File Store PRO 3.2 Multiple Blind SQL Injection Vulnerabilities

No description provided by source. | File Store PRO 3.2 Blind SQL Injection | || Download from: http://upoint.info/cgi/demo/fs/filestore.zip - Need admin rights: /confirm.php: code ifisset$GET"folder" && $GET"folder"!="" $folder=$GET"folder"; else exit"Bad Request"; ifisset$GET"id" && $GET"id"!="...

FreeBSD : FreeType 2 -- Multiple Vulnerabilities (4fb43b2f-46a9-11dd-9d38-00163e000016)

Secunia reports : - An integer overflow error exists in the processing of PFB font files. This can be exploited to cause a heap-based buffer overflow via a PFB file containing a specially crafted 'Private' dictionary table. - An error in the processing of PFB font files can be exploited to trigge...

MS Windows Malformed IP Options DoS Exploit (MS05-019)

No description provided by source. / ecl-winipdos.c - 16/04/05 Yuri Gushin [email protected] Alex Behar [email protected] This one was actually interesting, an off-by-one by our beloved M$ : When processing an IP packet with an option size 2nd byte after the option of 39, it will crash - sinc...

fuzzylime cms 3.01 Remote Command Execution Exploit

Exploit for unknown platform in category web applications =================================================== fuzzylime cms 3.01 Remote Command Execution Exploit =================================================== !/usr/bin/perl fuzzylime 3.0.1 Perl exploit discovered & written by Ams DESCRIPTION...

BareNuked CMS 1.1.0 Arbitrary Add Admin Exploit

No description provided by source. !/usr/bin/perl ============================================ BareNuked CMS Arbitrary Add Admin Exploit ============================================ ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...

pSys 0.7.0 Alpha - chatbox.php SQL Injection

pSys 0.7.0 Alpha - chatbox.php SQL Injection '/ -.- ---------------------oOO------OOo-------------------- | pSys v0.7.0 Alpha chatbox.php Remote SQL Injection | | works only with magic quotes = off | | coded by DNX | -------------------------------------------------------- ! Discovered.: DNX !...

CVE-2008-2851

Multiple buffer overflows in OFF System before 0.19.14 allow remote attackers to have an unknown impact via unspecified vectors related to "parsing of http headers."...

CVE-2008-2851

Multiple buffer overflows in OFF System before 0.19.14 allow remote attackers to have an unknown impact via unspecified vectors related to "parsing of http headers."...

Buffer overflow

Multiple buffer overflows in OFF System before 0.19.14 allow remote attackers to have an unknown impact via unspecified vectors related to "parsing of http headers."...

CVE-2008-2851

CVE-2008-2851 concerns multiple buffer overflows in OFF System prior to 0.19.14 triggered through parsing of HTTP headers. Affected software is OFF System (pre-0.19.14); vendor/product details are not expanded beyond this version range in the provided documents. Root cause described as buffer ove...

CVE-2008-2851

Multiple buffer overflows in OFF System before 0.19.14 allow remote attackers to have an unknown impact via unspecified vectors related to "parsing of http headers."...

NASM 2.0 - 'ppscan()' Off-by-One Buffer Overflow

source: https://www.securityfocus.com/bid/29656/info NASM is prone to an off-by-one buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. Successfully exploiting this issue will allow attackers to execute arbitrary code within the...

FreeType off-by-one flaws

Multiple off-by-one errors in FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via 1 a crafted table in a Printer Font Binary PFB file or 2 a crafted SHC instruction in a TrueType Font TTF file, which triggers a heap-based buffer overflow...

FreeType off-by-one flaws

Multiple off-by-one errors in FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via 1 a crafted table in a Printer Font Binary PFB file or 2 a crafted SHC instruction in a TrueType Font TTF file, which triggers a heap-based buffer overflow...

CVE-2008-2754

SQL injection vulnerability in toplists.php in eFiction 3.0 and 3.4.3, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the list parameter...

SOL8837 - OpenSSL DTLS off-by-one error - CVE-2007-4995

Description CVE-2007-4995 - Off-by-one error in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8f allows remote attackers to execute arbitrary code via unspecified vectors. Information about this advisory is available at the following location:...

DEBIAN-CVE-2008-2719

Off-by-one error in the ppscan function preproc.c in Netwide Assembler NASM 2.02 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted file that triggers a stack-based buffer overflow...

Heap overflow

Multiple off-by-one errors in FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via 1 a crafted table in a Printer Font Binary PFB file or 2 a crafted SHC instruction in a TrueType Font TTF file, which triggers a heap-based buffer overflow...

DEBIAN-CVE-2008-1808

Multiple off-by-one errors in FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via 1 a crafted table in a Printer Font Binary PFB file or 2 a crafted SHC instruction in a TrueType Font TTF file, which triggers a heap-based buffer overflow...

CVE-2008-1808

Multiple off-by-one errors in FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via 1 a crafted table in a Printer Font Binary PFB file or 2 a crafted SHC instruction in a TrueType Font TTF file, which triggers a heap-based buffer overflow...