292 matches found
IBM AIX portmir vulnerable to buffer overflow via echo_error
Overview There is a buffer overflow in the IBM AIX portmir command that may allow local users to gain root privileges. Description There is a buffer overflow in the echoerror routine of the IBM AIX portmir command. An attacker may be able to corrupt lock files in the "/etc/locks" directory. ---...
Trend Micro InterScan eManager vulnerable to remotely exploitable buffer overflow
Overview A remotely exploitable buffer overflow exists in Trend Micro InterScan eManager. Description Trend Micro InterScan eManager is an application that inspects email traffic flowing into and out of a network for confidential or inappropriate material entering and/or leaving the network. This...
BroadVision One-To-One Enterprise Nonexistent JSP Request Path Disclosure
BroadVision reveals the physical path of the webroot when asked for a nonexistent .jsp file if it is configured incorrectly. While displaying errors is useful for debugging applications, this feature should not be enabled on production servers. A remote attacker could use this information to moun...
Catman file clobbering vulnerability Solaris 2.x
Solaris 2.7/2.8 catman temp file vulnerability. Larry W. Cashdollar Vapid Labs Date Published: 12/18/2000 Advisory ID: 11242000-02 Risk: Low Title: catman temp file vulnerability. Class: insecure temp file handling. Remotely Exploitable: no Locally Exploitable: Yes Vulnerability Description:...
Kerberos client code buffer overflow in kdc_reply_cipher()
Overview There is a buffer overflow is the kdcreplycipher function of KTH Kerberos. This buffer overflow may be exploitable to allow an attacker to gain root privileges, and can be used to deny service. Description The buffer overflow occurs in the parsing of an authentication reply in the...
DALnet Bahamut IRCd 4.6.5 - 'SUMMON' Remote Buffer Overflow
// source: https://www.securityfocus.com/bid/1404/info Dalnet ircd is a server for a popular internet chat application, IRC Internet Relay Chat. The implementation for one of its features, the "summon" command, has a hole which could grant an attacker remote access on the host running the server...
WU-FTPD site_exec() Function Remote Format String
The version of WU-FTPD hosted on the remote server does not properly sanitize the argument of the SITE EXEC command. It may be possible for a remote attacker to gain root access. This script was written by Alexis de Bernis Changes by Tenable: - rely on the banner if we could not log in - changed...
Mini SQL CGI content-length Field Remote Overflow
The mini-sql program comes with the w3-msql CGI which is vulnerable to a buffer overflow. An attacker may use it to gain a shell on this system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include 'compat.inc' ; ifdescription scriptid10296; scriptversion"1.40"; scriptcveid"CVE-2000-0012"...
hp5.txt
Date: Sat, 5 Sep 1998 19:47:29 -0600 From: [email protected] Subject: Another way to crash HP 5M/5N printers In addition to using nestea2 to crash any HP printer, I seem to have found a way to crash certain HP printers with a single perfectly legitimate SNMP packet. The potential impact of this...
msie4-5.java.DoS.txt
Date: Mon, 9 Nov 1998 10:57:55 -0600 From: Aleph One To: [email protected] Subject: Major Explorer 4 java security hole! ---------- Forwarded message ---------- Date: Sun, 08 Nov 1998 05:04:27 +0100 From: Fabio Ciucci To: [email protected] Subject: NTSEC Major Explorer 4 java security hole!...
CVE-2022-26037
...
CVE-2023-0886
...