Lucene search
K

27 matches found

RedHat Linux
RedHat Linux
added 2020/02/19 7:36 a.m.6 views

curl: FTP path trickery leads to NIL byte out of bounds write

It was found that libcurl did not safely parse FTP URLs when using the CURLOPTFTPFILEMETHOD method. An attacker, able to provide a specially crafted FTP URL to an application using libcurl, could write a NULL byte at an arbitrary location, resulting in a crash or an unspecified behavior...

9.8CVSS7.4AI score0.12058EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/06/18 7:8 p.m.4 views

curl: FTP path trickery leads to NIL byte out of bounds write

It was found that libcurl did not safely parse FTP URLs when using the CURLOPTFTPFILEMETHOD method. An attacker, able to provide a specially crafted FTP URL to an application using libcurl, could write a NULL byte at an arbitrary location, resulting in a crash or an unspecified behavior...

9.8CVSS7.4AI score0.12058EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2018/11/13 8:36 a.m.6 views

curl: FTP path trickery leads to NIL byte out of bounds write

It was found that libcurl did not safely parse FTP URLs when using the CURLOPTFTPFILEMETHOD method. An attacker, able to provide a specially crafted FTP URL to an application using libcurl, could write a NULL byte at an arbitrary location, resulting in a crash or an unspecified behavior...

9.8CVSS7.4AI score0.12058EPSS
Exploits0References5
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.11 views

Microsoft Reader <= 2.1.1.3143 NULL Byte Write

No description provided by source. Luigi Auriemma Application: Microsoft Reader http://www.microsoft.com/reader Versions: = 2.1.1.3143 PC version the Origami 2.6.1.7169 version doesn't seem vulnerable the non-PC versions have not been tested Platforms: Windows, Windows Mobile, Tablet PC and UMPC...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2011/04/12 12:0 a.m.25 views

Microsoft Reader 2.1.1.3143 - Null Byte Write

Luigi Auriemma Application: Microsoft Reader http://www.microsoft.com/reader Versions: | 8D47 01 |LEA EAX,DWORD PTR DS:EDI+1 ; size at offset 0xbd of the PoC 5FFF634D |. 50 |PUSH EAX 5FFF634E |. E8 2B470000 |...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2011/04/12 12:0 a.m.12 views

Microsoft Reader 2.1.1.3143 - Null Byte Write

Microsoft Reader 2.1.1.3143 - Null Byte Write Luigi Auriemma Application: Microsoft Reader http://www.microsoft.com/reader Versions: | 8D47 01 |LEA EAX,DWORD PTR DS:EDI+1 ; size at offset 0xbd of the PoC 5FFF634D |. 50 |PUSH EAX 5FFF634E |. E8 2B470000 |CALL...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2002/01/25 12:0 a.m.32 views

rsync 2.3/2.4/2.5 - Signed Array Index Remote Code Execution

// source: https://www.securityfocus.com/bid/3958/info A vulnerability exists within some versions of rsync. Under some circumstances, a remotely supplied signed value is used as an array index, allowing NULL bytes to be written to arbitrary memory locations. Exploitation of this vulnerability...

7.4AI score
Exploits0
Rows per page
Query Builder