99 matches found
OneHTTPD 0.7 - Denial of Service
OneHTTPD 0.7 - Denial of Service !/usr/bin/env python Exploit Title: onehttpd 0.7 Denial of Service Date: 12 Aug 2013 Exploit Author: superkojiman - http://www.techorganic.com Vendor Homepage: https://code.google.com/p/onehttpd/ Version: onehttpd 0.7 Tested on: Windows 7 Ultimate English Windows ...
Galil-RIO Modbus Denial Of Service
Exploit Title: Galil RIO-47100 Date: 05-01-2013 Exploit Author: Sapling Vendor Homepage: www.galilmc.com Version: Rio Firmware Prior to 1.1d CVE : CVE-2013-0699 ICSA: ICSA-13-116-01 / There are many different ways to crash this PLC but most of them are centralized around the repeating a request i...
[SECURITY] [DSA 2649-1] lighttpd security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2649-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez March 15, 2013 http://www.debian.org/security/faq -...
Rootage 1.0.0.4 Alpha Directory Traversal
------------------------------------------------------------------------ Software................Rootage 1.0.0.4 Alpha Vulnerability...........Directory Traversal Threat Level............Serious 3/5 Download................http://get-for-net.ru/ Discovery Date..........5/18/2011 Tested...
kernel: net/tipc/socket.c: reading uninitialized stack memory
The getname function in net/tipc/socket.c in the Linux kernel before 2.6.37-rc2 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory by reading a copy of this structure...
CVE-2009-2666
socket.c in fetchmail before 6.3.11 does not properly handle a '\0' character in a domain name in the subject's Common Name CN field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification...
Immunity Canvas: FIREFOX_35
Name| firefox35 ---|--- CVE| CVE-2009-2477 Exploit Pack| CANVAS Description| Firefox 3.5 Remote Code Execution Notes| CVE Name: CVE-2009-2477 VENDOR: Mozilla Notes: Although the advisories states that this due to improper handling of and tags, this exploit uses another method to reach the...
FreeBSD 6x/7 protosw kernel Local Privledge Escalation Exploit
No description provided by source. / This is a quick and very dirty exploit for the FreeBSD protosw vulnerability defined here: http://security.freebsd.org/advisories/FreeBSD-SA-08:13.protosw.asc This will overwrite your credential structure in the kernel. This will affect more than just the...
Heap overflow
Heap-based buffer overflow in QEMU 0.8.2, as used in Xen and possibly other products, allows local users to execute arbitrary code via crafted data in the "net socket listen" option, aka QEMU "net socket" heap overflow. NOTE: some sources have used CVE-2007-1321 to refer to this issue as part of...
maluinfo <= 206.2.38 (bb_usage_stats.php) Remote File Include Exploit
No description provided by source. !/usr/bin/perl maluinfo 206.2.38 brazilian PHPBB Class: Remote File Include Vulnerability Patch: unavailable Date: 2006/10/12 Remote: Yes Type: high...
RHEL 4 : ruby (RHSA-2006:0427)
Updated ruby packages that fix a denial of service issue are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Ruby is an interpreted scripting language for object-oriented programming. A bug was found in the way Ruby creates its...
Socket unreacheable in the Lithtech engine (new protocol)
Luigi Auriemma Application: Lithtech engine new network protocol http://www.lithtech.com Games: Contract Jack = 1.1 No one lives forever 2 = 1.3 Tron 2.0 = 1.042 ... others? Platforms: Windows and Mac Bug: socket unreacheable Exploitation: remote, versus server Date: 13 December 2004 Author: Luig...
Lithtech Engine (new protocol) Socket Unreacheable DoS
No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h ifdef WIN32 include winsock.h / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h include errno.h...
FreeBSD Security Advisory FreeBSD-SA-04:06.ipv6
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-04:06.ipv6 Security Advisory The FreeBSD Project Topic: setsockopt2 IPv6 sockets input validation error Category: core Module: kernel Announced: 2004-03-29 Credit...
CVE-2002-0497
Buffer overflow in mtr 0.46 and earlier, when installed setuid root, allows local users to access a raw socket via a long MTROPTIONS environment variable...
CVE-1999-1402
The access permissions for a UNIX domain socket are ignored in Solaris 2.x and SunOS 4.x, and other BSD-based operating systems before 4.4, which could allow local users to connect to the socket and possibly disrupt or control the operations of the program using that socket...
CVE-1999-0787
The SSH authentication agent follows symlinks via a UNIX domain socket...
FreeBSD 3.1 / Solaris 2.6 - Domain Socket
// source: https://www.securityfocus.com/bid/456/info Solaris 2.6 and many other unices/clones have a serious problem with their unix domain socket implementation that has it's origins in old BSD code. Any unix socket created by any application is set mode 4777. In Solaris versions 2.5 and earlie...
FreeBSD 3.1 Solaris 2.6 - Domain Socket
FreeBSD 3.1 Solaris 2.6 - Domain Socket // source: https://www.securityfocus.com/bid/456/info Solaris 2.6 and many other unices/clones have a serious problem with their unix domain socket implementation that has it's origins in old BSD code. Any unix socket created by any application is set mode...