119 matches found
CVE-2007-4584
Stack-based buffer overflow in BitchX 1.1 Final allows remote IRC servers to execute arbitrary code via a long string in a MODE command, related to the pmode variable...
TESO in.telnetd buffer overflow
The Telnet server does not return an expected number of replies when it receives a long sequence of 'Are You There' commands. This probably means it overflows one of its internal buffers and crashes. It is likely an attacker could abuse this bug to gain control over the remote host's superuser. F...
Knet web server buffer overflow
Buffer overflow on oversized GET request...
CVE-2004-0340
Stack-based buffer overflow in WFTPD Pro Server 3.21 Release 1, Pro Server 3.20 Release 2, Server 3.21 Release 1, and Server 3.10 allows local users to execute arbitrary code via long 1 LIST, 2 NLST, or 3 STAT commands...
CVE-2004-0340
Stack-based buffer overflow in WFTPD Pro Server 3.21 Release 1, Pro Server 3.20 Release 2, Server 3.21 Release 1, and Server 3.10 allows local users to execute arbitrary code via long 1 LIST, 2 NLST, or 3 STAT commands...
overkill.txt
0verkill - little simple vulnerability. I. Entry. Vulnerability is game 0verkill. There is some little bugs in clinet / server. II. Vulnerability details. a client: Vulnerability function is loadcfg, savecfg and maybe sendmessage. There is simple buffer overflow bugs: "in file client.c" void...
CVE-2003-0222
Stack-based buffer overflow in Oracle Net Services for Oracle Database Server 9i release 2 and earlier allows attackers to execute arbitrary code via a "CREATE DATABASE LINK" query containing a connect string with a long USING parameter...
CVE-2003-0213
ctrlpacket.c in PoPToP PPTP server before 1.1.4-b3 allows remote attackers to cause a denial of service via a length field of 0 or 1, which causes a negative value to be fed into a read operation, leading to a buffer overflow...
Important: Red Hat Security Advisory: apache security update
Updated apache and httpd packages are available which fix a number of security issues for Red Hat Linux Advanced Server 2.1. Updated 06 Feb 2003 Added fixed packages for Advanced Workstation 2.1 The Apache HTTP server is a powerful, full-featured, efficient, and freely-available Web server. Buffe...
CVE-2002-1066
Thomas Hauck Jana Server 1.4.6 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large message index value in a 1 RETR or 2 DELE command to the POP3 server, which exceeds the array limits and allows a buffer overflow attack...
CVE-2002-0700
Buffer overflow in a system function that performs user authentication for Microsoft Content Management Server MCMS 2001 allows attackers to execute code in the Local System context by authenticating to a web page that calls the function, aka "Unchecked Buffer in MDAC Function Could Enable SQL...
CVE-2002-0813
Heap-based buffer overflow in the TFTP server capability in Cisco IOS 11.1, 11.2, and 11.3 allows remote attackers to cause a denial of service reset or modify configuration via a long filename...
Sun iPlanet Web Server Buffer Overflow (#NISR09072002)
NGSSoftware Insight Security Research Advisory Name: iPlanet Search Buffer Overflow Systems: iWS 6.0 and iWS 4.1 Severity: High Risk if Search enabled Category: Remote Buffer Overrun Vulnerability Vendor URL: http://www.iplanet.com/ Author: David Litchfield [email protected] Advisory URL:...
CVE-2002-0336
Buffer overflow in Galacticomm Worldgroup FTP server 3.20 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a LIST command containing a large number of / slash, wildcard, and .. characters...
CVE-2002-0154
Buffer overflows in extended stored procedures for Microsoft SQL Server 7.0 and 2000 allow remote attackers to cause a denial of service or execute arbitrary code via a database query with certain long arguments...
CVE-2001-0285
Buffer overflow in A1 HTTP server 1.0a allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long HTTP request...
CVE-2001-0098
Buffer overflow in Bea WebLogic Server before 5.1.0 allows remote attackers to execute arbitrary commands via a long URL that begins with a ".." string...
DST2K0007.txt
================================================================================ Delphis Consulting Plc ================================================================================ Security Team Advisories 30/05/2000 [email protected] http://www.delphisplc.com/thinking/whitepapers/...
CVE-1999-0950
Buffer overflow in WFTPD FTP server allows remote attackers to gain root access via a series of MKD and CWD commands that create nested directories...