efingerd remote buffer overflow and a dangerous feature

Release : 6/3/2002 Author : Spybreak [email protected] Software: efingerd Versions: 1.3, 1.6.1 Problems: Remote buffer overflow and a dangerous feature Efingerd is a "finger daemon, giving you complete control over what are you going to display about your computer" as is written in the man page...

Apple QuickTime 5.0 - Content-Type Remote Buffer Overflow

Apple QuickTime 5.0 - Content-Type Remote Buffer Overflow // source: https://www.securityfocus.com/bid/4064/info Apple QuickTime is a freely available media player. It runs on a number of platforms including MacOS and Windows 9x/ME/NT/2000/XP operating systems. Apple QuickTime For Windows does no...

Apple QuickTime 5.0 - Content-Type Remote Buffer Overflow

// source: https://www.securityfocus.com/bid/4064/info Apple QuickTime is a freely available media player. It runs on a number of platforms including MacOS and Windows 9x/ME/NT/2000/XP operating systems. Apple QuickTime For Windows does not perform sufficient bounds checking of the "Content-Type"...

BrowseFTP Client 1.62 - Remote Buffer Overflow

BrowseFTP Client 1.62 - Remote Buffer Overflow source: https://www.securityfocus.com/bid/3781/info BrowseFTP is an ftp client that runs on various Microsoft Windows operating systems. An issue has been reported which could allow for a malicious ftp server to execute arbitrary code on a BrowseFTP...

ISS Security Alert: AOL Instant Messenger Remote Buffer Overflow

Internet Security Systems Security Alert January 2, 2002 AOL Instant Messenger Remote Buffer Overflow Synopsis: Internet Security Systems ISS X-Force has learned of a remote buffer overflow vulnerability in the popular AOL Instant Messenger AIM software. An exploit for this vulnerability has been...

AOL Instant Messenger 4.x - Remote Buffer Overflow

source: https://www.securityfocus.com/bid/3769/info AOL Instant Messenger AIM is a real time messaging service. The vulnerability exists in the way that AIM parses a game request with a TLV type, length, value type of 0x2711. This type of game request is prone to a buffer overflow which could all...

EFTP 2.0.7 337 - Remote Buffer Overflow Code Execution / Denial of Service

// source: https://www.securityfocus.com/bid/3330/info Encrypted FTP EFTP is both an FTP client and server application for Windows platforms. A malicious user with upload permissions to the target host can cause a buffer overflow in EFTP to execute code of the attacker's choosing. The attacker ca...

CGIEmail 1.6 - Remote Buffer Overflow

// source: https://www.securityfocus.com/bid/6141/info A vulnerability has been discovered in CGIEmail. It should be noted that this vulnerability exists only if the server allows queries to remote hosts. A remotely exploitable buffer overflow has been discovered in a component included with...

AOLServer 3 - 'Authentication String' Remote Buffer Overflow (2)

// source: https://www.securityfocus.com/bid/3230/info AOLServer is a freely available, open source web server. It was originally written by AOL, and is currently developed and maintained by AOL and public domain. A problem has been discovered that can allow remote users to crash an AOLServer,...

ISSalert: ISS Advisory: Remote Buffer Overflow Vulnerability in BSD Line Printer Daemon

Internet Security Systems Security Advisory August 29, 2001 Remote Buffer Overflow Vulnerability in BSD Line Printer Daemon Synopsis: Internet Security Systems ISS X-Force has discovered a vulnerability in several BSD implementations. A buffer overflow vulnerability exists in the BSD Unix line...

AOLServer 3 - Authentication String Remote Buffer Overflow (1)

AOLServer 3 - Authentication String Remote Buffer Overflow 1 source: https://www.securityfocus.com/bid/3230/info AOLServer is a freely available, open source web server. It was originally written by AOL, and is currently developed and maintained by AOL and public domain. A problem has been...

AOLServer 3 - 'Authentication String' Remote Buffer Overflow (1)

source: https://www.securityfocus.com/bid/3230/info AOLServer is a freely available, open source web server. It was originally written by AOL, and is currently developed and maintained by AOL and public domain. A problem has been discovered that can allow remote users to crash an AOLServer, denyi...

FreeBSD-SA-01:49.telnetd

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:49 Security Advisory FreeBSD, Inc. Topic: telnetd contains remote buffer overflow Category: core Module: telnetd Announced: 2001-07-23 Revised: 2001-07-27 Credits:...

Microsoft Visual Studio RAD Support - Remote Buffer Overflow (MS03-051) (Metasploit)

Microsoft Visual Studio RAD Support - Remote Buffer Overflow MS03-051 Metasploit source: https://www.securityfocus.com/bid/2906/info Due to an unchecked buffer in a subcomponent of FrontPage Server Extensions Visual InterDev RAD Remote Deployment Support, a specially crafted request via...

Microsoft Visual Studio RAD Support - Remote Buffer Overflow

// source: https://www.securityfocus.com/bid/2906/info Due to an unchecked buffer in a subcomponent of FrontPage Server Extensions Visual InterDev RAD Remote Deployment Support, a specially crafted request via 'fp30reg.dll' could allow a user to execute arbitrary commands in the context of...

iPlanet 4.1 Web Publisher - Remote Buffer Overflow (2)

iPlanet 4.1 Web Publisher - Remote Buffer Overflow 2 source: https://www.securityfocus.com/bid/2732/info iPlanet Webserver is an http server product offered by the Sun-Netscape Alliance. By sending a specially crafted request composed of at least 2000 characters it is possible to cause a buffer...

Mercury for NetWare POP3 server vulnerable to remote buffer overflow

Hello, All versions of widely-used POP3 server from Mercury MTA package for Netware are vulnerable to remote buffer overflow allowing to crash Netware server: perl -e 'print "APOP " . "a"x2048 . " " . "a"x2048 . "rn"' | nc host 110 Remote execution of malicious code is also theoretically possible...

CrossWind CyberScheduler 2.1 - websyncd Remote Buffer Overflow

// source: https://www.securityfocus.com/bid/2628/info CrossWind CyberScheduler is a scheduling and calendaring package. It consists of two distinct parts for - a set of cgi scripts on a web server and a set of daemons or services on a database server. Both parts are available for Windows NT, Lin...

NTPd - Remote Buffer Overflow

NTPd - Remote Buffer Overflow // source: https://www.securityfocus.com/bid/2540/info NTP, the Network Time Protocol, is used to synchronize the time between a computer and another system or time reference. It uses UDP as a transport protocol. There are two protocol versions in use: NTP v3 and NTP...

Remote buffer overflow in DCOM VB T-SQL debugger

BindView Security Advisory -------- Remote buffer overflow in DCOM VB T-SQL debugger Issue Date: March 27, 2001 Contact: [email protected] Topic: Remote buffer overflow in DCOM VB T-SQL debugger Overview: Microsoft Developer Studio version 6 installs a world-launchable DCOM object, known ...