./.%41%08./etc/passwd Plugin type Evasion Options This plugin doesnt have a...