DEBIAN-CVE-2009-3743

Off-by-one error in the InsMINDEX function in the TrueType bytecode interpreter in Ghostscript before 8.71 allows remote attackers to execute arbitrary code or cause a denial of service heap memory corruption via a malformed TrueType font in a document that trigger an integer overflow and a...

Integer overflow

Off-by-one error in the InsMINDEX function in the TrueType bytecode interpreter in Ghostscript before 8.71 allows remote attackers to execute arbitrary code or cause a denial of service heap memory corruption via a malformed TrueType font in a document that trigger an integer overflow and a...

PHP 5.3.3 - ibase_gen_id() Off-by-One Overflow

PHP 5.3.3 - ibasegenid Off-by-One Overflow === Vulnerability === PHP 5.3.3 Possible All versions ibasegenid off-by-one overflow === Author === cb === Description === User-supplied variable "generator" copied to 128 byte buffer "query" size of query variable. So its cause off-by-one overflow. You...

PHP 5.3.3 - 'ibase_gen_id()' Off-by-One Overflow

=== Vulnerability === PHP 5.3.3 Possible All versions ibasegenid off-by-one overflow === Author === cb === Description === User-supplied variable "generator" copied to 128 byte buffer "query" size of query variable. So its cause off-by-one overflow. You can see 1 snprintf copy statement to "query...

PHP 5.3.3 ibase_gen_id() off-by-one Overflow Vulnerability

Exploit for php platform in category dos / poc ========================================================== PHP 5.3.3 ibasegenid off-by-one Overflow Vulnerability ========================================================== === Vulnerability === PHP 5.3.3 Possible All versions ibasegenid off-by-one...

DEBIAN-CVE-2010-2995

The SigComp Universal Decompressor Virtual Machine UDVM in Wireshark 0.10.8 through 1.0.14 and 1.2.0 through 1.2.9 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via vectors related to sigcomp-udvm.c and an off-by-one error, which triggers a buffer...

wireshark: SigComp UDVM dissector buffer overruns

The SigComp Universal Decompressor Virtual Machine UDVM in Wireshark 0.10.8 through 1.0.14 and 1.2.0 through 1.2.9 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via vectors related to sigcomp-udvm.c and an off-by-one error, which triggers a buffer...

Researchers Demo DDoS Attacks in the Cloud

Researchers at Def Con created a handful of virtual server instances on Amazon’s EC2 and used a homemade program to attack the network of a client — a small business that wanted its connectivity tested. They took the company off the Internet. The price? Six dollars. Read the full article. Dark...

dedecms 5.6 RSS subscription page injection vulnerability-vulnerability warning-the black bar safety net

EXP: the uploads/plus/rss. php? tid=1&Cs1=1&Cs2%2 9% 2 9%20AND%2 0% 2 2% 2 7% 2 2%20AND%20updatexml%2 8 1,%28SELECT%20CONCAT%280x5b,uname,0x3a,MID%28pwd,4,1 6% 2 9,0x5d%2 9%20FROM%20dedeadmin%29,1%2 9%2 3%2 70=1 The use of the environment: GPC off There updatexml function...

apr-util single NULL byte buffer overflow

Off-by-one error in the aprbrigadevprintf function in Apache APR-util before 1.3.5 on big-endian platforms allows remote attackers to obtain sensitive information or cause a denial of service application crash via crafted input...

Multiple Vendors OPIE Off-By-One Stack Buffer Overflow (CVE-2010-1938)

"One time Passwords In Everything" OPIE is a Unix-like login and password package installed on the server and the client which makes untrusted networks safer against password-sniffing packetanalysis software. The OPIE package is sometimes used by FTP servers to provide security for an FTP session...

openSUSE Security Update : clamav (openSUSE-SU-2010:0414-1)

This update fixes a off-by-one buffer overflow CVE-2010-1640 and a crash while parsing PDFs CVE-2010-1639, CVE-2010-2077 in clamav that can be used as a remote denial of service attack. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin wer...

PHP-Nuke 8.1.0.3.5b (Your_Account Module) - Blind SQL Injection (Benchmark Mode)

PHP-Nuke new; my $average = 0; print "+ Calculating average load time may take a while ...\n"; for my $i = 0; $i get$hosto; my $time = time; $average += int$time-$bef; return $average/5; sub Nuke::Usage print "+ Usage: perl nuke.pl \n"; print "+ the host must be the complete path to modules.php\n...

PHP-Nuke 8.1.0.3.5b (Your_Account Module) - Blind SQL Injection (Benchmark Mode)

PHP-Nuke 8.1.0.3.5b YourAccount Module - Blind SQL Injection Benchmark Mode PHP-Nuke new; my $average = 0; print "+ Calculating average load time may take a while ...\n"; for my $i = 0; $i get$hosto; my $time = time; $average += int$time-$bef; return $average/5; sub Nuke::Usage print "+ Usage: pe...

Core Security Technologies Advisory 2010.0316

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://corelabs.coresecurity.com/ Novell iManager Multiple Vulnerabilities 1. Advisory Information Title: Novell iManager Multiple Vulnerabilities Advisory Id: CORE-2010-0316 Advisory URL:...

Novell iManager Multiple Vulnerabilities

No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://corelabs.coresecurity.com/ Novell iManager Multiple Vulnerabilities 1. Advisory Information Title: Novell iManager Multiple Vulnerabilities Advisory Id:...

CORE-2010-0316 - Novell iManager Multiple Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://corelabs.coresecurity.com/ Novell iManager Multiple Vulnerabilities 1. Advisory Information Title: Novell iManager Multiple Vulnerabilities Advisory Id: CORE-2010-0316 Advisory URL:...

Novell iManager Multiple Vulnerabilities

Exploit for novell platform in category dos / poc ======================================== Novell iManager Multiple Vulnerabilities ======================================== 1. Advisory Information Title: Novell iManager Multiple Vulnerabilities Advisory Id: CORE-2010-0316 Advisory URL:...

Novell iManager - Multiple Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://corelabs.coresecurity.com/ Novell iManager Multiple Vulnerabilities 1. Advisory Information Title: Novell iManager Multiple Vulnerabilities Advisory Id: CORE-2010-0316 Advisory URL:...

Novell iManager - Multiple Vulnerabilities

Novell iManager - Multiple Vulnerabilities -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://corelabs.coresecurity.com/ Novell iManager Multiple Vulnerabilities 1. Advisory Information Title: Novell iManager Multiple Vulnerabilities Advisory Id:...