513 matches found
Valve Software Half-Life 1.1 Client - Connection Routine Buffer Overflow (1)
// source: https://www.securityfocus.com/bid/8299/info // Half-Life Client has been reported prone to a remotely exploitable buffer overflow condition. // The issue presents itself in the client connection routine, used by the client to negotiate a connection to the Half-Life game server. Due to ...
Valve Software Half-Life 1.1 Client - Connection Routine Buffer Overflow (2)
Valve Software Half-Life 1.1 Client - Connection Routine Buffer Overflow 2 source: https://www.securityfocus.com/bid/8299/info Half-Life Client has been reported prone to a remotely exploitable buffer overflow condition. The issue presents itself in the client connection routine, used by the clie...
e107 Website System 0.555 - 'db.php' Information Disclosure
source: https://www.securityfocus.com/bid/8273/info e107 Website System 'db.php' has been reported prone to an information disclosure vulnerability. A remote attacker may exploit this vulnerability to invoke the dumpsql routine without prior authentication. Information returned to the attacker ma...
Microsoft IIS WebDav buffer overflow
Buffer overflow in path conversion routine...
CVE-2002-0720
Windows 2000 Network Connection Manager (NCM) contains a handler routine that, if configured insecurely, can run under LocalSystem and execute attacker-supplied code. A local user can leverage this to gain full system privileges, per multiple sources (e.g., OpenVAS/Nessus descriptions). Affected ...
BIND memcpy not bounded in case T_SIG of rrextract()
Overview Version 8.2.2 of BIND current circa November 1999 contained a buffer overflow in the routine that converts records from network format to database format. Description Version 8.2.2 of BIND includes some checks for the correct format of a signature record in DNSSEC that previous versions...
CVE-2001-0734
CVE-2001-0734 affects Hitachi Super-H architecture on NetBSD 1.5 and 1.4.1, enabling a local user to gain privileges via manipulated Status Register contents not correctly handled by the sigreturn system call or the process_write_regs kernel routine. The connected documents do not provide additio...
BIND 8.2.x (TSIG) Remote Root Stack Overflow Exploit (3)
Exploit for linux platform in category remote exploits ======================================================== BIND 8.2.x TSIG Remote Root Stack Overflow Exploit 3 ======================================================== / copyright LAST STAGE OF DELIRIUM feb 2001 poland ://lsd-pl.net/ / / bind...
ISC BIND 8.2.x - 'TSIG' Remote Stack Overflow (3)
/ copyright LAST STAGE OF DELIRIUM feb 2001 poland ://lsd-pl.net/ / / bind 8.2 8.2.1 8.2.2 8.2.2-PX Solaris 2.7 x86 / / The code establishes a TCP connection with port 53 of a target system. / / It makes use of the "infoleek" bug through UDP to obtain the base / / value of the named process frame...
ISC BIND 8.2.x - 'TSIG' Remote Stack Overflow (2)
/ copyright LAST STAGE OF DELIRIUM feb 2001 poland ://lsd-pl.net/ / / bind 8.2 8.2.1 8.2.2 8.2.2-PX Slackware 4.0/RedHat 6.2 / / The code establishes a TCP connection with port 53 of a target system. / / It makes use of the "infoleak" bug through UDP to obtain the base / / value of the named...
Windows 2000 Telnet Service DoS
Below is the original message sent to Microsoft, and since apparently 'Disclosure Procedures' are once again in focus... 11/08/2000 - Issue is reported to Microsoft's Security Response Team [email protected] 11/10/2000 - Microsoft confirmed receipt 11/21/2000 - Microsoft responded that they...
backhoe.article
backhoe article, by miff 1. what is it? backhoe is a backdoor daemon that copies a rootshell into /tmp periodically, then deletes it. You set the frequency that you want rootshells to appear, and you set the amount of time that they will persist before backhoe deletes them. This gives the user wh...
ProFTPd 1.2 pre1/pre2/pre3/pre4/pre5 - Remote Buffer Overflow (1)
// source: https://www.securityfocus.com/bid/612/info The vulnerability in 1.2pre1, 1.2pre3 and 1.2pre3 is a remotely exploitable buffer overflow, the result of a sprintf in the logxfer routine in src/log.c. The vulnerability in 1.2pre4 is a mkdir overflow. The name of the created path can not...