4752 matches found
Lithtech Engine (new protocol) Socket Unreacheable DoS
No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h ifdef WIN32 include winsock.h / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h include errno.h...
Hydra: SAP R3
This plugin runs Hydra to find SAP R3 accounts and passwords by brute force. To use this plugin, enter the 'Logins file' and the 'Passwords file' under the 'Hydra NASL wrappers options' advanced settings block. TRUSTED...
Hydra: SSH2
This plugin runs Hydra to find SSH2 accounts and passwords by brute force. To use this plugin, enter the 'Logins file' and the 'Passwords file' under the 'Hydra NASL wrappers options' advanced settings block. TRUSTED...
Hydra: IMAP
This plugin runs Hydra to find IMAP accounts and passwords by brute force. To use this plugin, enter the 'Logins file' and the 'Passwords file' under the 'Hydra NASL wrappers options' advanced settings block. TRUSTED...
Hydra: Cisco enable
This plugin runs Hydra to find Cisco 'enable' passwords by brute force. To use this plugin, enter the 'Logins file' and the 'Passwords file' under the 'Hydra NASL wrappers options' advanced settings block. TRUSTED...
ez-ipupdate format string bug
No description provided...
Resource Records Enforcement
...
Debian DSA-204-1 : kdelibs - arbitrary program execution
The KDE team has discovered a vulnerability in the support for various network protocols via the KIO. The implementation of the rlogin and telnet protocols allows a carefully crafted URL in an HTML page, HTML email or other KIO-enabled application to execute arbitrary commands on the system using...
IP Protocols Scan
This plugin detects the protocols understood by the remote IP stack. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description scriptid14788; scriptversion"1.27"; scriptsetattributeattribute:"pluginmodificationdate",...
RHEL 2.1 : mod_ssl (RHSA-2004:408)
An updated modssl package for Apache that fixes a format string vulnerability is now available. The modssl module provides strong cryptography for the Apache Web server via the Secure Sockets Layer SSL and Transport Layer Security TLS protocols. A format string issue was discovered in modssl for...
Orenosv HTTP/FTP Server 0.5.9 - GET Denial of Service (1)
// source: https://www.securityfocus.com/bid/10420/info Orenosv HTTP/FTP server is prone to a denial of service vulnerability that may occur when an overly long HTTP GET request is sent to the server. When the malicious request is handled, it is reported that both the HTTP and FTP daemons will st...
Internet Security Systems Protocol Analysis Module ICQ - Parsing Buffer Overflow
Internet Security Systems Protocol Analysis Module ICQ - Parsing Buffer Overflow // source: https://www.securityfocus.com/bid/9913/info It has been reported that the Internet Security Systems ISS Protocol Analysis Module is prone to a remote buffer overflow vulnerability when parsing the ICQ...
Alpha Black Zero 1.04 - Remote Denial of Service
Alpha Black Zero 1.04 - Remote Denial of Service / by Luigi Auriemma / include include include ifdef WIN32 include include include void stderrvoid char error; switchWSAGetLastError case 10004: error = "Interrupted system call"; break; case 10009: error = "Bad file number"; break; case 10013: erro...
CGI bugs
No description provided...
CVE-2003-0925
...
FreeBSD-SA-03:19.bind
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-03:19.bind Security Advisory The FreeBSD Project Topic: bind8 negative cache poison attack Category: contrib Module: contribbind Announced: 2003-11-28 Credits:...
Multiple vulnerabilities in X.400 implementations
Overview Multiple vulnerabilities exist in different vendors' X.400 implementations. The impacts of these vulnerabilities are varied and range from denial of service to potential remote execution of arbitrary code. Description The U.K. National Infrastructure Security Co-ordination Center NISCC h...
OpenSSL ASN.1 parser insecure memory deallocation
Overview A vulnerability in the way OpenSSL deallocates memory used to store ASN.1 structures could allow a remote attacker to execute arbitrary code with the privileges of the process using the OpenSSL library. Description OpenSSL implements the Secure Sockets Layer SSL and Transport Layer...
[UNIX] Asterisk CallerID CDR SQL Injection
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...
Cisco Security Advisory: CiscoWorks Application Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: CiscoWorks Application Vulnerabilities Revision Numeral 1.0: INTERIM ============================= For Public Release 2003 August 13 UTC 1500 - -------------------------------------------------------------------------------...