[SECURITY] Fedora 22 Update: libssh2-1.5.0-1.fc22

libssh2 is a library implementing the SSH2 protocol as defined by Internet Drafts: SECSH-TRANS22, SECSH-USERAUTH25, SECSH-CONNECTION23, SECSH-ARCH20, SECSH-FILEXFER06, SECSH-DHGEX04, and SECSH-NUMBERS10...

SSH2 3.0 Restricted Shell Escaping Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4547/info SSH and derivatives is the protocol Secure Shell protocol implementation. It is available for various operating systems, although this vulnerability affects operating systems such as Unix and Linux. It has been...

Syslog Server 1.2.3 - Crash PoC

No description provided by source. !/usr/bin/python Exploit Title: Syslog Server 1.2.3 Date: 12th June 2013 Exploit Author: npn Exploit Author Homepage: http://www.iodigitalsec.com/ Vendor Homepage: http://sourceforge.net/users/ghuysmans Software Link:...

CVE-2013-2802

The universal protocol implementation in Sixnet UDR before 2.0 and RTU firmware before 4.8 allows remote attackers to execute arbitrary code; read, modify, or create files; or obtain file metadata via function opcodes...

Syslog Server 1.2.3 Denial Of Service

!/usr/bin/python Exploit Title: Syslog Server 1.2.3 Date: 12th June 2013 Exploit Author: npn Exploit Author Homepage: http://www.iodigitalsec.com/ Vendor Homepage: http://sourceforge.net/users/ghuysmans Software Link: http://download.cnet.com/Syslog-Server/3000-20854-75868875.html Version: 1.2.3...

Syslog Server 1.2.3 - Crash PoC

Exploit for windows platform in category dos / poc This software suffers validation errors throughout the basic protocol implementation making it possible to cause overflows, type mismatches and so on. Here is a type mismatch crash: echo "pwn"|nc -u 192.168.200.20 514 0day.today 2018-04-05...

Syslog Server 1.2.3 - Crash (PoC)

Syslog Server 1.2.3 - Crash PoC !/usr/bin/python Exploit Title: Syslog Server 1.2.3 Date: 12th June 2013 Exploit Author: npn Exploit Author Homepage: http://www.iodigitalsec.com/ Vendor Homepage: http://sourceforge.net/users/ghuysmans Software Link:...

Syslog Server 1.2.3 - Crash (PoC)

!/usr/bin/python Exploit Title: Syslog Server 1.2.3 Date: 12th June 2013 Exploit Author: npn Exploit Author Homepage: http://www.iodigitalsec.com/ Vendor Homepage: http://sourceforge.net/users/ghuysmans Software Link: http://download.cnet.com/Syslog-Server/3000-20854-75868875.html Version: 1.2.3...

kernel: net: slab corruption due to improper synchronization around inet->opt

Race condition in the IP implementation in the Linux kernel before 3.0 might allow remote attackers to cause a denial of service slab corruption and system crash by sending packets to an application that sets socket options during the handling of network traffic...

Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-1556-1)

Chen Haogang discovered an integer overflow that could result in memory corruption. A local unprivileged user could use this to crash the system. CVE-2012-0044 A flaw was found in the Linux kernel's Reliable Datagram Sockets RDS protocol implementation. A local, unprivileged user could use this...

ISC BIND 9 DNSSEC查询响应远程缓存中毒漏洞

BUGTRAQ ID: 37118 CVECAN ID: CVE-2009-4022 BIND是一个应用非常广泛的DNS协议的实现，由ISC负责维护，具体的开发由Nominum公司完成。 启用了DNSSEC验证的名称服务器在解析递归客户端查询期间可能错误的从所接收到响应的附加部分向其缓存添加记录，这是一种缓存中毒的情况。...

Miranda IM多个远程栈溢出漏洞

BUGTRAQ ID: 26115 CVECAN ID: CVE-2007-5542,CVE-2007-5543 Miranda IM是Microsoft Windows平台上使用的开源多协议即时消息客户端。 Miranda IM没有正确地实现雅虎通协议，如果向客户端发送了畸形的雅虎通报文的话，就可以触发栈溢出，导致执行任意指令。 Miranda Miranda IM 0.7 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://sourceforge.net/project/showfiles.php?groupid=94142...

Hastymail IMAP SMTP命令注入漏洞

Hastymail IMAP是一款由PHP编写的IMAP协议实现客户端。 Hastymail IMAP不充分过滤用户提交的URI输入，远程攻击者可以利用漏洞执行其他SMTP命令。 由于对命令和信息缺少验证，可导致恶意用户注入任意IMAP/SMTP命令到邮件服务器，可导致绕过限制进行访问。 Hastymail Hastymail 1.5 Hastymail Hastymail 1.2 Hastymail Hastymail 1.1 Hastymail Hastymail 1.0.2 Hastymail Hastymail 1.0.1 升级程序： Hastymail Hastymail...

Microsoft Advanced Threat Analytics 1.7 Update 1

Role based access control. Windows Server core support. Reconnaissance using Directory Services Enumeration detection. Pass-the-Ticket detections enhancements. Unusual Protocol Implementation detection enhancements...