Windows 95/98/Enterprise Server 4/NT Server 4/Terminal Server 4/Workstation 4 Riched Buffer Overflow

No description provided by source. Windows 95/98,Windows NT Enterprise Server 4.0 SP1/SP2/SP3/SP4/SP5/SP6,Windows NT Server 4.0 SP1/SP2/SP3/SP4/SP5/SP6/SP6a,Windows NT Terminal Server 4.0 SP1/SP2/SP3/SP4/SP5/SP6,Windows NT Workstation 4.0 SP1/SP2/SP3/SP4/SP5/SP6/SP6a Riched Buffer Overflow...

Microsoft Site Server 3.0 Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3999/info Microsoft Site Server is designed to run on Microsoft Windows NT Server platforms. It provides a means for users on a corporate intranet to share, publish, and find information. Site Server Commerce Edition...

Microsoft Windows NT 4.0/4.0 SP1/4.0 SP2/4.0 SP3 DoS Duplicate Hostname Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/298/info NT Workstations and Servers must have unique hostnames if they reside on the same network. Should an NT host attempt to use an existing hostname, the second server with the new duplicate name will fail to start i...

Microsoft Site Server 2.0 with IIS 4.0 - File Upload Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1811/info Microsoft Site Server is an intranet server designed for an NT Server with IIS. Site Server enables users to locate and view information stored in various locations through personalized web pages and emails. The...

Cisco Aironet AP1x00 Malformed HTTP GET Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8290/info Cisco Aironet AP1x00 series devices are prone to a denial of service vulnerability upon receipt of a malformed HTTP GET request. Such a request will cause the device to reload. !/usr/bin/perl Cisco Global...

Windows NT NNTP Component Buffer Overflow

The Network News Transfer Protocol NNTP component of Microsoft Windows NT Server 4.0, Windows 2000 Server, Windows Server 2003, Exchange 2000 Server, and Exchange Server 2003 allows remote attackers to execute arbitrary code via XPAT patterns, possibly related to improper length validation and an...

Windows NT NNTP Component Buffer Overflow

The Network News Transfer Protocol NNTP component of Microsoft Windows NT Server 4.0, Windows 2000 Server, Windows Server 2003, Exchange 2000 Server, and Exchange Server 2003 allows remote attackers to execute arbitrary code via XPAT patterns, possibly related to improper length validation and an...

Multiple Cisco Products Vulnerabilities Exploit (Cisco Global Exploiter)

No description provided by source. !/usr/bin/perl Cisco Global Exploiter Legal notes : The BlackAngels staff refuse all responsabilities for an incorrect or illegal use of this software or for eventual damages to others systems. www blackangels it Modules use Socket; use IO::Socket; Main ...

Microsoft Windows Help存在多个漏洞

Microsoft Help WINHLP32.EXE处理.hlp文件存在多个远程代码执行和拒绝服务问题。 攻击者可以在WEB页上防止恶意帮助文件，或者通过EMAIL附件形式发送，诱使用户打开来触发此漏洞，成功利用此漏洞可以以进程权限执行任意指令。 Microsoft Windows XP Tablet PC Edition SP2 Microsoft Windows XP Tablet PC Edition SP1 Microsoft Windows XP Tablet PC Edition Microsoft Windows XP Professional x64 Edition...

CVE-2005-0050

The License Logging service for Windows NT Server, Windows 2000 Server, and Windows Server 2003 does not properly validate the length of messages, which leads to an "unchecked buffer" and allows remote attackers to cause a denial of service crash and possibly execute arbitrary code, aka the...

CVE-2004-1080

The WINS service wins.exe on Microsoft Windows NT Server 4.0, Windows 2000 Server, and Windows Server 2003 allows remote attackers to write to arbitrary memory locations and possibly execute arbitrary code via a modified memory pointer in a WINS replication packet to TCP port 42, aka the...

CVE-2004-0567

Summary: CVE-2004-0567 refers to a buffer/_name validation vulnerability in Windows WINS that can allow remote code execution or denial of service via specially crafted WINS packets. Affected products/versions (as stated): Windows NT Server 4.0 SP 6a, NT Terminal Server 4.0 SP 6, Windows 2000 Ser...

CVE-2004-0567

The Windows Internet Naming Service WINS in Windows NT Server 4.0 SP 6a, NT Terminal Server 4.0 SP 6, Windows 2000 Server SP3 and SP4, and Windows Server 2003 does not properly validate the computer name value in a WINS packet, which allows remote attackers to execute arbitrary code or cause a...

CVE-2004-1080

The WINS service wins.exe on Microsoft Windows NT Server 4.0, Windows 2000 Server, and Windows Server 2003 allows remote attackers to write to arbitrary memory locations and possibly execute arbitrary code via a modified memory pointer in a WINS replication packet to TCP port 42, aka the...

CVE-2004-0574

CVE-2004-0574 affects the NNTP component in Windows NT 4.0 Server, Windows 2000 Server, Windows Server 2003, Exchange 2000/2003, enabling remote code execution via XPAT pattern handling. The issue stems from improper length validation and unchecked buffers, leading to off-by-one and heap-based ov...

Microsoft NNTP Component Heap Overflow Vulnerability

Description The Microsoft Network News Transfer Protocol NNTP Component is prone to a buffer overflow condition. Successful exploitation of this vulnerability could allow remote code execution in the context of the process accessing the vulnerable component. Technologies Affected Avaya DefinityOn...

CVE-2003-0807

CVE-2003-0807 : A denial-of-service vulnerability in Microsoft Windows where the COM Internet Services (CIS) and RPC over HTTP Proxy components can be overwhelmed by a crafted forwarded response, causing the backend to stop accepting requests. Related connected documents (MS04-012) identify this ...

Security Vulnerability with Microsoft Index Server 2.0(Sample fil e reveals file info, physical path etc)

Hi I noticed index server sample file is vulnerable which reveals file info and physical path. Vulnerable Microsoft Index Server 2.0 + IIS 4.0 + Windows NT Server 4.0 + Service Pack 6a Details The Index Server Sample file SQLQHit.asp shipped with Microsoft Index Server 2.0 and Option pack 4.0 , i...

iXsecurity.20001120.compaq-authbo.a

iXsecurity Security Vulnerability Report No: iXsecurity.20001120.compaq-authbo.a ======================================= Vulnerability Summary --------------------- Problem: The authentication of Compaq Web-Based Management contains a remotely exploitable buffer overflow Threat: Anyone that has...

DST2K0040.txt

============================================================================ Delphis Consulting Plc ============================================================================ Security Team Advisories 26/09/2000 [email protected] http://www.delphisplc.com/thinking/whitepapers/...