CVE-2010-2785

The IRC Protocol component in KVIrc 3.x and 4.x before r4693 does not properly handle \ backslash characters, which allows remote authenticated users to execute arbitrary CTCP commands via vectors involving \r and \40 sequences, a different vulnerability than CVE-2010-2451 and CVE-2010-2452...

Microsoft Windows - ASN.1 Library Bitstring Heap Overflow (MS04-007) (Metasploit)

$Id: ms04007killbill.rb 9929 2010-07-25 21:37:54Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...

Debian: Security Advisory (DSA-2061-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-927-4: nss vulnerability

USN-927-1 fixed vulnerabilities in nss in Ubuntu 9.10. This update provides the corresponding updates for Ubuntu 8.04 LTS. Original advisory details: Marsh Ray and Steve Dispensa discovered a flaw in the TLS and SSLv3 protocols. If an attacker could perform a machine-in-the-middle attack at the...

Debian DSA-2065-1 : kvirc - several vulnerabilities

Two security issues have been discovered in the DCC protocol support code of kvirc, a KDE-based next generation IRC client, which allow the overwriting of local files through directory traversal and the execution of arbitrary code through a format string attack. %NASLMINLEVEL 70300 C Tenable...

[SECURITY] Fedora 11 Update: dhcp-4.1.0p1-6.fc11

DHCP Dynamic Host Configuration Protocol is a protocol which allows individual devices on an IP network to get their own network configuration information IP address, subnetmask, broadcast address, etc. from a DHCP server. The overall purpose of DHCP is to make it easier to administer a large...

Symantec AppStream and Workspace Streaming vulnerable to arbitrary code download and execution

Overview The Symantec AppStream and Workspace Streaming clients fail to properly validate downloads, which can allow a remote, unauthenticated attacker to download and execute arbitrary code on a vulnerable system. Description Symantec Workspace Streaming is a software distribution solution that...

[SECURITY] Fedora 13 Update: dhcp-4.1.1-22.P1.fc13

DHCP Dynamic Host Configuration Protocol is a protocol which allows individual devices on an IP network to get their own network configuration information IP address, subnetmask, broadcast address, etc. from a DHCP server. The overall purpose of DHCP is to make it easier to administer a large...

Openwsman HTTP Basic Authentication Buffer Overflow (CVE-2008-2234)

Openwsman is an implementation of Web Services Management WS-Management specification. It uses the WS-Management protocol, which is a SOAP-based protocol using HTTP for exchange of information related to management of devices and applications in a platform independent manner. There exists a stack...

Debian: Security Advisory (DSA-2038-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Run Netstat over an SSH Connection

Run Netstat over an SSH Connection. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.96082";...

IBM DB2 9.7 < 9.7 Fix Pack 2 Multiple Vulnerabilities

Binary data 5556.prm...

[SECURITY] [DSA 2038-2] New pidgin packages fix regression

------------------------------------------------------------------------ Debian Security Advisory DSA-2038-2 [email protected] http://www.debian.org/security/ Thijs Kinkhorst May 17, 2010 http://www.debian.org/security/faq -...

Samba Multiple DoS Vulnerabilities

Exploit for linux platform in category dos / poc ================================== Samba Multiple DoS Vulnerabilities ================================== Title: Samba Multiple DoS Vulnerabilities Version: 1.0 Issue type: Multiple Affected vendor: Samba Release date: 12/05/2010 Discovered by:...

Samba Denial Of Service

=============================================================================== stratsec Security Advisory: SS-2010-005 =============================================================================== Title: Samba Multiple DoS Vulnerabilities Version: 1.0 Issue type: Multiple Affected vendor: Samb...

e-webtech - new.asp?id SQL Injection

e-webtech - new.asp?id SQL Injection new.asp?id= SQL Injection Vulnerability Home: http://www.dz4all.com/cc | http://www.h4ckforu.com/vb Risk: high Title: new.asp?id= SQL Injection Vulnerability Dork: "Powerd by www.e-webtech.com" Discovred by: protocol From : algeria Contact : [email protected] Greet ...

e-webtech - &#039;new.asp?id=&#039; SQL Injection

new.asp?id= SQL Injection Vulnerability Home: http://www.dz4all.com/cc | http://www.h4ckforu.com/vb Risk: high Title: new.asp?id= SQL Injection Vulnerability Dork: "Powerd by www.e-webtech.com" Discovred by: protocol From : algeria Contact : [email protected] Greet to : All Members of...

QQ input state of vulnerability, let your friends die in the gentle greeting-vulnerability warning-the black bar safety net

Another year of spring, is the old man I haven't come to the BLOG inside. something. Remember last year's early fall back to the old place, a value of the taken place, to hold out something to the place. The discovery of this vulnerability after the really ruthless himself did not add a twist to...

CVE-2009-4810

The Secure Remote Password SRP implementation in Samhain before 2.5.4 does not check for a certain zero value where required by the protocol, which allows remote attackers to bypass authentication via crafted input...

Debian DSA-2038-1 : pidgin - several vulnerabilities

Several remote vulnerabilities have been discovered in Pidgin, a multi protocol instant messaging client. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2010-0420 Crafted nicknames in the XMPP protocol can crash Pidgin remotely. - CVE-2010-0423 Remote...