Apache HTTPd Arbitrary Long HTTP Headers DoS (c version)

Exploit for linux platform in category dos / poc ======================================================== Apache HTTPd Arbitrary Long HTTP Headers DoS c version ======================================================== include include include include include include include include include define ...

SUSE-SA:2002:036: mod_php4

The remote host is missing the patch for the advisory SUSE-SA:2002:036 modphp4. PHP is a well known and widely used web programming language. If a PHP script runs in 'safe mode' several restrictions are applied to it including limits on execution of external programs. An attacker can pass shell...

FreeBSD : SA-04:11.msync

The remote host is running a version of FreeBSD which contains a programming error in the msync2 system call which may let a local user with read access to a given file to forbid any change to this file to be written to disk. C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...

FreeBSD : SA-04:13.linux

The remote host is running a version of the FreeBSD kernel which contains a programming error in the way it handles some Linux system calls, which may be exploited by an attacker to gain super-user privileges on the remote host, or to crash it. C Tenable Network Security, Inc. if !...

BryanFTPD ADVISORY

--------------------- BryanFTPD v. 1.0 Buffer Overflow -------------------- RUSSIAN ADVISORY АВТОР: D4rk Eagle [email protected] ОПИСАНИЕ: ------------------------------------------------------------------------- | FTP Server | | | | By: Bryan Cairns | | | | This is an ecapsulation of the ICS -...

Isoqlog-2.2-Beta buffer overflow

+----- Software -----+ Isoqlog is an MTA log analysis program written in C . it designed to scan qmail, postfix, sendmail, exim logfile and produce usage statistics in HTML format. for viewing through a browser. It produces Top domains output according to Incoming , Outgoing , total mails and...

cvs pserver remote heap buffer overflow

Due to a programming error in code used to parse data received from the client, malformed data can cause a heap buffer to overflow, allowing the client to overwrite arbitrary portions of the server's memory. A malicious CVS client can exploit this to run arbitrary code on the server at the...

buffer cache invalidation implementation issues

Programming errors in the implementation of the msync2 system call involving the MSINVALIDATE operation lead to cache consistency problems between the virtual memory system and on-disk contents. In some situations, a user with read access to a file may be able to prevent changes to that file from...

Microsoft Windows XP2000 - TCP Connection Reset

Microsoft Windows XP2000 - TCP Connection Reset AFX TCP Reset by Aphex http://www.iamaphex.cjb.net [email protected] Compile with Delphi 5/6/7 program Project1; $APPTYPE CONSOLE uses Windows; type TBufferArray = array0..65535 of byte; type iph = record ipverlen: byte; iptos: byte; iplen: word;...

Microsoft Windows XP/2000 - TCP Connection Reset

AFX TCP Reset by Aphex http://www.iamaphex.cjb.net [email protected] Compile with Delphi 5/6/7 program Project1; $APPTYPE CONSOLE uses Windows; type TBufferArray = array0..65535 of byte; type iph = record ipverlen: byte; iptos: byte; iplen: word; ipid: word; ipoffset: word; ipttl: byte;...

CVS path validation errors

Two programming errors were discovered in which path names handled by CVS were not properly validated. In one case, the CVS client accepts absolute path names from the server when determining which files to update. In another case, the CVS server accepts relative path names from the client when...

Invision Gallery 1.0.1 - SQL Injection

Invision Gallery 1.0.1 - SQL Injection Invision Power Top Site List SQL Injection Vendor: Invision Power Services Product: Invision Power Top Site List Version: = 1.1 RC 2 Website: http://www.invisiontsl.com/ BID: 9945 Description: Invision Power Top Site List is a flexible site ranking script...

Apache 1.3 IP address access control failure on some 64-bit platforms

Henning Brauer discovered a programming error in Apache 1.3's modaccess that results in the netmasks in IP address access control rules being interpreted incorrectly on 64-bit, big-endian platforms. In some cases, this could cause a deny from' IP address access control rule including a netmask to...

FreeBSD Security Advisory FreeBSD-SA-04:03.jail

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-04:03.jail Security Advisory The FreeBSD Project Topic: Jailed processes can attach to other jails Category: core Module: kernel Announced: 2004-02-25 Credits: JA...

clamav remote denial-of-service

clamav will exit when a programming assertion is not met. A malformed uuencoded message can trigger this assertion, allowing an attacker to trivially crash clamd or other components of clamav...

jailed processes can manipulate host routing tables

A programming error resulting in a failure to verify that an attempt to manipulate routing tables originated from a non-jailed process. Jailed processes running with superuser privileges could modify host routing tables. This could result in a variety of consequences including packets being sent...

Need for Speed 2 Remote Client Buffer Overflow Exploit

No description provided by source. / Need for Speed 2 Remote Client Buffer Overflow Exploit - 23.01.2004 by Luigi Auriemma UNIX & WIN VERSION / include stdio.h include stdlib.h include string.h ifdef WIN32 include winsock.h include "winerr.h" define close closesocket else include unistd.h include...

bind8 negative cache poison attack

A programming error in BIND 8 named can result in a DNS message being incorrectly cached as a negative response. As a result, an attacker may arrange for malicious DNS messages to be delivered to a target name server, and cause that name server to cache a negative response for some target domain...

Microsoft Windows - Workstation Service WKSSVC Remote (MS03-049)

/ Author: snooq Date: 14 November 2003 +++++++++++++ THIS IS A PRIVATE VERSION +++++++++++++++ This is just slightly better than the one I posted to packetstorm.... The public version will crash 'services.exe' immediately while this one crash it only when u exit from shell.... I'm still trying to...

FreeBSD Security Advisory FreeBSD-SA-03:16.filedesc

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-03:16.filedesc Security Advisory The FreeBSD Project Topic: file descriptor leak in readv Category: core Module: kernel Announced: 2003-10-02 Credits: Joost Pol...