Lucene search
+L

3575 matches found

vulnrichment
vulnrichment
added 2006/10/28 12:0 a.m.9 views

CVE-2006-4574

Off-by-one error in the MIME Multipart dissector in Wireshark formerly Ethereal 0.10.1 through 0.99.3 allows remote attackers to cause a denial of service crash via certain vectors that trigger an assertion error related to unexpected length values...

7.2AI score0.04095EPSS
Exploits0References22
ptsecurity
ptsecurity
added 2006/10/27 12:0 a.m.6 views

PT-2006-5361 · Wireshark +1 · Wireshark +1

Name of the Vulnerable Software and Affected Versions: Wireshark versions 0.10.1 through 0.99.3 Description: The issue is related to an off-by-one error in the MIME Multipart dissector, which allows remote attackers to cause a denial of service crash via certain vectors that trigger an assertion...

10CVSS6.8AI score0.93838EPSS
Exploits72References197
nessus
nessus
added 2006/10/14 12:0 a.m.22 views

Debian DSA-919-2 : curl - buffer overflow

The upstream developer of curl, a multi-protocol file transfer library, informed us that the former correction to several off-by-one errors are not sufficient. For completeness please find the original bug description below : Several problems were discovered in libcurl, a multi-protocol file...

7.5CVSS6AI score0.05188EPSS
Exploits0References5
nessus
nessus
added 2006/10/14 12:0 a.m.32 views

Debian DSA-1049-1 : ethereal - several vulnerabilities

Gerald Combs reported several vulnerabilities in ethereal, a popular network traffic analyser. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2006-1932 The OID printing routine is susceptible to an off-by-one error. - CVE-2006-1933 The UMA and BER...

10CVSS7.8AI score0.05028EPSS
Exploits0References19
redhat
redhat
added 2006/09/12 3:38 p.m.6 views

security flaw

Multiple off-by-one errors in the IPSec ESP preference parser in Wireshark formerly Ethereal 0.99.2 allow remote attackers to cause a denial of service crash via unspecified vectors...

5CVSS5.9AI score0.04132EPSS
Exploits0References4
nessus
nessus
added 2006/08/30 12:0 a.m.28 views

GLSA-200608-26 : Wireshark: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200608-26 Wireshark: Multiple vulnerabilities The following vulnerabilities have been discovered in Wireshark. Firstly, if the IPsec ESP parser is used it is susceptible to off-by-one errors, this parser is disabled by default;...

5.4CVSS6.3AI score0.04132EPSS
Exploits0References6
packetstorm
packetstorm
added 2006/08/27 12:0 a.m.83 views

modrewritepoc.txt

Public release date of POC/Exploit: 2006-08-20 Author: Jacobo Avariento Gimeno CVE id: CVE-2006-3747 Bugtraq id: 19204 CERT advisory: VU395412 Severity: high Introduction ---- On July 28 2006 Mark Dowd McAfee Avert Labs reported a vulnerability found in modrewrite apache module to the bugtraq...

7.6CVSS0.2AI score0.96436EPSS
Exploits20
ubuntucve
ubuntucve
added 2006/08/24 8:4 p.m.25 views

CVE-2006-4331

Multiple off-by-one errors in the IPSec ESP preference parser in Wireshark formerly Ethereal 0.99.2 allow remote attackers to cause a denial of service crash via unspecified vectors...

5CVSS6AI score0.04132EPSS
Exploits0References1
osv
osv
added 2006/08/24 8:4 p.m.4 views

DEBIAN-CVE-2006-4331

Multiple off-by-one errors in the IPSec ESP preference parser in Wireshark formerly Ethereal 0.99.2 allow remote attackers to cause a denial of service crash via unspecified vectors...

5CVSS6.9AI score0.04132EPSS
Exploits0References1
cve
cve
added 2006/08/24 8:0 p.m.62 views

CVE-2006-4331

Affected software: Wireshark (formerly Ethereal). Vulnerability: off-by-one in the IPsec ESP decryption preference parser (CVE-2006-4331) that can cause a remote denial of service (crash). Impact/scope: described as a remote crash when parsing malformed packets; listed for Ethereal/Wireshark 0.99...

5CVSS7.2AI score0.04132EPSS
Exploits0References18Affected Software1
cvelist
cvelist
added 2006/08/24 8:0 p.m.22 views

CVE-2006-4331

Multiple off-by-one errors in the IPSec ESP preference parser in Wireshark formerly Ethereal 0.99.2 allow remote attackers to cause a denial of service crash via unspecified vectors...

7.2AI score0.04132EPSS
Exploits0References18
securityvulns
securityvulns
added 2006/08/24 12:0 a.m.38 views

Multiple Wireshark (Ethereal) sniffer security vulnerabilities

Multiple DoS conditions IPSec ESP dissector off-by-one overflow...

2.1AI score
Exploits0References1Affected Software1
seebug
seebug
added 2006/08/21 12:0 a.m.95 views

Apache < 1.3.37 2.0.59 2.2.3 (mod_rewrite) Remote Overflow PoC

No description provided by source. !/bin/sh Exploit for Apache modrewrite off-by-one. Vulnerability discovered by Mark Dowd. CVE-2006-3747 by jack jack\x40gulcas\x2Eorg 2006-08-20 Thx to xuso for help me with the shellcode. I suppose that you've the "RewriteRule kung/. $1" rule if not you must...

7.6CVSS9.5AI score0.96436EPSS
Exploits20
securityvulns
securityvulns
added 2006/08/21 12:0 a.m.2005 views

POC & exploit for Apache mod_rewrite off-by-one

Public release date of POC/Exploit: 2006-08-20 Author: Jacobo Avariento Gimeno CVE id: CVE-2006-3747 Bugtraq id: 19204 CERT advisory: VU395412 Severity: high Introduction ---- On July 28 2006 Mark Dowd McAfee Avert Labs reported a vulnerability found in modrewrite apache module to the bugtraq...

7.6CVSS9.6AI score0.96436EPSS
Exploits20
exploitpack
exploitpack
added 2006/08/21 12:0 a.m.96 views

Apache 1.3.372.0.592.2.3 mod_rewrite - Remote Overflow

Apache 1.3.372.0.592.2.3 modrewrite - Remote Overflow !/bin/sh Exploit for Apache modrewrite off-by-one. Vulnerability discovered by Mark Dowd. CVE-2006-3747 by jack 2006-08-20 Thx to xuso for help me with the shellcode. I suppose that you've the "RewriteRule kung/. $1" rule if not you must...

7.6CVSS0.8AI score0.96436EPSS
Exploits20
zdt
zdt
added 2006/08/21 12:0 a.m.80 views

Apache < 1.3.37, 2.0.59, 2.2.3 (mod_rewrite) Remote Overflow PoC

Exploit for multiple platform in category dos / poc ================================================================ Apache 2006-08-20 Thx to xuso for help me with the shellcode. I suppose that you've the "RewriteRule kung/. $1" rule if not you must recalculate adressess. Shellcode is based on...

7.1AI score0.96436EPSS
Exploits20
exploitdb
exploitdb
added 2006/08/21 12:0 a.m.849 views

Apache &lt; 1.3.37/2.0.59/2.2.3 mod_rewrite - Remote Overflow

!/bin/sh Exploit for Apache modrewrite off-by-one. Vulnerability discovered by Mark Dowd. CVE-2006-3747 by jack 2006-08-20 Thx to xuso for help me with the shellcode. I suppose that you've the "RewriteRule kung/. $1" rule if not you must recalculate adressess. Shellcode is based on Taeho Oh...

7.6CVSS9.6AI score0.96436EPSS
Exploits20
redhat
redhat
added 2006/08/16 1:41 p.m.5 views

security flaw

Multiple off-by-one errors in Wireshark aka Ethereal 0.9.7 to 0.99.0 have unknown impact and remote attack vectors via the 1 NCP NMAS and 2 NDPS dissectors...

7.5CVSS5.9AI score0.01906EPSS
Exploits0References4
nessus
nessus
added 2006/08/04 12:0 a.m.65 views

GLSA-200608-01 : Apache: Off-by-one flaw in mod_rewrite

The remote host is affected by the vulnerability described in GLSA-200608-01 Apache: Off-by-one flaw in modrewrite An off-by-one flaw has been found in Apache's modrewrite module by Mark Dowd of McAfee Avert Labs. This flaw is exploitable depending on the types of rewrite rules being used. Impact...

7.6CVSS7.7AI score0.96436EPSS
Exploits20References4
gentoo
gentoo
added 2006/08/01 12:0 a.m.49 views

Apache: Off-by-one flaw in mod_rewrite

Background The Apache HTTP server is one of the most popular web servers on the Internet. The Apache module modrewrite provides a rule-based engine to rewrite requested URLs on the fly. Description An off-by-one flaw has been found in Apache's modrewrite module by Mark Dowd of McAfee Avert Labs...

7.6CVSS6.8AI score0.96436EPSS
Exploits20
Rows per page
Query Builder