1347 matches found
CVE-2004-0958
phpvariables.c in PHP before 5.0.2 allows remote attackers to read sensitive memory contents via 1 GET, 2 POST, or 3 COOKIE GPC variables that end in an open bracket character, which causes PHP to calculate an incorrect string length...
CVE-2004-0958
CVE-2004-0958 affects PHP before 5.0.2, where php_variables.c allows remote disclosure of memory contents via GPC inputs ending with an open bracket; impact is information disclosure. Public advisories (SUSE, Red Hat RHSA-2004:687, Red Hat RHSA mappings) describe the issue in the PHP deserializat...
GLSA-200408-24 : Linux Kernel: Multiple information leaks
The remote host is affected by the vulnerability described in GLSA-200408-24 Linux Kernel: Multiple information leaks The Linux kernel allows a local attacker to obtain sensitive kernel information by gaining access to kernel memory via several leaks in the /proc interfaces. These vulnerabilities...
CDP 0.33/0.4 - Console CD Player PrintTOC Function Buffer Overflow
source: https://www.securityfocus.com/bid/10021/info It has been reported that cdp may be prone to a buffer overflow vulnerability that may allow an attacker to cause a denial of service condition in the software. The issue exists due to insufficient boundary checks performed by the printTOC...
Freeform Interactive Purge 1.4.7/Purge Jihad 2.0.1 Game Client - Remote Buffer Overflow
source: https://www.securityfocus.com/bid/9671/info Freeform Interactive Purge and Purge Jihad game clients have been reported prone to a remotely exploitable buffer overflow condition. The issue presents itself in the client network connection routines used by the client to negotiate a connectio...
WebFS 1.x - Pathname Buffer Overrun
WebFS 1.x - Pathname Buffer Overrun // source: https://www.securityfocus.com/bid/8726/info It has been discovered that WebFS is prone to a buffer overrun vulnerability when handling path names of excessive length. As a result, an attacker may be capable of triggering the condition and overwriting...
CVE-2003-0625
Off-by-one error in certain versions of xfstt allows remote attackers to read potentially sensitive memory via a malformed client request in the connection handshake, which leaks the memory in the server's response...
CVE-2003-0625
Off-by-one error in certain versions of xfstt allows remote attackers to read potentially sensitive memory via a malformed client request in the connection handshake, which leaks the memory in the server's response...
CVE-2003-0625
Off-by-one error in certain versions of xfstt allows remote attackers to read potentially sensitive memory via a malformed client request in the connection handshake, which leaks the memory in the server's response...
GNU GNATS 3.113 - Environment Variable Buffer Overflow
GNU GNATS 3.113 - Environment Variable Buffer Overflow // source: https://www.securityfocus.com/bid/8005/info It has been reported that GNATS is prone to a buffer overflow condition when parsing certain environment variables. An attacker can exploit this vulnerability by setting an overly long...
GNU GNATS 3.113 - Environment Variable Buffer Overflow
// source: https://www.securityfocus.com/bid/8005/info It has been reported that GNATS is prone to a buffer overflow condition when parsing certain environment variables. An attacker can exploit this vulnerability by setting an overly long environment variable and invoking one of several GNATS...
Magic Winmail Server 2.3 USER POP3 - Command Format String
Magic Winmail Server 2.3 USER POP3 - Command Format String // source: https://www.securityfocus.com/bid/7667/info A format string vulnerability has been reported for Magic Winmail Server when processing the USER POP3 command. An attacker may exploit this vulnerability by connecting to the...
Youngzsoft CMailServer 4.0 - 'RCPT TO' Buffer Overflow
source: https://www.securityfocus.com/bid/7548/info A buffer overflow vulnerability has been reported for CMailServer. The vulnerability exists due to insufficient bounds checking when parsing e-mail headers. Specifically, an overly long RCPT TO e-mail header will cause CMailServer to crash and...
3D-FTP Client 4.0 - Buffer Overflow
source: https://www.securityfocus.com/bid/7451/info It has been reported that 3D-FTP client may be prone to a buffer overflow condition. This issue is due to the client not implementing sufficient bounds checking on banner data copied into local memory buffers. It may be possible for remote...
Samba 2.2.x - 'call_trans2open' Remote Buffer Overflow (4)
source: https://www.securityfocus.com/bid/7294/info A buffer overflow vulnerability has been reported for Samba. The problem occurs when copying user-supplied data into a static buffer. By passing excessive data to an affected Samba server, it may be possible for an anonymous user to corrupt...
Samba 2.2.x - CIFS9000 Server A.01.x Packet Assembling Buffer Overflow
Samba 2.2.x - CIFS9000 Server A.01.x Packet Assembling Buffer Overflow / source: https://www.securityfocus.com/bid/7106/info Samba is prone to a buffer-overflow vulnerability when the ' ' service tries to reassemble specially crafted SMB/CIFS packets. An attacker can exploit this vulnerability by...
PXE Server 2.0 - Remote Buffer Overrun
// source: https://www.securityfocus.com/bid/7129/info A vulnerability has been discovered in PXE which is included with Red Hat Linux. Specifically, it is possible for a remote attacker to overrun a buffer by passing excessive data to the service. This may result in the corruption of sensitive...
ByteCatcher FTP Client 1.0.4 - 'Server Banner' Buffer Overflow
source: https://www.securityfocus.com/bid/6762/info It has been reported that ByteCatcher FTP client may be prone to a buffer overflow condition. This issue is due to the client not implementing bounds checking on banner data copied into local memory buffers. It may be possible for remote attacke...
Electrasoft 32Bit FTP 9.49.1 - Client Long Server Banner Buffer Overflow
source: https://www.securityfocus.com/bid/6764/info It has been reported that Electrasoft 32Bit FTP client may be prone to a buffer overflow condition. This issue is due to the client not implementing bounds checking on banner data copied into local memory buffers. It may be possible for remote...
Linksys Devices 1.421.43 - GET Buffer Overflow (PoC)
Linksys Devices 1.421.43 - GET Buffer Overflow PoC source: https://www.securityfocus.com/bid/6301/info Several Linksys Broadband Router devices are prone to a buffer overflow conditions. The vulnerability occurs due to insufficient allocation of memory for buffers. An attacker can exploit this...