HTTP GET Vulnerability in AP1x00

...

CVE-2003-0356

Multiple off-by-one vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the 1 AIM, 2 GIOP Gryphon, 3 OSPF, 4 PPTP, 5 Quake, 6 Quake2, 7 Quake3, 8 Rsync, 9 SMB, 10 SMPP, and 11 TSP dissectors, which do not...

Xeneo Web Server 2.2.9.0 Denial of Service Exploit

Exploit for unknown platform in category dos / poc ================================================== Xeneo Web Server 2.2.9.0 Denial of Service Exploit ================================================== !/usr/bin/perl Xeneo Web Server DoS Vulnerable systems: Xeneo. Web Server 2.2.9.0 Written by...

SSH Malformed Packet Vulnerabilities

...

CVE-2002-1161

...

DSA-204 kdelibs - arbitrary program execution

Bulletin has no description...

FreeBSD-SA-02:43.bind

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-02:43.bind Security Advisory The FreeBSD Project Topic: multiple vulnerabilities in BIND REVISED Category: core Module: bind Announced: 2002-11-15 Credits: ISS X-Force...

Important: Red Hat Security Advisory: : Updated gaim client fixes URL vulnerability

Updated gaim packages are now available for Red Hat Linux 7.1, 7.2, and 7.3. These updates fix a vulnerability in the URL handler. Gaim is an all-in-one instant messaging client that lets you use a number of messaging protocols such as AIM, ICQ, and Yahoo, all at once. Versions of gaim prior to...

FreeBSD-SA-02:33.openssl

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-02:33.openssl Security Advisory The FreeBSD Project Topic: openssl contains multiple vulnerabilities Category: core Module: crypto/openssl Announced: 2002-08-05 Credits: A.L...

Moderate: Red Hat Security Advisory: mod_ssl security update

Updated modssl packages are now available for Red Hat Advanced Server. These updates incorporate a fix for an incorrect bounds check in versions of modssl up to and including version 2.8.9. The modssl module provides strong cryptography for the Apache Web server via the Secure Sockets Layer SSL a...

Buffer overflows in AnalogX Proxy

Multiple buffer overflows in different protocols...

Login configurations

This plugin provides the username and password credentials for common servers, such as HTTP, FTP, NNTP, POP2, POP3, IMAP, IPMI, and SMB NetBios. Some plugins will use those credentials when needed. If you do not provide the credentials, those plugins will not be able to run. Note that this plugin...

Атака через HTML-формы (HTML form attack)

Можно заставить браузер подписать результат запроса формы на другой сервер по протоколу отличному от HTTP например команды протокола POP3 в порт 110. Данные формы могут содержать скрипты и быть использованы для межсайтового скриптинга...

CVE-2001-0572

The SSH protocols 1 and 2 aka SSH-2 as implemented in OpenSSH and other packages have various weaknesses which can allow a remote attacker to obtain the following information via sniffing: 1 password lengths or ranges of lengths, which simplifies brute force password guessing, 2 whether RSA or DS...

EUVD-2001-0564

The SSH protocols 1 and 2 aka SSH-2 as implemented in OpenSSH and other packages have various weaknesses which can allow a remote attacker to obtain the following information via sniffing: 1 password lengths or ranges of lengths, which simplifies brute force password guessing, 2 whether RSA or DS...

Cisco IOS PPTP Vulnerability

...

Novell BorderManager Enterprise Edition 3.5 - Denial of Service

/ 29.4.2001 [email protected] Proof of concept DoS Novell BorderManager Enterprise Edition 3.5 helisec DoSs are lame, i know, but boredom is ugly. DON'T ABUSE. greets: jimjones, doing, darkcode for his paper about raw sockets and all helisec guys. / include include include include include include...

Solaris /usr/lib/dmi/snmpXdmid vulnerability

Summary ------- Title: Solaris SNMP to DMI mapper daemon vulnerability Date Published: 2001-03-15 Bugtraq ID: 2417 CVE CAN: CAN-2001-0236 Class: Boundary Error Condition Buffer Overflow Remotely Exploitable: Yes Locally Exploitable: Yes Description ----------- SNMP and DMI are remote management...

CVE-2000-1226

Snort 1.6, when running in straight ASCII packet logging mode or IDS mode with straight decoded ASCII packet logging selected, allows remote attackers to cause a denial of service crash by sending non-IP protocols that Snort does not know about, as demonstrated by an nmap protocol scan...

Cisco Catalyst SSH Protocol Mismatch Vulnerability

...