Microsoft Active Directory LSASS Recursive Stack Overflow (MS09-066; CVE-2009-1928)

Active Directory provides central authentication and authorization services for Windows-based systems. Active Directory Application Mode ADAM is a Lightweight Directory Access Protocol LDAP directory service that runs as a user service. A denial of service vulnerability has been discovered in...

PNG Image Invalid sPLT Chunk (CVE-2009-2984)

The Portable Network Graphics PNG specification is an image format used as an alternative to other image formats such as the GIF and TIFF formats. A denial of service vulnerability has been discovered in Adobe Acrobat. The vulnerability is due to the way that Adobe Acrobat handle malformed PNG...

flockweb-dos.txt

Flock Social Web Browser 1.2.5 loop Remote Denial of Service Exploit Flock Social Web Browser 1.2.5 loop Remote Denial of Service Exploit Freezed/Locked - Not Responding... function Xploit title="DoS"; url="http://www.zeroscience.org"; if window.sidebar window.sidebar.addPaneltitle, url,""; else ...

DEBIAN-CVE-2008-3688

sockethandler.cpp in HTTP Antivirus Proxy HAVP 0.88 allows remote attackers to cause a denial of service hang by connecting to a non-responsive server, which triggers an infinite loop due to an uninitialized variable...

PT-2008-5050 · Havp · Http Antivirus Proxy

Name of the Vulnerable Software and Affected Versions: HTTP Antivirus Proxy HAVP version 0.88 Description: The issue allows remote attackers to cause a denial of service by connecting to a non-responsive server, triggering an infinite loop due to an uninitialized variable. This occurs in the...

Microsoft Windows PGM Fragment Handling Denial of Service (MS08-036; CVE-2008-1441)

PGM is a reliable and scalable multicast protocol that enables receivers to detect loss, request retransmission of lost data, or notify an application of unrecoverable loss. The vulnerability is due to the PGM's parsing code that fails to properly handle malformed PGM packets that contain an...

[Full-disclosure] Question Regarding IIS 6.0 / Is this a DoS???

Hello List, Recently I saw a small bug in IIS 6.0 when requesting a special path. When I request /AUX/.aspx the server takes a bit longer to respond as Normally. So I did write an automated script to see what happens if I request this file several times at once. The result is that some servers On...

HYSA-2006-007-phpmyfamily.txt

------------------------------------------------------ HYSA-2006-007 h4cky0u.org Advisory 016 ------------------------------------------------------ Date - Mon March 27 2006 TITLE: ====== phpmyfamily v1.4.1 CRLF injection & XSS SEVERITY: ========= Medium SOFTWARE: ========= phpmyfamily v1.4.1...

cloisterblog.txt

Executive Overview ------------------ Cloisterblog, a general usage web blog written in perl suffers from multiple XSS and directory transversal issues as well as a design flaw in the admin section. Program Description -------------------- Cloisterblog...