Security Bulletin: IBM Flex System Chassis Management Module (CMM) is affected by vulnerabilities in curl

Summary IBM Flex System Chassis Management Module CMM has addressed the following vulnerabilities in curl. Vulnerability Details CVEID: CVE-2018-1000120 DESCRIPTION: curl is vulnerable to a heap-based buffer overflow, caused by improper bounds checking when handling FTP URLs. By persuading a vict...

Denial Of Service (DoS)

libcurl.so is vulnerable to buffer over-read. There is a flaw in the application when reading RTSP responses, if there are no headers in the RTSP responses the library reads beyond the buffer, leading to the reading of sensitive information beyond the buffer or to the application crashing...

CURL-CVE-2018-1000301 RTSP bad headers buffer over-read

curl can be tricked into reading data beyond the end of a heap based buffer used to store downloaded content. When servers send RTSP responses back to curl, the data starts out with a set of headers. curl parses that data to separate it into a number of headers to deal with those appropriately an...

Apple QuickTime 7.3 RTSP Response Header Buffer Overflow

No description provided by source. $Id: applequicktimertspresponse.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing an...

QuickTime < 7.4.1 RTSP Response Handling Overflow

Binary data 4363.prm...

CVE-2007-6166

Stack-based buffer overflow in Apple QuickTime before 7.3.1, as used in QuickTime Player on Windows XP and Safari on Mac OS X, allows remote Real Time Streaming Protocol RTSP servers to execute arbitrary code via an RTSP response with a long Content-Type header...

Apple QuickTime 7.2/7.3 RTSP Response Universal Exploit (IE7/FF/Opera)

Exploit for unknown platform in category remote exploits ====================================================================== Apple QuickTime 7.2/7.3 RTSP Response Universal Exploit IE7/FF/Opera ====================================================================== !/usr/bin/python...

Apple QuickTime 7.2/7.3 (Internet Explorer 7 / Firefox / Opera) - RTSP Response Universal

!/usr/bin/python http://www.offensive-security.com Bug discovered by Krystian Kloskowski h07 Tested on: Apple QuickTime Player 7.3 / 7.2 IE7,FF /Opera, XP SP2, Vista This exploit is completely "Universal" .... It has also been modded to work via url redirection ... Magic RETs work on...

Apple QuickTime 7.3 RTSP Response Universal Exploit (Vista / XP)

No description provided by source. !/usr/bin/python Apple QuickTime 7.3 RTSP Response Vista / XPSP2 Universal Bug discovered by Krystian Kloskowski h07 [email protected] Edited by muts - offensive-security.com http://www.offensive-security.com Tested on XP SP2 and Vista EN QuickTime/7.3...

RETIRED: Apple QuickTime RTSP Response Header Content-Length Remote Buffer Overflow Vulnerability

Description Apple QuickTime is prone to a remote buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied input before copying it to an insufficiently sized stack-based memory buffer. This issue occurs when handling specially crafted RTSP Response headers...

Apple QuickTime 7.2/7.3 RTSP Response Remote SEH Overwrite PoC

Exploit for multiple platform in category dos / poc ============================================================== Apple QuickTime 7.2/7.3 RTSP Response Remote SEH Overwrite PoC ============================================================== !/usr/bin/python Apple QuickTime 7.3 RTSP Response 0day...

Apple QuickTime 7.2/7.3 - RTSP Response Remote Overwrite (SEH)

!/usr/bin/python Apple QuickTime 7.3 RTSP Response 0day Remote SEH Overwrite PoC Exploit Bug discovered by Krystian Kloskowski h07 Tested on: Apple QuickTime Player 7.3 / XP SP2 Polish Details:.. RTSP Content-Type: A 995 + B 4096\r\n 0x41414141 Pointer to next SEH record 0x42424242 SE handler...