6849 matches found
libxml2: long entity name heap buffer overflow
Heap-based buffer overflow in the xmlParseAttValueComplex function in parser.c in libxml2 before 2.7.0 allows context-dependent attackers to cause a denial of service crash or execute arbitrary code via a long XML entity name...
DEBIAN-CVE-2008-3746
neon 0.28.0 through 0.28.2 allows remote servers to cause a denial of service NULL pointer dereference and crash via vectors related to Digest authentication, Digest domain parameter support, and the parsedomain function...
LoveCMS 1.6.2 Final - Remote Code Execution
!/usr/bin/ruby Exploit by PoMdaPiMp! --------------------- pomdapimpatgmaildotcom LoveCMS Exploit Series Episode 1: adding a side block Description: add some php into a block container on the side of the site. phpinfo is called. Usage: ./LoveCMS1blocks.rb Ex: ./LoveCMS1blocks.rb...
LoveCMS 1.6.2 Final Update Settings Remote Exploit
Exploit for unknown platform in category web applications ================================================== LoveCMS 1.6.2 Final Update Settings Remote Exploit ================================================== !/usr/bin/ruby Exploit by PoMdaPiMp! --------------------- LoveCMS Exploit Series...
Novell GroupWise Messenger Client (GWIM) Remote Stack Overflow
|| || ISR || Infobyte Security Research || www.infobyte.com.ar || 07.02.2008 || .:: SUMMARY Novell GroupWise Messenger Client GWIM Remote Stack Overflow Version: 2.0, It is suspected that all previous versions of Groupwise Messenger Client are vulnerable. .:: BACKGROUND Novell GroupWise Messenger...
[SECURITY] Fedora 8 Update: wbxml2-0.9.2-12.fc8
The WBXML Library libwbxml contains a library and its associated tools to parse, encode and handle WBXML documents. The WBXML format is a binary representation of XML, defined by the Wap Forum, and used to reduce bandwidth in mobile communications...
Debian: Security Advisory (DSA-179)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
White_Dune本地缓冲区溢出及格式串处理漏洞
BUGTRAQ ID: 27102 WhiteDune是VRML97文件的开源编辑器和查看器。 WhiteDune的实现上存在多个安全漏洞,远程攻击者可能利用此漏洞控制用户系统。 ----------------------------------- A Scene::errorf缓冲区溢出 ----------------------------------- 用于创建解析WRL文件中所出现问题的错误消息的函数中存在缓冲区溢出漏洞。以下是Scene.cpp文件中的漏洞代码: void Scene::errorfconst char fmt, ... valist ap; char...
[SECURITY] Fedora 7 Update: libexif-0.6.15-3.fc7
Most digital cameras produce EXIF files, which are JPEG files with extra tags that contain information about the image. The EXIF library allows you to parse an EXIF file and read the data from those tags...
tcpdump denial of service
Off-by-one buffer overflow in the parseelements function in the 802.11 printer code print-80211.c for tcpdump 3.9.5 and earlier allows remote attackers to cause a denial of service crash via a crafted 802.11 frame. NOTE: this was originally referred to as heap-based, but it might be stack-based...
SHTTPD 1.38 - Filename Parse Error Information Disclosure
SHTTPD 1.38 - Filename Parse Error Information Disclosure source: https://www.securityfocus.com/bid/24618/info SHTTPD is prone to an information-disclosure vulnerability. An attacker can exploit this issue to access sensitive information that may lead to further attacks. This issue affects SHTTPD...
SHTTPD 1.38 - Filename Parse Error Information Disclosure
source: https://www.securityfocus.com/bid/24618/info SHTTPD is prone to an information-disclosure vulnerability. An attacker can exploit this issue to access sensitive information that may lead to further attacks. This issue affects SHTTPD 1.38; other versions may also be affected...
MyServer 0.8.9 - Filename Parse Error Information Disclosure
MyServer 0.8.9 - Filename Parse Error Information Disclosure source: https://www.securityfocus.com/bid/24571/info MyServer is prone to an information-disclosure vulnerability. An attacker can exploit this issue to access sensitive information that may lead to further attacks. This issue affects...
MyServer 0.8.9 - Filename Parse Error Information Disclosure
source: https://www.securityfocus.com/bid/24571/info MyServer is prone to an information-disclosure vulnerability. An attacker can exploit this issue to access sensitive information that may lead to further attacks. This issue affects MyServer 0.8.9; other versions may also be affected...
[SECURITY] Fedora 7 Update: libexif-0.6.15-2.fc7
Most digital cameras produce EXIF files, which are JPEG files with extra tags that contain information about the image. The EXIF library allows you to parse an EXIF file and read the data from those tags...
[SECURITY] Fedora 7 Update: libexif-0.6.15-1.fc7
Most digital cameras produce EXIF files, which are JPEG files with extra tags that contain information about the image. The EXIF library allows you to parse an EXIF file and read the data from those tags...
DEBIAN-CVE-2007-1804
PulseAudio 0.9.5 allows remote attackers to cause a denial of service daemon crash via 1 a PAPSTREAMDESCRIPTORLENGTH value of FRAMESIZEMAXALLOW sent on TCP port 9875, which triggers a p-export assertion failure in doread; 2 a PAPSTREAMDESCRIPTORLENGTH value of 0 sent on TCP port 9875, which...
CVE-2007-1218
Off-by-one buffer overflow in the parseelements function in the 802.11 printer code print-80211.c for tcpdump 3.9.5 and earlier allows remote attackers to cause a denial of service crash via a crafted 802.11 frame. NOTE: this was originally referred to as heap-based, but it might be stack-based...
DEBIAN-CVE-2007-1218
Off-by-one buffer overflow in the parseelements function in the 802.11 printer code print-80211.c for tcpdump 3.9.5 and earlier allows remote attackers to cause a denial of service crash via a crafted 802.11 frame. NOTE: this was originally referred to as heap-based, but it might be stack-based...
ezConvert: phpBB ezBoard converter v0.2 (ezconvert_dir) Remote File Include Exploit
No description provided by source. C xoron Name: ezConvert: phpBB ezBoard converter v0.2 ezconvertdir Remote File Include Exploit Author: xoron Exploit coded by xoron Download: http://sourceforge.net/project/showfiles.php?groupid=114129 xoron.biz - xoron.info www.xoron.info/bugs/ezconvert.txt...