429 matches found
Twitter's latest exploit: a hacker can traverse account delete credit card-vulnerability warning-the black bar safety net
Just this month beginning of the month, with other social networks, twitter also started a new vulnerability reward program, bonus reached$1 4 0+/vulnerabilities, you can say the reward is still very lucrative. Compared to our domestic manufacturers to say, I personally think that this is a netwo...
dhcpcd DoS
Infinite loop on server response parsing...
MyBulletinBoard (MyBB) <= 1.2.3 - Remote Code Execution Exploit
No description provided by source. !/usr/bin/php ?php errorreportingEALL ^ ENOTICE; http://www.milw0rm.com/exploits/2012 They corrected not all a lot of SQL requests which use the ipaddress, with $db-escapestring. They don't corrected the function this is a choice ... the bad and they forgot to...
Xlink FTP Client Buffer Overflow
No description provided by source. $Id: xlinkclient.rb 10998 2010-11-11 22:43:22Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Apple QuickTime 5.0 Content-Type Remote Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4064/info Apple QuickTime is a freely available media player. It runs on a number of platforms including MacOS and Windows 9x/ME/NT/2000/XP operating systems. Apple QuickTime For Windows does not perform sufficient bounds...
Trillian 0.x IRC Module Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5373/info A buffer overflow condition has been reported in the Trillian IRC module. The condition is due to insecure handling of data extracted from server responses. An attacker in control of a malicious server may explo...
Microsoft Internet Explorer 5/6 Object Type Validation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8456/info The problem occurs when Internet Explorer receives a response from the server when a web page containing an object tag is parsed. Successful exploitation of this vulnerability could allow a malicious object to b...
Core FTP LE 2.2 Heap Overflow
----------------------------------------------------------------------------- Exploit Title: Core FTP LE 2.2 - Heap Overflow PoC Date: Jun 11 2014 Exploit Author: Gabor Seljan Software Link: http://www.coreftp.com/ Version: 2.2 build 1798 Tested on: Windows XP SP3...
libgadu buffer overflow
Buffer overflow on server response parsing...
GetGo Download Manager buffer overflow
Buffer overflow on server response parsing...
Cloudflare: Security issue with your "bag" script
This is an old issue that has been fixed, but in since I reported it before you started your Bug Bounty program I was advised to report it here again. These are the requests in your issue tracker: http://support.cloudflare.com/tickets/44767 original vulnerability report...
Updated libmms packages fix CVE-2014-2892
Updated libmms packages fix security vulnerability: The libmms library before 0.6.4 is vulnerable to a buffer overflow in getanswer in src/mmsh.c. It may be triggered via an overly long line of a MMSH MMS over HTTP server response, effectively overflowing the buffer which has a static size...
CVE-2014-2892
Heap-based buffer overflow in the getanswer function in mmsh.c in libmms before 0.6.4 allows remote attackers to execute arbitrary code via a long line in an MMS over HTTP MMSH server response...
Tryton directory traversal
Directory traversal on filename processing in server response parsing...
Multiple DNS NO SUCH NAME Error Responses (CVE-2012-0006)
The Domain Name System DNS is an hierarchical distributed naming system for computers, services, or any resource connected to the Internet or a private network. When a DNS client needs to look up a name used in a program, it queries DNS servers to resolve the name. If the query names are...
MIT Kerberos 5 DoS
Server sends response to response, it makes it possible to loop packets between two servers...
dns-check-zone NSE Script
Checks DNS zone configuration against best practices, including RFC 1912. The configuration checks are divided into categories which each have a number of different tests. Script Arguments dns-check-zone.domain the dns zone to check Example Usage nmap -sn -Pn ns1.example.com --script dns-check-zo...
DBD::Pg format string vulnerability
Format string vulnerability on server response parsing...
FlashFXP FTP client buffer overflow
Buffer overflow on server response parsing...
nginx information leakage
Invalid server response can lead to server memory content disclosure...