7973 matches found
phpMyChat 0.15.0dev (SYS enter) Remote Code Execution Exploit
Exploit for unknown platform in category web applications ============================================================= phpMyChat 0.15.0dev SYS enter Remote Code Execution Exploit ============================================================= !/usr/bin/php -q -d shortopentag=on works with...
CVE-2006-1117
nCipher firmware before V10, as used by 1 nShield, 2 nForce, 3 netHSM, 4 payShield, 5 SecureDB, 6 DSE200 Document Sealing Engine, 7 Time Source Master Clock TSMC, and possibly other products, contains certain options that were only intended for testing and not production, which might allow remote...
CVE-2006-1079
htpasswd, as used in Acme thttpd 2.25b and possibly other products such as Apache, might allow local users to gain privileges via shell metacharacters in a command line argument, which is used in a call to the system function. NOTE: since htpasswd is normally installed as a non-setuid program, an...
CVE-2006-0965
NCP Network Communication Secure Client 8.11 Build 146, and possibly other versions, allows local users to bypass security protections and configure privileged options via a long argument to ncpmon.exe, which provides access to alternate privileged menus, possibly due to a buffer overflow...
CVE-2006-0839
The frag3 preprocessor in Sourcefire Snort 2.4.3 does not properly reassemble certain fragmented packets with IP options, which allows remote attackers to evade detection of certain attacks, possibly related to IP option lengths...
CVE-2006-0839
The frag3 preprocessor in Sourcefire Snort 2.4.3 does not properly reassemble certain fragmented packets with IP options, which allows remote attackers to evade detection of certain attacks, possibly related to IP option lengths...
Design/Logic Flaw
The frag3 preprocessor in Sourcefire Snort 2.4.3 does not properly reassemble certain fragmented packets with IP options, which allows remote attackers to evade detection of certain attacks, possibly related to IP option lengths...
CVE-2006-0839
The frag3 preprocessor in Sourcefire Snort 2.4.3 does not properly reassemble certain fragmented packets with IP options, which allows remote attackers to evade detection of certain attacks, possibly related to IP option lengths...
CVE-2006-0839
The CVE-2006-0839 entry concerns the frag3 preprocessor in Sourcefire Snort 2.4.3. It states that certain fragmented packets with IP options are not properly reassembled, which can allow remote attackers to evade detection of certain attacks (potentially related to IP option lengths). The existin...
CVE-2006-0839
Removed by vendor...
CVE-2006-0737
eStara SIP softphone allows remote attackers to cause a denial of service crash via a SIP OPTIONS request with a negative Expires field...
Design/Logic Flaw
eStara SIP softphone allows remote attackers to cause a denial of service crash via a SIP OPTIONS request with a negative Expires field...
Linux kernel ICMP DoS
record-route or timestamp IP options handling vulnerability...
CVE-2006-0454
Linux kernel before 2.6.15.3 down to 2.6.12, while constructing an ICMP response in icmpsend, does not properly handle when the ipoptionsecho function in icmp.c fails, which allows remote attackers to cause a denial of service crash via vectors such as 1 record-route and 2 timestamp IP options wi...
CVE-2006-0454
Linux kernel before 2.6.15.3 down to 2.6.12, while constructing an ICMP response in icmpsend, does not properly handle when the ipoptionsecho function in icmp.c fails, which allows remote attackers to cause a denial of service crash via vectors such as 1 record-route and 2 timestamp IP options wi...
CVE-2006-0454
The CVE-2006-0454 issue affects the Linux kernel (2.6.x) where icmp_send mishandles failures in ip_options_echo, enabling remote attackers to crash the host via crafted ICMP options (record-route, timestamp with needaddr and truncated value). Public advisories from SUSE, Red Hat, Fedora, Ubuntu d...
CVE-2004-0592
Summary: CVE-2004-0592 affects the SUSE Linux 2.6.5 kernel with USAGI patches, specifically the netfilter IPv6 path. The issue arises in the tcp_find_option function when using iptables and TCP options rules, where a large option length can yield a negative integer after casting to char, causing ...
Buffer overflow
Buffer overflow in Dual DHCP DNS Server 1.0 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via the DHCP options field...
CVE-2006-0304
Buffer overflow in Dual DHCP DNS Server 1.0 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via the DHCP options field...
Linksys VPN routers DoS
IP packet with invalid IP options causes router to crash...