3576 matches found
CVE-2007-0911
Off-by-one error in the strireplace function in PHP 5.2.1 might allow context-dependent attackers to cause a denial of service crash...
Code injection
Off-by-one error in the strireplace function in PHP 5.2.1 might allow context-dependent attackers to cause a denial of service crash...
CVE-2007-0911
Off-by-one error in the strireplace function in PHP 5.2.1 might allow context-dependent attackers to cause a denial of service crash...
EUVD-2007-0905
Off-by-one error in the strireplace function in PHP 5.2.1 might allow context-dependent attackers to cause a denial of service crash...
PHP str_ireplace DoS
$Data = strireplace"n", "br", $Data; can cause PHP engine to crash Because of off-by-one overflow...
Fedora Core 5 : dovecot-1.0-0.beta8.3.fc5 (2006-1504)
Thu Dec 21 2006 Tomas Janousek - 1.0-0.beta8.3.fc5 - fixed default paths in the example mkcert.sh to match configuration defaults fixes 183151 - fixed off by one 216508, CVE-2006-5973 - Thu Jun 8 2006 Petr Rockai - 1.0-0.beta8.2.fc5 - bring FC-5 branch up to date with the rawhide one bugfixes...
CentOS 4 : mod_auth_kerb (CESA-2006:0746)
Updated modauthkerb packages that fix a security flaw and a bug in multiple realm handling are now available for Red Hat Enterprise Linux 4. This update has been rated as having low security impact by the Red Hat Security Response Team. modauthkerb is module for the Apache HTTP Server designed to...
Low: Red Hat Security Advisory: mod_auth_kerb security update
Updated modauthkerb packages that fix a security flaw and a bug in multiple realm handling are now available for Red Hat Enterprise Linux 4. This update has been rated as having low security impact by the Red Hat Security Response Team. modauthkerb is module for the Apache HTTP Server designed to...
security flaw
Off-by-one error in the dergetoid function in modauthkerb 5.0 allows remote attackers to cause a denial of service crash via a crafted Kerberos message that triggers a heap-based buffer overflow in the component array...
Moderate nss_ldap security update
226-17 - temporarily disable fixes for 190256 and 206438 for security update 226-16 - include backported fix for off-by-one crasher in various result parsing functions Carsten Clashom, 206438 226-15 - don't suppress policy errors encountered during authentication if the specific policy error isn'...
ProFTPD 1.3.0 (sreplace) Remote Stack Overflow Exploit (meta)
Exploit for linux platform in category remote exploits ============================================================= ProFTPD 1.3.0 sreplace Remote Stack Overflow Exploit meta ============================================================= vdproftpd.pm - Metasploit module for ProFTPD stack overflow...
ProFTPd 1.3.0 - 'sreplace' Remote Stack Overflow (Metasploit)
vdproftpd.pm - Metasploit module for ProFTPD stack overflow Copyright c 2006 Evgeny Legerov Permission to use, copy, modify, and distribute this software for any purpose with or without fee is hereby granted, provided that the above copyright notice and this permission notice appear in all copies...
GLSA-200611-18 : TIN: Multiple buffer overflows
The remote host is affected by the vulnerability described in GLSA-200611-18 TIN: Multiple buffer overflows Urs Janssen and Aleksey Salow have reported multiple buffer overflows in TIN. Additionally, the OpenPKG project has reported an allocation off-by-one flaw which can lead to a buffer overflo...
CVE-2006-5989
Off-by-one error in the dergetoid function in modauthkerb 5.0 allows remote attackers to cause a denial of service crash via a crafted Kerberos message that triggers a heap-based buffer overflow in the component array...
security flaw
Off-by-one error in the MIME Multipart dissector in Wireshark formerly Ethereal 0.10.1 through 0.99.3 allows remote attackers to cause a denial of service crash via certain vectors that trigger an assertion error related to unexpected length values...
CVE-2006-5657
Multiple off-by-one errors in src/text.c in Vilistextum before 2.6.9 have unknown impact and attack vectors...
CVE-2006-5657
Technical details (affected product, component, version, root cause, impact, or fixes) are not provided in the connected documents; no public specifics available for CVE-2006-5657 in this set. Monitor for updates.
CVE-2006-5657
Multiple off-by-one errors in src/text.c in Vilistextum before 2.6.9 have unknown impact and attack vectors...
Debian DSA-1201-1 : ethereal - several vulnerabilities
Several remote vulnerabilities have been discovered in the Ethereal network scanner. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2005-4574 It was discovered that the MIME multipart dissector is vulnerable to denial of service caused by an off-by-one...
DEBIAN-CVE-2006-4574
Off-by-one error in the MIME Multipart dissector in Wireshark formerly Ethereal 0.10.1 through 0.99.3 allows remote attackers to cause a denial of service crash via certain vectors that trigger an assertion error related to unexpected length values...