RedHat Linux 6.x X Font Server DoS and Buffer Overflow Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/1111/info A denial of service exists in the X11 font server shipped with RedHat Linux 6.x. Due to improper input validation, it is possible for any user to crash the X fontserver. This will prevent the X server from...

FreeBSD : ProFTPD ASCII translation bug resulting in remote root compromise (cf0fb426-3f96-11d8-b096-0020ed76ef5a)

A buffer overflow exists in the ProFTPD code that handles translation of newline characters during ASCII-mode file uploads. An attacker may exploit this buffer overflow by uploading a specially crafted file, resulting in code execution and ultimately a remote root compromise. %NASLMINLEVEL 70300 ...

Debian Security Advisory DSA 122-1 (zlib, various)

The remote host is missing an update to zlib, various announced via advisory DSA 122-1. OpenVAS Vulnerability Test $Id: deb1221.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 122-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian Security Advisory DSA 122-1 (zlib, various)

The remote host is missing an update to zlib, various announced via advisory DSA 122-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

[Full-disclosure] Webmin miniserv.pl format string vulnerability

SUMMARY. The webmin miniserv.pl' web server component is vulnerable to a new class of exploitable remote code perl format string vulnerabilities. During the login process it is possible to trigger this vulnerability via a crafted username parameter containing format string data. In the observed...

Debian DSA-122-1 : zlib - malloc error (double free)

The compression library zlib has a flaw in which it attempts to free memory more than once under certain conditions. This can possibly be exploited to run arbitrary code in a program that includes zlib. If a network application running as root is linked to zlib, this could potentially lead to a...

SUSE-SA:2003:032: wuftpd

The remote host is missing the patch for the advisory SUSE-SA:2003:032 wuftpd. Janusz Niewiadomski and Wojciech Purczynski of iSEC Security Research have found a single byte buffer overflow in the Washington University ftp daemon wuftpd, a widely used ftp server for Linux-like systems. It is yet...

Buffer overflow in pam_smb password handling

Applications utilizing pamsmb can be compromised by any user who can enter a password. In many cases, this is a remote root compromise...

ProFTPD ASCII translation bug resulting in remote root compromise

A buffer overflow exists in the ProFTPD code that handles translation of newline characters during ASCII-mode file uploads. An attacker may exploit this buffer overflow by uploading a specially crafted file, resulting in code execution and ultimately a remote root compromise...

SRT2003-08-22-104 - Wireless Intrusion dection remote root compromise

Secure Network Operations, Inc. http://www.secnetops.com Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS, Software Security Validation, and...

Cobalt RaQ Server Appliances contains vulnerability allowing remote root compromise

Overview A remotely exploitable vulnerability exists in Cobalt RaQ Server Appliances with the Security Hardening Package SHP installed. Description The Cobalt RaQ is a Sun Server Appliance. Sun describes the Cobalt RaQ as follows:The Cobalt RaQTM4 is a server appliance that provides a dedicated...

iPlanet WebServer, remote root compromise

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Next Generation Security Technologies http://www.ngsec.com Security Advisory Title: iPlanet WebServer, remote root compromise ID: NGSEC-2002-4 Application: iPlanet WebServer 4. up to SP11 Date: 11/19/2002 Status: Vendor contacted on 09/28/2002, Sun...

Format string bugs in heartbeat

Few format strings potentially can lead to remote root compromise UDP/694...

NetBSD Security Advisory 2002-022: buffer overrun in pic(1)

-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2002-022 ================================= Topic: buffer overrun in pic1 Version: NetBSD-current: source prior to September 28, 2002 NetBSD 1.6: affected NetBSD-1.5.3: affected NetBSD-1.5.2: affected NetBSD-1.5.1: affected NetBSD-1.5:...

pwc.20020630.nims_modweb.b

PricewaterhouseCoopers Security Vulnerability Report No: pwc.20020630.nimsmodweb.b ==================================================== Vulnerability Summary --------------------- Problem: Multiple buffer overflow conditions have been identified in Novell Netmail. Threat: Remote root compromise...

Multiple bugs in Solaris utils

Local and remoter root compromise via buffer overflows and remote DoS attacks...

[NGSEC-2002-1] Ettercap, remote root compromise

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Next Generation Security Technologies http://www.ngsec.com Security Advisory Title: Ettercap, remote root compromise ID: NGSEC-2002-1 Application: ettercap 0.6.3.1 and older http://ettercap.sourceforge.net Date: 05/02/2002 Status: Vendor Contacted, ne...

FreeBSD-SA-01:64.wu-ftpd

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:64 Security Advisory FreeBSD, Inc. Topic: wu-ftpd port contains remote root compromise Category: ports Module: wu-ftpd Announced: 2001-12-04 Credits: CORE Security...

Arkeia Possible remote root & information leakage

Arkeia 4.2 - other versions not tested Possible remote root & information leakage Sumary Arkeia www.arkeia.com is from their webpage: "Arkeia simplifies data protection by providing automated backup and recovery.The system supports a wide variety of computers, operating systems and storage device...

rpc.statd vulnerable to remote root compromise via format string stack overwrite

Overview The CERT/CC has begun receiving reports of an input validation vulnerability in the rpc.statd program being exploited. This program is included, and often installed by default, in several popular Linux distributions. Please see the vendors section of this document for specific informatio...