Null pointer dereference

The zbxgetnextfield function in libs/zbxcommon/str.c in Zabbix Server before 1.6.8 allows remote attackers to cause a denial of service crash via a request that lacks expected separators, which triggers a NULL pointer dereference, as demonstrated using the Command keyword...

Certain characters can be used to allow cross-site scripting – Opera Security Advisories

Certain characters can be used to allow cross-site scripting – Opera Security Advisories OPCOM Team | December 17, 2008 Severity Highly Severe Problem Description When accepting HTML content from untrusted users, Web sites sometimes employ some kind of filtering to ensure that the content cannot...

CVE-2008-5248

xine-lib before 1.1.15 allows remote attackers to cause a denial of service crash via "MP3 files with metadata consisting only of separators."...

Code injection

xine-lib before 1.1.15 allows remote attackers to cause a denial of service crash via "MP3 files with metadata consisting only of separators."...

CVE-2008-5248

xine-lib before 1.1.15 allows remote attackers to cause a denial of service crash via "MP3 files with metadata consisting only of separators."...

CVE-2008-5248

xine-lib before 1.1.15 allows remote attackers to cause a denial of service crash via "MP3 files with metadata consisting only of separators."...

Ruby WEBrick vulnerable to directory traversal

Overview Ruby WEBrick is vulnerable to a directory traversal on systems that support backslash \ path separators. This vulnerability may allow an attacker to access arbitrary files outside of the web server root directory. Description WEBrick is a Ruby library program to build HTTP servers...

Directory traversal vulnerability in WEBrick

Directory traversal vulnerability in WEBrick when running on systems that support backslash path separators or case-insensitive file names, allows remote attackers to access arbitrary files via 1 "..%5c" encoded backslash sequences or 2 filenames that match patterns in the :NondisclosureName opti...

CVE-2007-6515

support/dispatch.cgi in SiteScape Forum allows remote attackers to execute arbitrary TCL code via code separator characters in the query string...

ips-evasion.txt

Summarized from https://strikecenter.bpointsys.com/ Many commercial IPS products fail to decode HTTP requests which use 0x0c, 0x0b, and 0x0d instead of the normal 0x20/0x09 separators. A request in the following format will evade most IPS protocol decoders: $ echo -ne...

PT-1996-1035 · Gnu · Bash

Name of the Vulnerable Software and Affected Versions: Bash affected versions not specified Description: The issue concerns how Bash handles characters with a value of 255, treating them as command separators. Recommendations: At the moment, there is no information about a newer version that...