1390 matches found
AZL-37050 CVE-2005-0469 affecting package telnet 0.17-81
Buffer overflow in the slcaddreply function in various BSD-based Telnet clients, when handling LINEMODE suboptions, allows remote attackers to execute arbitrary code via a reply with a large number of Set Local Character SLC commands...
CVE-2005-0241
The httpProcessReplyHeader function in http.c for Squid 2.5-STABLE7 and earlier does not properly set the debug context when it is handling "oversized" HTTP reply headers, which might allow remote attackers to poison the cache or bypass access controls based on header size...
CVE-2005-0328
Zyxel P310, P314, P324 and Netgear RT311, RT314 running the latest firmware, allows remote attackers on the WAN to obtain the IP address of the LAN side interface by pinging a valid LAN IP address, which generates an ARP reply from the WAN address side that maps the LAN IP address to the WAN's MA...
security flaw
Buffer overflow in the slcaddreply function in various BSD-based Telnet clients, when handling LINEMODE suboptions, allows remote attackers to execute arbitrary code via a reply with a large number of Set Local Character SLC commands...
security flaw
Buffer overflow in the slcaddreply function in various BSD-based Telnet clients, when handling LINEMODE suboptions, allows remote attackers to execute arbitrary code via a reply with a large number of Set Local Character SLC commands...
CVE-2005-0846
Multiple cross-site scripting XSS vulnerabilities in the email auto-reply message in SurgeMail 2.2g3 allow remote attackers to inject arbitrary web script or HTML via the 1 message subject or 2 message header field...
[ GLSA 200503-26 ] Sylpheed, Sylpheed-claws: Message reply overflow
Gentoo Linux Security Advisory GLSA 200503-26 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...
GLSA-200503-26 : Sylpheed, Sylpheed-claws: Message reply overflow
The remote host is affected by the vulnerability described in GLSA-200503-26 Sylpheed, Sylpheed-claws: Message reply overflow Sylpheed and Sylpheed-claws fail to properly handle non-ASCII characters in email headers when composing reply messages. Impact : An attacker can send an email containing ...
Sylpheed, Sylpheed-claws: Message reply overflow
Background Sylpheed is a lightweight email client and newsreader. Sylpheed-claws is a 'bleeding edge' version of Sylpheed. Description Sylpheed and Sylpheed-claws fail to properly handle non-ASCII characters in email headers when composing reply messages. Impact An attacker can send an email...
DEBIAN-CVE-2005-0667
Buffer overflow in Sylpheed before 1.0.3 and other versions before 1.9.5 allows remote attackers to execute arbitrary code via an e-mail message with certain headers containing non-ASCII characters that are not properly handled when the user replies to the message...
DEBIAN-CVE-2005-0687
Format string vulnerability in Hashcash 1.16 allows remote attackers to cause a denial of service memory consumption and possibly execute arbitrary code via format string specifiers in a reply address, which is not properly handled when printing the header...
Bidwatcher eBay watching and bidding tool format string bug
Format string bug on server reply processing...
security flaw
Buffer overflow in the gopherToHTML function in the Gopher reply parser for Squid 2.5.STABLE7 and earlier allows remote malicious Gopher servers to cause a denial of service crash via crafted responses...
security flaw
The httpProcessReplyHeader function in http.c for Squid 2.5-STABLE7 and earlier does not properly set the debug context when it is handling "oversized" HTTP reply headers, which might allow remote attackers to poison the cache or bypass access controls based on header size...
GLSA-200501-01 : LinPopUp: Buffer overflow in message reply
The remote host is affected by the vulnerability described in GLSA-200501-01 LinPopUp: Buffer overflow in message reply Stephen Dranger discovered that LinPopUp contains a buffer overflow in string.c, triggered when replying to a remote user message. Impact : A remote attacker could craft a...
CVE-2005-0328
Zyxel P310, P314, P324 and Netgear RT311, RT314 running the latest firmware, allows remote attackers on the WAN to obtain the IP address of the LAN side interface by pinging a valid LAN IP address, which generates an ARP reply from the WAN address side that maps the LAN IP address to the WAN's MA...
CVE-2005-0241
The httpProcessReplyHeader function in http.c for Squid 2.5-STABLE7 and earlier does not properly set the debug context when it is handling "oversized" HTTP reply headers, which might allow remote attackers to poison the cache or bypass access controls based on header size...
[SA14091] Squid Oversized Reply Header Handling Security Issue
TITLE: Squid Oversized Reply Header Handling Security Issue SECUNIA ADVISORY ID: SA14091 VERIFY ADVISORY: http://secunia.com/advisories/14091/ CRITICAL: Moderately critical IMPACT: Unknown WHERE: From remote SOFTWARE: Squid 2.x http://secunia.com/product/310/ DESCRIPTION: A security issue with an...
Fedora Core 3 : squid-2.5.STABLE7-1.FC3.1 (2005-106)
Tue Feb 01 2005 Jay Fenlason 7:2.5.STABLE7-1.FC3.1 - Add more upstream patches, including fixes for bz146783 Correct handling of oversized reply headers bz146778 CVE-2005-0211 Buffer overflow in WCCP recvfrom call - Thu Jan 20 2005 Jay Fenlason 7:2.5.STABLE7-1.FC3 - Upgrade to 2.5.STABLE7 and 18...
Squid HTTP cache proxy oversized reply headers DoS
No description provided...