2052 matches found
[SECURITY] Fedora 8 Update: tog-pegasus-2.6.1-3.fc8
OpenPegasus WBEM Services for Linux enables management solutions that deliv er increased control of enterprise resources. WBEM is a platform and resource independent DMTF standard that defines a common information model and communication protocol for monitoring and controlling resources from...
rpcinfo NSE Script
Connects to portmapper and fetches a list of all registered programs. It then prints out a table including for each program the RPC program number, supported version numbers, port number and protocol, and program name. See also: rpc-grind.nse Script Arguments mount.version, nfs.version,...
Pragma TelnetServer空指针引用拒绝服务漏洞
BUGTRAQ ID: 27143 Pragma TelnetServer是一款远程访问和控制Telnet服务器。 Pragma TelnetServer处理协议数据时存在漏洞,远程攻击者可能利用此漏洞导致服务器不可用。 TelnetServer服务器对每个入站连接启动一个telnetd.exe进程,该进程在处理TELOPT PRAGMA LOGON telnet选项(138号)期间存在空指针引用,导致进程终止。尽管终止单个进程不会影响其他进程,但终止某些进程会导致拒绝访问服务器。 Pragma Systems TelnetServer = 7.0 Build 4 Revision 58...
NoseRub <= 0.5.2 Login SQL Injection Vulnerability
Exploit for unknown platform in category web applications ================================================== NoseRub = 0.5.2 Login SQL Injection Vulnerability ================================================== -- ---------- ---- - ---------------------------- ---------- ---- --...
CVE-2007-6244
Multiple cross-site scripting XSS vulnerabilities in Adobe Flash Player 9.x up to 9.0.48.0 and 8.x up to 8.0.35.0 allow remote attackers to inject arbitrary web script or HTML via 1 a SWF file that uses the asfunction: protocol or 2 the navigateToURL function when used with the Flash Player Activ...
CVE-2004-2758
CVE-2004-2758 affects Sun SunForum 3.2 and Sun Forum 3D 1.0 via the H.323 protocol implementation. The NVD entry describes multiple unspecified vulnerabilities that allow remote attackers to cause a denial of service (segmentation fault and process crash), demonstrated via the PROTOS test suite f...
MIT Kerberos 5 RPC library RPCSEC_GSS buffer overflow
Added: 12/03/2007 CVE: CVE-2007-3999 BID: 25534 OSVDB: 37324 Background Kerberos is a network authentication protocol which provides strong authentication for client/server applications. MIT Kerberos 5 is a free implementation of this protocol. Problem A buffer overflow in the svcauthgssvalidate...
net security update
CentOS Errata and Security Advisory CESA-2007:1045 Updated net-snmp packages that fix a security issue are now available for Red Hat Enterprise Linux 3, 4, and 5. Simple Network Management Protocol SNMP is a protocol used for network management. A flaw was discovered in the way net-snmp handled...
Moderate: Red Hat Security Advisory: net-snmp security update
Updated net-snmp packages that fix a security issue are now available for Red Hat Enterprise Linux 3, 4, and 5. Simple Network Management Protocol SNMP is a protocol used for network management. A flaw was discovered in the way net-snmp handled certain requests. A remote attacker who can connect ...
Low: Red Hat Security Advisory: wireshark security and bug fix update
New Wireshark packages that fix various security vulnerabilities and functionality bugs are now available for Red Hat Enterprise Linux 4. Wireshark was previously known as Ethereal. This update has been rated as having low security impact by the Red Hat Security Response Team. Wireshark is a...
RHEL 5 : openssh (RHSA-2007:0540)
Updated openssh packages that fix a security issue and various bugs are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol implementation. These packages include the core files necessar...
RHEL 2.1 : dhcp (RHSA-2007:0970)
An updated dhcp package that corrects a security flaw is now available for Red Hat Enterprise Linux 2.1. This update has been rated as having important security impact by the Red Hat Security Response Team. The dhcp package provides the ISC Dynamic Host Configuration Protocol DHCP server and rela...
[Full-disclosure] 3 messsages attack remote DOS on Cisco 7940
MADYNES Security Advisory : stateful SIP remote DOS on Cisco 7940 Date of Discovery 3 February, 2007 ID: KIPH5 Synopsis After sending a series of three SIP messages the device reboots. The phone does not check properly the state engine in the SIP stack The vendor was informed in March 2007 and...
Wireshark 0.99.6 - Mms Remote Denial of Service
Wireshark 0.99.6 - Mms Remote Denial of Service include include pragma commentlib, "ws232" char http = "POST / HTTP/1.0\r\n" "Content-Type: application/vnd.wap.mms-message\r\n"; char hoststr = "Host: %s:%d\r\n"; char contentlenstr = "Content-Length: %d\r\n\r\n"; unsigned char mms =...
SurgeMail 38k (SEARCH) Remote Buffer Overflow Exploit
Exploit for unknown platform in category remote exploits ===================================================== SurgeMail 38k SEARCH Remote Buffer Overflow Exploit ===================================================== !/usr/bin/python import os import sys import time import socket import struct th...
Asterisk Skinny (SIP) VoIP protocol DoS
CAPABILITIESRESMESSAGE integer array overflow...
Mozilla protocol abuse
The Mozilla application platform currently has an unpatched input validation flaw which allows you to specify arbitrary command line arguments to any registered URL protocol handler process. Jesper Johansson already detailed parts of this on his blog on July 20,...
Classic: Web2. 0 client components vulnerability scanning one-vulnerability warning-the black bar safety net
A, Web2. 0 is the several technology of integrated application of the results, these techniques are: AJAX(Asynchronous JavaScript and XML,Flash, JSONJavaScript Object Notation,SOAP Simple Object Access Protocol and REST, Representational State Transfer, etc. These techniques coupled with...
RHEL 5 : iscsi-initiator-utils (RHSA-2007:0497)
Updated iscsi-initiator-utils packages that fix a security flaw in open-iscsi are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The iscsi package provides the server daemon for the iSCSI protocol,...
[SECURITY] Fedora Core 5 Update: iscsi-initiator-utils-5.2.0.865-0.0.fc5
The iscsi package provides the server daemon for the iSCSI protocol, as well as the utility programs used to manage it. iSCSI is a protocol for distributed disk access using SCSI commands sent over Internet Protocol networks...