Lucene search
K

1390 matches found

OSV
OSV
added 2005/05/02 4:0 a.m.6 views

AZL-37050 CVE-2005-0469 affecting package telnet 0.17-81

Buffer overflow in the slcaddreply function in various BSD-based Telnet clients, when handling LINEMODE suboptions, allows remote attackers to execute arbitrary code via a reply with a large number of Set Local Character SLC commands...

7.5CVSS8AI score0.08635EPSS
Exploits0References1
OSV
OSV
added 2005/05/02 4:0 a.m.7 views

CVE-2005-0241

The httpProcessReplyHeader function in http.c for Squid 2.5-STABLE7 and earlier does not properly set the debug context when it is handling "oversized" HTTP reply headers, which might allow remote attackers to poison the cache or bypass access controls based on header size...

6.5AI score
Exploits0References18
NVD
NVD
added 2005/05/02 4:0 a.m.17 views

CVE-2005-0328

Zyxel P310, P314, P324 and Netgear RT311, RT314 running the latest firmware, allows remote attackers on the WAN to obtain the IP address of the LAN side interface by pinging a valid LAN IP address, which generates an ARP reply from the WAN address side that maps the LAN IP address to the WAN's MA...

5CVSS6.6AI score0.01181EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2005/03/30 7:58 a.m.8 views

security flaw

Buffer overflow in the slcaddreply function in various BSD-based Telnet clients, when handling LINEMODE suboptions, allows remote attackers to execute arbitrary code via a reply with a large number of Set Local Character SLC commands...

7.5CVSS7.8AI score0.08635EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2005/03/28 7:49 p.m.6 views

security flaw

Buffer overflow in the slcaddreply function in various BSD-based Telnet clients, when handling LINEMODE suboptions, allows remote attackers to execute arbitrary code via a reply with a large number of Set Local Character SLC commands...

7.5CVSS7.8AI score0.08635EPSS
Exploits0References4
Cvelist
Cvelist
added 2005/03/24 5:0 a.m.21 views

CVE-2005-0846

Multiple cross-site scripting XSS vulnerabilities in the email auto-reply message in SurgeMail 2.2g3 allow remote attackers to inject arbitrary web script or HTML via the 1 message subject or 2 message header field...

5.8AI score0.01833EPSS
Exploits0References4
securityvulns
securityvulns
added 2005/03/22 12:0 a.m.39 views

[ GLSA 200503-26 ] Sylpheed, Sylpheed-claws: Message reply overflow

Gentoo Linux Security Advisory GLSA 200503-26 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...

5.1CVSS0.5AI score0.03246EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/03/21 12:0 a.m.26 views

GLSA-200503-26 : Sylpheed, Sylpheed-claws: Message reply overflow

The remote host is affected by the vulnerability described in GLSA-200503-26 Sylpheed, Sylpheed-claws: Message reply overflow Sylpheed and Sylpheed-claws fail to properly handle non-ASCII characters in email headers when composing reply messages. Impact : An attacker can send an email containing ...

5.1CVSS6.1AI score0.03246EPSS
Exploits0References3
Gentoo Linux
Gentoo Linux
added 2005/03/20 12:0 a.m.31 views

Sylpheed, Sylpheed-claws: Message reply overflow

Background Sylpheed is a lightweight email client and newsreader. Sylpheed-claws is a 'bleeding edge' version of Sylpheed. Description Sylpheed and Sylpheed-claws fail to properly handle non-ASCII characters in email headers when composing reply messages. Impact An attacker can send an email...

5.1CVSS7AI score0.03246EPSS
Exploits0
OSV
OSV
added 2005/03/07 5:0 a.m.1 views

DEBIAN-CVE-2005-0667

Buffer overflow in Sylpheed before 1.0.3 and other versions before 1.9.5 allows remote attackers to execute arbitrary code via an e-mail message with certain headers containing non-ASCII characters that are not properly handled when the user replies to the message...

5.1CVSS7.8AI score0.03246EPSS
Exploits0References1
OSV
OSV
added 2005/03/06 5:0 a.m.1 views

DEBIAN-CVE-2005-0687

Format string vulnerability in Hashcash 1.16 allows remote attackers to cause a denial of service memory consumption and possibly execute arbitrary code via format string specifiers in a reply address, which is not properly handled when printing the header...

7.5CVSS7.5AI score0.02884EPSS
Exploits0References1
securityvulns
securityvulns
added 2005/02/20 12:0 a.m.35 views

Bidwatcher eBay watching and bidding tool format string bug

Format string bug on server reply processing...

1.2AI score
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
added 2005/02/15 9:37 a.m.7 views

security flaw

Buffer overflow in the gopherToHTML function in the Gopher reply parser for Squid 2.5.STABLE7 and earlier allows remote malicious Gopher servers to cause a denial of service crash via crafted responses...

5CVSS5.9AI score0.08635EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2005/02/15 9:37 a.m.6 views

security flaw

The httpProcessReplyHeader function in http.c for Squid 2.5-STABLE7 and earlier does not properly set the debug context when it is handling "oversized" HTTP reply headers, which might allow remote attackers to poison the cache or bypass access controls based on header size...

5CVSS5.9AI score0.69661EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2005/02/14 12:0 a.m.49 views

GLSA-200501-01 : LinPopUp: Buffer overflow in message reply

The remote host is affected by the vulnerability described in GLSA-200501-01 LinPopUp: Buffer overflow in message reply Stephen Dranger discovered that LinPopUp contains a buffer overflow in string.c, triggered when replying to a remote user message. Impact : A remote attacker could craft a...

10CVSS6.5AI score0.09107EPSS
Exploits1References3
Cvelist
Cvelist
added 2005/02/10 5:0 a.m.22 views

CVE-2005-0328

Zyxel P310, P314, P324 and Netgear RT311, RT314 running the latest firmware, allows remote attackers on the WAN to obtain the IP address of the LAN side interface by pinging a valid LAN IP address, which generates an ARP reply from the WAN address side that maps the LAN IP address to the WAN's MA...

6.6AI score0.01181EPSS
Exploits0References2
Cvelist
Cvelist
added 2005/02/08 5:0 a.m.31 views

CVE-2005-0241

The httpProcessReplyHeader function in http.c for Squid 2.5-STABLE7 and earlier does not properly set the debug context when it is handling "oversized" HTTP reply headers, which might allow remote attackers to poison the cache or bypass access controls based on header size...

6.3AI score0.69661EPSS
Exploits0References13
securityvulns
securityvulns
added 2005/02/02 12:0 a.m.34 views

[SA14091] Squid Oversized Reply Header Handling Security Issue

TITLE: Squid Oversized Reply Header Handling Security Issue SECUNIA ADVISORY ID: SA14091 VERIFY ADVISORY: http://secunia.com/advisories/14091/ CRITICAL: Moderately critical IMPACT: Unknown WHERE: From remote SOFTWARE: Squid 2.x http://secunia.com/product/310/ DESCRIPTION: A security issue with an...

1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/02/02 12:0 a.m.48 views

Fedora Core 3 : squid-2.5.STABLE7-1.FC3.1 (2005-106)

Tue Feb 01 2005 Jay Fenlason 7:2.5.STABLE7-1.FC3.1 - Add more upstream patches, including fixes for bz146783 Correct handling of oversized reply headers bz146778 CVE-2005-0211 Buffer overflow in WCCP recvfrom call - Thu Jan 20 2005 Jay Fenlason 7:2.5.STABLE7-1.FC3 - Upgrade to 2.5.STABLE7 and 18...

10CVSS5.4AI score0.68776EPSS
Exploits2References1
securityvulns
securityvulns
added 2005/02/02 12:0 a.m.36 views

Squid HTTP cache proxy oversized reply headers DoS

No description provided...

0.6AI score
Exploits0References1Affected Software1
Rows per page
Query Builder