Web//News 1.4 - 'parser.php' Remote File Inclusion (1)

============================================================================================== webnews = v1.4 WNBASEDIR Remote File Inclusion Exploit =============================================================================================== Critical Level : Dangerous Version : v1.4...

GnuPG Parse_Comment Remote Buffer Overflow

Integer overflow in parsecomment in GnuPG gpg 1.4.4 allows remote attackers to cause a denial of service segmentation fault via a crafted message...

DEBIAN-CVE-2006-3746

Integer overflow in parsecomment in GnuPG gpg 1.4.4 allows remote attackers to cause a denial of service segmentation fault via a crafted message...

security flaw

parse-packet.c in GnuPG gpg 1.4.3 and 1.9.20, and earlier versions, allows remote attackers to cause a denial of service gpg crash and possibly overwrite memory via a message packet with a large length long user ID string, which could lead to an integer overflow, as demonstrated using the...

CVE-2006-3082

parse-packet.c in GnuPG gpg 1.4.3 and 1.9.20, and earlier versions, allows remote attackers to cause a denial of service gpg crash and possibly overwrite memory via a message packet with a large length long user ID string, which could lead to an integer overflow, as demonstrated using the...

DEBIAN-CVE-2006-3082

parse-packet.c in GnuPG gpg 1.4.3 and 1.9.20, and earlier versions, allows remote attackers to cause a denial of service gpg crash and possibly overwrite memory via a message packet with a large length long user ID string, which could lead to an integer overflow, as demonstrated using the...

CVE-2006-3082

parse-packet.c in GnuPG gpg 1.4.3 and 1.9.20, and earlier versions, allows remote attackers to cause a denial of service gpg crash and possibly overwrite memory via a message packet with a large length long user ID string, which could lead to an integer overflow, as demonstrated using the...

DEBIAN-CVE-2006-2875

Stack-based buffer overflow in the CLParseDownload function of Quake 3 Engine 1.32c and earlier, as used in multiple products, allows remote attackers to execute arbitrary code via a svcdownload command with compressed data that triggers the overflow during expansion...

Bytehoard 2.1 - 'server.php' Remote File Inclusion

Script: Bytehoard 2.1 Epsilon/Delta www.bytehoard.org Discovered: beford File: ./bytehoard/includes/webdav/server.php Vuln: Remote File Include code requireonce $bhconfig'bhfilepath'."/includes/webdav/parsepropfind.php"; /code...

CVE-2006-1269

Buffer overflow in the parse function in parse.c in zoo 2.10 might allow local users to execute arbitrary code via long filename command line arguments, which are not properly handled during archive creation. NOTE: since this issue is local and not setuid, the set of attack scenarios is limited,...

CVE-2006-1269

Buffer overflow in the parse function in parse.c in zoo 2.10 might allow local users to execute arbitrary code via long filename command line arguments, which are not properly handled during archive creation. NOTE: since this issue is local and not setuid, the set of attack scenarios is limited,...

CVE-2006-1269

Removed by vendor...

linux/x86 HTTP/1.x GET, Downloads and JMP - 68 bytes+

Exploit for linux/x86 platform in category shellcode ===================================================== linux/x86 HTTP/1.x GET, Downloads and JMP - 68 bytes+ ===================================================== / linux/x86 HTTP/1.x GET, Downloads and JMP - 68 bytes+ This shellcode allows you ...

security flaw

The parsestr function in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5, when called with only one parameter, allows remote attackers to enable the registerglobals directive via inputs that cause a request to be terminated due to the memorylimit setting, which causes PHP to set an internal flag that...

security flaw

Buffer overflow in the ParseCommand function in hpgl-input.c in the hpgltops program for CUPS 1.1.22 allows remote attackers to execute arbitrary code via a crafted HPGL file...

Apple Mac OSX 10.3.7 - Input Validation Flaw 'parse_machfile()' Denial of Service

/ DoS for Darwin Kernel Version int main int ac, char av FILE me; int rpl = 0xffffffff; fpost pos = 0x10; printf "- nacho - 2004 DoS for OSX darwin 7.5.0 -\n" ; printf "- nemo pulltheplug org -\n\n" ; printf "+ Opening file for writing.\n" ; if ! me = fopen av, "r+" printf "- Error opening exe.\n...

security flaw

Buffer overflow in the ParseCommand function in hpgl-input.c in the hpgltops program for CUPS 1.1.22 allows remote attackers to execute arbitrary code via a crafted HPGL file...

DEBIAN-CVE-2004-1267

Buffer overflow in the ParseCommand function in hpgl-input.c in the hpgltops program for CUPS 1.1.22 allows remote attackers to execute arbitrary code via a crafted HPGL file...

Microsoft Internet Explorer 5/6 - MSXML XML File Parsing Cross-Site Scripting

source: https://www.securityfocus.com/bid/7938/info A vulnerability has been reported for the Microsoft Internet Explorer that may result in cross-site scripting attacks. If IE, using the MSXML parser, is unable to parse the requested XML file, it will display a parse error that also includes the...

PT-2003-1126 · Openldap · Openldap

Name of the Vulnerable Software and Affected Versions: OpenLDAP versions 2.1.12 and earlier Description: The issue allows remote attackers to cause a denial of service, potentially leading to disruption of protected information availability. This is due to the ldbm back exop passwd function in th...