wget security update

CentOS Errata and Security Advisory CESA-2005:771-01 Updated wget package that fixes several security issues is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. GNU Wget is a file retrieval utility that can use either the HTTP or FTP...

pwnzilla.txt

/ SSSSSSS, SSSSSSS' PwnZilla 5 - One sploit fits all. FireFox optimized iSY iS; .sS Exploit for IDN host name heap buffer overrun in .SSSSSSS .sS Mozilla browsers FireFox, Mozilla and Netscape iS; .sS Copyright C 2003-2005 by Berend-Jan Wever. .SS sSSSSSSP Official release:...

Mozilla / Mozilla Firefox authentication weakness

Dear bugTraq, I have reported this issue some time ago: http://www.security.nnov.ru/Fnews19.html but it looks like it was ignored, and not fixed in latest mozilla and firefox releases, so I decided to send "formal" advisory Issue: Mozilla browsers authentication weakness Author: 3APA3A...

[Full-disclosure] Mozilla Firefox "Host:" Buffer Overflow

Mozilla Firefox "Host:" Buffer Overflow Release Date: September 8, 2005 Date Reported: September 4, 2005 Severity: Critical Vendor: Mozilla Versions Affected: Firefox Win32 1.0.6 and prior Firefox Linux 1.0.6 and prior Firefox 1.5 Beta 1 Deer Park Alpha 2 Overview: A buffer overflow vulnerability...

Gaim AIMICQ Protocols - Multiple Vulnerabilities

Gaim AIMICQ Protocols - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/14531/info Gaim is prone to multiple vulnerabilities affecting the AIM and ICQ protocols. These issues may allow remote attackers to trigger a buffer overflow or a denial-of-service condition. All versions ...

RHEL 2.1 : ucd-snmp (RHSA-2005:720)

Updated ucd-snmp packages that a security issue are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having low security impact by the Red Hat Security Response Team. SNMP Simple Network Management Protocol is a protocol used for network management. A denial of servic...

MS Windows XP SP2 (rdpwd.sys) Remote Kernel DoS Exploit

Exploit for unknown platform in category dos / poc ======================================================= MS Windows XP SP2 rdpwd.sys Remote Kernel DoS Exploit ======================================================= // get SPIKE here: http://www.immunitysec.com/resources-freesoftware.shtml /str0...

CVE-2000-1226

Snort 1.6, when running in straight ASCII packet logging mode or IDS mode with straight decoded ASCII packet logging selected, allows remote attackers to cause a denial of service crash by sending non-IP protocols that Snort does not know about, as demonstrated by an nmap protocol scan...

CVE-2000-1226

Snort 1.6 is affected. In straight ASCII packet logging mode or IDS mode with straight decoded ASCII packet logging, remote attackers can cause a denial of service (crash) by sending non-IP protocols that Snort cannot recognize, as demonstrated by an nmap protocol scan. This vulnerability is docu...

Multiple tcpdump / ethereal sniffers vulnerabilities

Endless loops during handling RSVP, ISIS, BGP, LDP protocols, buffer overflows in ANSI A, GSM MAP, AIM, DISTCC, FCELS, SIP, KINK, LMP, Telnet, TZSP, WSP, BER, SMB, H.245, Bittorrent, Fibre Channel and many others...

Voice VLAN Access/Abuse Possible on Cisco voice-enabled, 802.1x-secured Interfaces

========================================================================== Title: Voice VLAN Access/Abuse Possible on Cisco voice-enabled, 802.1x-secured Interfaces Vulnerability Discovery: FishNet Security - http://www.fishnetsecurity.com Date: 06/08/2005 Severity: Medium - Voice VLAN locally...

[Full-disclosure] AOL AIM Instant Messenger Buddy Icon "ateimg32.dll" DoS

AOL AIM Instant Messenger Buddy Icon "ateimg32.dll" DoS Release Date: June 6, 2005 Date Reported: June 6, 2005 Severity: Medium? if you can exploit it, email me. ;- Vendor: AOL Systems Affected: AIM 5.9.3797 for Windows 98/ME/2K/XP 5.96 MB and all prior versions. Affected Platforms: Windows...

security flaw

Multiple unknown vulnerabilities in the 1 WSP, 2 Q.931, 3 H.245, 4 KINK, 5 MGCP, 6 RPC, 7 SMBMailslot, and 8 SMB NETLOGON dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service crash via unknown vectors that lead to a null dereference...

GLSA-200505-09 : Gaim: Denial of Service and buffer overflow vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200505-09 Gaim: Denial of Service and buffer overflow vulnerabilities Stu Tomlinson discovered that Gaim is vulnerable to a remote stack based buffer overflow when receiving messages in certain protocols, like Jabber and SILC, wit...

gaim -- remote crash on some protocols

The GAIM team reports that GAIM is vulnerable to a denial-of-service vulnerability which can cause GAIM to crash: It is possible for a remote user to overflow a static buffer by sending an IM containing a very large URL greater than 8192 bytes to the Gaim user. This is not possible on all...

ZeroBoard Worm Source Code

No description provided by source. / The worm exploits a vulnerability in ZeroBoard, allowing an attacker to inject arbitrary PHP code. /str0ke / / ZeroBoard -1day INE w0rm / include stdio.h include unistd.h include stdlib.h include sys/socket.h include netdb.h include netinet/in.h include signal...

Computer Associates Licensing client and server multiple vulnerabilities

Multiple buffer overflows on different network protocol commands processing...

Microsoft ASN.1 BitString Encoding Attack (MS04-007; CAN-2003-0818)

...

IRC

...

Multiple Vulnerabilities in FlatNuke

CODEBUG Labs Advisory 6 Title: Multiple Vulnerabilities in Flat-nuke Author: Pierquinto 'Mantra' Manco English Version: David 'hanska' Paleino Product: Flat-Nuke 2.5.1 Type: Multiple Vulnerabilities Web: http://www.codebug.org - Software Page www.flatnuke.org "FlatNuke is a CMS Content Management...