Immunity Canvas: MSWINSTCP

Name| mswinstcp ---|--- CVE| CVE-2004-1080 Exploit Pack| CANVAS Description| WINS Pointer hijacking exploit MS04-045 Notes| CVE Name: CVE-2004-1080 VENDOR: Microsoft MSADV: MS04-045 MSRC: http://www.microsoft.com/technet/security/bulletin/MS04-045.mspx NOTE: Tested on Win2000 SP Date public: Not...

Immunity Canvas: MS04_045

Name| ms04045 ---|--- CVE| CVE-2004-0567 Exploit Pack| CANVAS Description| WINS Name Validation Stack Overflow Notes| CVE Name: CVE-2004-0567 VENDOR: Microsoft MSADV: MS04-045 VersionsAffected: Repeatability: One shot References: http://www.microsoft.com/technet/security/Bulletin/MS04-045.mspx CV...

[SA13618] Citrix Metaframe XP Unspecified Buffer Overflow Vulnerability

TITLE: Citrix Metaframe XP Unspecified Buffer Overflow Vulnerability SECUNIA ADVISORY ID: SA13618 VERIFY ADVISORY: http://secunia.com/advisories/13618/ CRITICAL: Moderately critical IMPACT: System access WHERE: From local network SOFTWARE: Citrix MetaFrame XP for Windows...

security flaw

Multiple integer handling errors in PHP before 4.3.10 allow attackers to bypass safe mode restrictions, cause a denial of service, or execute arbitrary code via 1 a negative offset value to the shmopwrite function, 2 an "integer overflow/underflow" in the pack function, or 3 an "integer...

Immunity Canvas: CVE_2004_1329

Name| CVE20041329 ---|--- CVE| CVE-2004-1329 Exploit Pack| CANVAS Description| CVE-2004-1329: DIAGNOSTICS environment handling Notes| CVE Name: CVE-2004-1329 VENDOR: IBM VersionsAffected: 5.X Repeatability: unlimited CVE URL: https://vulners.com/cve/CVE-2004-1329 CVSS: 7.2...

PHP: Multiple vulnerabilities

Background PHP is a general-purpose scripting language widely used to develop web-based applications. It can run inside a web server using the modphp module or the CGI version of PHP, or can run stand-alone in a CLI. Description Stefan Esser and Marcus Boerger reported several different issues in...

Microsoft Word for Windows 6.0 Converter Table Conversion Buffer Overflow Vulnerability

Description Microsoft Word for Windows 6.0 Converter is reported prone to a buffer overflow vulnerability. An attacker may exploit this issue to gain unauthorized access to a vulnerable computer in the context of the user running the application. This issue specifically exists in the Table...

CVE-2004-1018

CVE-2004-1018 affects PHP versions before 4.3.10, due to integer handling errors in shmop_write, pack, and unpack. These flaws could allow a remote attacker to bypass safe mode restrictions, cause denial of service, or execute arbitrary code. Several advisories (Ubuntu USN-99-1, Red Hat RHSA advi...

Immunity Canvas: MYSQL_AUTH_BYPASS

Name| mysqlauthbypass ---|--- CVE| CVE-2004-0627 Exploit Pack| CANVAS Description| MySQL authentication bypass Notes| CVE Name: CVE-2004-0627 OSVDB: http://www.osvdb.org/displayvuln.php?osvdbid=7475 Notes: Mysql authentication can be bypass by a special crafted password with zeroed-strings...

[SNS Advisory No.79] A Possibility of Cookie Overwrite in Microsoft Internet Explorer

---------------------------------------------------------------------- SNS Advisory No.79 A Possibility of Cookie Overwrite in Microsoft Internet Explorer Problem first discovered on: Mon, 01 Sept 2003 Published on: Mon, 15 Nov 2004...

VulnCheck KEV: CVE-2004-0727

Microsoft Internet Explorer 6.0.2800.1106 on Microsoft Windows XP SP2, and other versions including 5.01 and 5.5, allows remote web servers to bypass zone restrictions and execute arbitrary code in the local computer zone by redirecting a function to another function with the same name, as...

Microsoft Internet Explorer vulnerable to buffer overflow via FRAME and IFRAME elements

Overview Microsoft Internet Explorer IE contains a buffer overflow vulnerability that can be exploited to execute arbitrary code with the privileges of the user running IE. Description A heap buffer overflow vulnerability exists in the way IE handles the SRC and NAME attributes of HTML elements...

[SA13036] Sun Java System Web Proxy Server Unspecified Buffer Overflow Vulnerabilities

TITLE: Sun Java System Web Proxy Server Unspecified Buffer Overflow Vulnerabilities SECUNIA ADVISORY ID: SA13036 VERIFY ADVISORY: http://secunia.com/advisories/13036/ CRITICAL: Highly critical IMPACT: DoS, System access WHERE: From remote SOFTWARE: Sun Java System Web Proxy Server 3.x...

CoD United Offensive boom boom

An update for the Call of Duty bug http://aluigi.altervista.org/adv/codboom-adv.txt The 15th September 2004 has been officially released the expansion pack called United Offensive. It is an expansion pack but uses a new executable that unfortunally has not been fixed for the shutdown bug I report...

WebLogic < 8.1 SP3 Multiple Vulnerabilities

According to its banner, the remote web server is BEA WebLogic version 8.1 SP2 or older. There are multiple vulnerabilities in such versions that may allow unauthorized access on the remote host or to get the content of the remote JSP scripts. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

BEA WebLogic < 8.1.0 SP 3 Multiple Vulnerabilities

Binary data 2282.prm...

What A Drag! -revisited-

Most people i talked to consider the Internet Explorer drag and drop vulnerability found by http-equiv not as a serious problem, because it requires some user interaction and the press pushes this topic way to much as the "first security problem in SP2". In an article on BetaNews even Microsoft...

IBM DB2 9.1 < 9.1 Fix Pack 7 Information Disclosure

Binary data 5006.prm...

IBM DB2 9.1 < 9.1 Fix Pack 7 / 9.5 < 9.5 Fix Pack 4 Multiple Vulnerabilities

Binary data 5043.prm...

Immunity Canvas: SVNDATE

Name| svndate ---|--- CVE| CVE-2004-0397 Exploit Pack| CANVAS Description| Subversion = 1.0.2 utf-8 Apache2/WebDAV stack vs. heap exploit Notes| CVE Name: CVE-2004-0397 VENDOR: Collabnet OSVDB: http://osvdb.org/displayvuln.php?osvdbid=6301 Repeatability: Multiple tries References:...