699 matches found
Debian DSA-018-1 : tinyproxy - remote nobody exploit
PkC have found a heap overflow in tinyproxy that could be remotely exploited. An attacker could gain a shell user nobody remotely. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-018. The...
Microsoft Windows - JPEG GDI+ Overflow Shellcode
// launch a local cmd.exe not bound to the net... // GDI+ buffer overrun exploit by FoToZ // NB: the headers here are only sample headers taken from a .JPG file, // with the FF FE 00 01 inserted in header1. // Sample shellcode is provided // You can put approx. 2500 bytes of shellcode...who needs...
BlackJumboDog FTP Server 3.6.1 Remote Buffer Overflow Exploit
Exploit for unknown platform in category remote exploits ============================================================= BlackJumboDog FTP Server 3.6.1 Remote Buffer Overflow Exploit ============================================================= / 6.9.04|www.Delikon.de|Delikon BlackJumboDog FTP Serv...
AOL Instant Messenger AIM "Away" Message Remote Exploit
Exploit for unknown platform in category remote exploits ======================================================= AOL Instant Messenger AIM "Away" Message Remote Exploit ======================================================= / CAN-2004-0636 / / AIM Away Message Buffer Overflow Exploit Exploit by...
GLSA-200405-12 : CVS heap overflow vulnerability
The remote host is affected by the vulnerability described in GLSA-200405-12 CVS heap overflow vulnerability Stefan Esser discovered a heap overflow in the CVS server, which can be triggered by sending malicious 'Entry' lines and manipulating the flags related to that Entry. This vulnerability wa...
Mozilla Firefox < 1.7.1 / Thunderbird < 0.7.1 POP3 Remote Heap Overflow (deprecated)
Binary data 1773.prm...
WebsitePro <2.5 HTTP GET Request Remote Overflow
Binary data 1449.prm...
Opera < 7.11 Filename Extension Handling Overflow
Binary data 1763.prm...
thttpd < 2.05 If-Modified-Since Header Overflow
Binary data 1522.prm...
GV PostScript Viewer Remote Buffer overflow Exploit (2)
Exploit for linux platform in category remote exploits ======================================================= GV PostScript Viewer Remote Buffer overflow Exploit 2 ======================================================= there are at least 4 other stack buffer overflows, and 2 heap overflows. the...
Mandrake Linux Security Advisory : mod_frontpage (MDKSA-2002:021)
A problem was found in versions of improved modfrontpage prior to 1.6.1 regarding a lack of boundary checks in fpexec.c. This means that the suid root binary is exploitable for buffer overflows. This could be exploited by remote attackers to execute arbitrary code on the server with superuser...
[Full-Disclosure] Buffer overflow in Whisper FTP Surfer 1.0.7
PRODUCT Whisper FTP Surfer is a freeware FTP client for Windows DETAILS A buffer overflow in version 1.0.7 latest version occours when trying to open a file with a long name from an FTP Server. For common extension as .txt FTP surfer create a temporary file and tries to open it. When closing the...
Solaris 2.5.1 (i386) : 108364-02
The remote host is missing Sun Security Patch number 108364-02 CDE 1.0.2x86: libDtSvc Patch. Date this patch was last updated by Sun : Tue Dec 04 04:59:47 MST 2001 You should install this patch for your system to be up-to-date. %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as...
MPlayer <= 1.0pre4 GUI filename handling Overflow Exploit
Exploit for linux platform in category remote exploits ========================================================= MPlayer include include include include include include include include define SUCCESS 0 / True / define FAILURE 1 / False / define ABANNER "MPlayerMeMPlayerMediaMayhem" define ALIGN 0...
Apache Httpd < 2.0.50 : FakeBasicAuth overflow
A buffer overflow in the modssl FakeBasicAuth code could be exploited by an attacker using a trusted client certificate with a subject DN field which exceeds 6K in length...
UNIX 7th Edition /bin/mkdir - Local Buffer Overflow
/ Exploit for /bin/mkdir Unix V7 PDP-11. mkdir has a buffer overflow when checking if the directory in /arg/with/slashes/fname exists. This will run /bin/sh with euid 0, but not uid 0. Since the shell doesn't do anything special about this, we don't really care. If you care, run setuid0;...
CVE-2004-0409
Stack-based buffer overflow in the Socks-5 proxy code for XChat 1.8.0 to 2.0.8, with socks5 traversal enabled, allows remote attackers to execute arbitrary code...
[Full-Disclosure] Mdaemon 7.0.1 IMAP overflow.
Let it be known that this bug is after authentication "postauth" and therefore useless. In the current version of Mdaemon from ALTN there exists an easy to exploit, run-of-the-mill stack overflow. By authenticating and sending a large argument to the STATUS command in the IMAP component, a buffer...
eMule 0.42d - IRC Remote Buffer Overflow
!/usr/bin/perl eMule = 0.42d Remote Exploit by kcope exploits the DecodeBase16 buffer overflow tested on WinXP SP1 / Win2k SP4 bindport/connectback shellcode thanks Kostya Kortchinsky for his posting to bugtraq greetings to sander, blackzero, beginna, adize, A-cru and wY :p have fun! kcope,...
RealSecure Blackice - iss_pam1.dll Remote Overflow
RealSecure Blackice - isspam1.dll Remote Overflow / 557isspamexp - RealSecure / Blackice ICQ isspam1.dll remote overflow exploit Copyright c SST 2004 All rights reserved. Public version code by Sam Sam@efnet and 2004/03/26 Compile: gcc -o 557isspamexp 557isspamexp.c how works? root@core exp...