CVE-2009-0193

Heap-based buffer overflow in Adobe Acrobat Reader 9 before 9.1, 8 before 8.1.4, and 7 before 7.1.1 allows remote attackers to execute arbitrary code via a PDF file with a malformed JBIG2 symbol dictionary segment, a different vulnerability than CVE-2009-1061 and CVE-2009-1062...

RPC Portmapper Service Detection (UDP)

UDP based detection of a RPC portmapper service. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RPC Portmapper Service Detection (TCP)

TCP based detection of a RPC portmapper service. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Insomnia : ISVA-081020.1 - Altiris Deployment Server Agent - Privilege Escalation

Insomnia Security Vulnerability Advisory: ISVA-081020.1 Name: Altiris Deployment Server Agent - Privilege Escalation Released: 20 October 2008 Vendor Link: http://www.altiris.com/ Affected Products: Altiris Deployment Server 6.X Original Advisory:...

FreeBSD Security Advisory (FreeBSD-SA-04:02.shmat.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-04:02.shmat.asc SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

tomcat examples jsp XSS

Multiple cross-site scripting XSS vulnerabilities in certain JSP files in the examples web application in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote attackers to inject arbitrary web script or HTML via...

tomcat examples jsp XSS

Multiple cross-site scripting XSS vulnerabilities in certain JSP files in the examples web application in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote attackers to inject arbitrary web script or HTML via...

LokiCMS admin.php文件绕过安全限制漏洞

BUGTRAQ ID: 29448 LokiCMS是一款简单易用的网络内容管理系统。 LokiCMS的admin.php文件中存在逻辑错误，如果远程攻击者在所提交的HTTP POST请求中设置了LokiACTION和其他参数的话，则无需管理权限就可以设置CMS main settings。 以下是有漏洞的代码段： admin.php Lines:24-42 if isset $POST && isset $POST'LokiACTION' && strlen trim $POST'LokiACTION' 0 // we have an action to do switch trim...

SunOS 5.10 Remote ICMP Kernel Crash Exploit

No description provided by source. / SunOS 5.10 Remote ICMP Kernel Crash Exploit by kcope Null Pointer Dereference in Kernel Space Seems to work only if attacked in the same network segment, maybe because of firewalls/routers in place. This seems to be the issue described in bid 22323. / include...

SunOS 5.10 - Remote ICMP Kernel Crash

SunOS 5.10 - Remote ICMP Kernel Crash / SunOS 5.10 Remote ICMP Kernel Crash Exploit by kcope Null Pointer Dereference in Kernel Space Seems to work only if attacked in the same network segment, maybe because of firewalls/routers in place. This seems to be the issue described in bid 22323. / inclu...

SunOS 5.10 Remote ICMP Kernel Crash Exploit

Exploit for solaris platform in category dos / poc =========================================== SunOS 5.10 Remote ICMP Kernel Crash Exploit =========================================== / SunOS 5.10 Remote ICMP Kernel Crash Exploit by kcope Null Pointer Dereference in Kernel Space Seems to work only...

SunOS 5.10 - Remote ICMP Kernel Crash

/ SunOS 5.10 Remote ICMP Kernel Crash Exploit by kcope Null Pointer Dereference in Kernel Space Seems to work only if attacked in the same network segment, maybe because of firewalls/routers in place. This seems to be the issue described in bid 22323. / include include include include include...

Passage through through speaking overflow attack-vulnerability warning-the black bar safety net

Buffer overflow technology based In order to improve everyone's skill level, in order to better understand our discussion of this technique, in order to turn this forum into a more better Forum, here I present to you the launch of a complete range of related overflow, the overflow attack articles...

Hack of the classic tutorial of buffer overflow and decryption(a)-vulnerability warning-the black bar safety net

The buffer overflow weakness was born in the 7 0's. Morris Worm8 0'scan be considered their first public application. From the 9 0's, related document, such as the famous Aleph1's”Smashing the Stack for Fun and Profit”and code has been on the Internet disclosed. This article is about some need to...

CVE-2007-3731

The Linux kernel 2.6.20 and 2.6.21 does not properly handle an invalid LDT segment selector in %cs the xcs field during ptrace single-step operations, which allows local users to cause a denial of service NULL dereference and OOPS via certain code that makes ptrace PTRACESETREGS and...

CVE-2007-3731

The Linux kernel 2.6.20 and 2.6.21 does not properly handle an invalid LDT segment selector in %cs the xcs field during ptrace single-step operations, which allows local users to cause a denial of service NULL dereference and OOPS via certain code that makes ptrace PTRACESETREGS and...

Snort DCE/RPC preprocessor buffer overflow

Added: 07/09/2007 CVE: CVE-2006-5276 BID: 22616 OSVDB: 32094 Background Snort is an open-source intrusion detection system. It includes a DCE/RPC preprocessor, which reassembles DCE/RPC traffic before it is passed to the intrusion detection engine. Problem A buffer overflow vulnerability in the...

CVE-2006-7215

The Intel Core 2 Extreme processor X6800 and Core 2 Duo desktop processor E6000 and E4000 incorrectly set the memory page Access A bit for a page in certain circumstances involving proximity of the code segment limit to the end of a code page, which has unknown impact and attack vectors on certai...

Microsoft Windows Kernel vulnerable to privilege escalation

Overview The Microsoft Windows Kernel contains a privilege escalation vulnerability that may allow a local attacker to take control of the system. Description The Microsoft Windows Kernel fails to properly set permissions when mapping to a memory segment. By running a specially crafted applicatio...

IPSwitch IMail Server <= 8.20 IMAPD Remote Buffer Overflow Exploit

No description provided by source. / Dreatica-FXP crew ---------------------------------------- Target : Ipswitch IMAIL Server IMAPD 7.13 - 8.20 exploit Site : http://www.ipswitch.com...