GLSA-200605-13 : MySQL: Information leakage

The remote host is affected by the vulnerability described in GLSA-200605-13 MySQL: Information leakage The processing of the COMTABLEDUMP command by a MySQL server fails to properly validate packets that arrive from the client via a network socket. Impact : By crafting specific malicious packets...

MySQL: Information leakage

Background MySQL is a popular multi-threaded, multi-user SQL database server. Description The processing of the COMTABLEDUMP command by a MySQL server fails to properly validate packets that arrive from the client via a network socket. Impact By crafting specific malicious packets an attacker cou...

iDefense Security Advisory 12.21.05: Macromedia JRun 4 Web Server URL Parsing Buffer Overflow Vulnerability

Macromedia JRun 4 Web Server URL Parsing Buffer Overflow Vulnerability iDefense Security Advisory 12.21.05 http://www.idefense.com/intelligence/vulnerabilities/display.php?id=360 December 21, 2005 I. BACKGROUND Macromedia JRun 4 is an application server used for developing and deploying Java base...

Salim Gasmi GLD (Greylisting Daemon) 1.0 1.4 - Postfix Greylisting Buffer Overflow (Metasploit)

Salim Gasmi GLD Greylisting Daemon 1.0 1.4 - Postfix Greylisting Buffer Overflow Metasploit $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms...

Winamp 5.06 - 'IN_CDDA.dll' Remote Buffer Overflow

/ Credits go to the author How to fix and study the bug: - The cdda library only reserves 20 bytes for names when files are ".cda" - run Winamp with ollye - when loaded locate and break at: 10009BBB 8D4C24 20 LEA ECX,DWORD PTR SS:ESP+20 10009BBF 84C0 TEST AL,AL 10009BC1 74 0F JE SHORT...

Winamp <= 5.06 IN_CDDA.dll Remote Buffer Overflow Exploit

Exploit for unknown platform in category remote exploits ========================================================= Winamp //File ops. //m3u File format //http://hanna.pyxidis.org/tech/m3u.html // Host info: // Name=ntdll system // File version=5.1.2600.1217 xpsp2.030429-213 //...

KPMG-2002014: Foundstone Fscan Format String Bug

-------------------------------------------------------------------- Title: Foundstone Fscan Format String Bug BUG-ID: 2002014 Released: 19th Apr 2002 -------------------------------------------------------------------- Problem: ======== A flaw in Foundstone Fscan could result in a malicious...

Ipswitch WS_FTP Server 1.0.x/2.0.x - &#039;STAT&#039; Remote Buffer Overflow

source: https://www.securityfocus.com/bid/3507/info WSFTP Server, a popular FTP server for Microsoft Windows platforms, is vulnerable to a buffer overflow condition when a user submits a specially crafted legitimate FTP command. WSFTP Server by default runs as a SYSTEM service. If a logged in use...

WU-FTPD 2.4.22.5 .02.6.0 - Remote Format String Stack Overwrite (3)

WU-FTPD 2.4.22.5 .02.6.0 - Remote Format String Stack Overwrite 3 source: https://www.securityfocus.com/bid/1387/info Washington University ftp daemon wu-ftpd is a very popular unix ftp server shipped with many distributions of Linux and other UNIX operating systems. Wu-ftpd is vulnerable to a ve...

WU-FTPD 2.4.2/2.5 .0/2.6.0 - Remote Format String Stack Overwrite (3)

source: https://www.securityfocus.com/bid/1387/info Washington University ftp daemon wu-ftpd is a very popular unix ftp server shipped with many distributions of Linux and other UNIX operating systems. Wu-ftpd is vulnerable to a very serious remote attack in the SITE EXEC implementation. Because ...

Solaris 2.52.67.08 - mailx -F Local Buffer Overflow (1)

Solaris 2.52.67.08 - mailx -F Local Buffer Overflow 1 // source: https://www.securityfocus.com/bid/2610/info Solaris is the variant of the UNIX Operating System distributed by Sun Microsystems. Solaris is designed as a scalable operating system for the Intel x86 and Sun Sparc platforms, and...

Mysql 3.22.x/3.23.x - Local Buffer Overflow

// source: https://www.securityfocus.com/bid/2262/info MySQL is a widely used Open Source database tool. Versions of MySQL up to and including 3.23.30 are vulnerable to a buffer overflow attack. By supplying an excessively long string as an argument for a SELECT statement, it is possible for a...

LICQ 0.851.0.11.0.2 - Remote Buffer Overflow

LICQ 0.851.0.11.0.2 - Remote Buffer Overflow // source: https://www.securityfocus.com/bid/2406/info At least one version of LICQ is vulnerable to a remote buffer overflow. By sending many characters 12000-16000 to the port on which LICQ is listening, an attacker can cause excessive data to be...

David Bagley xlock 4.16 - User Supplied Format String (2)

// source: https://www.securityfocus.com/bid/1585/info A vulnerability exists in versions of the xlockmore program, originally written by David Bagley. It is believed to affect all versions of xlock derived from xlockmore. This includes the xlock shipped with a number of popular operating systems...

WU-FTPD 2.4.2/2.5 .0/2.6.0 - Remote Format String Stack Overwrite (2)

// source: https://www.securityfocus.com/bid/1387/info Washington University ftp daemon wu-ftpd is a very popular unix ftp server shipped with many distributions of Linux and other UNIX operating systems. Wu-ftpd is vulnerable to a very serious remote attack in the SITE EXEC implementation. Becau...

WU-FTPD 2.4.2/2.5 .0/2.6.0 - Remote Format String Stack Overwrite (1)

// source: https://www.securityfocus.com/bid/1387/info Washington University ftp daemon wu-ftpd is a very popular unix ftp server shipped with many distributions of Linux and other UNIX operating systems. Wu-ftpd is vulnerable to a very serious remote attack in the SITE EXEC implementation. Becau...

WU-FTPD 2.4.2 / SCO Open Server 5.0.5 / ProFTPd 1.2 pre1 - &#039;realpath&#039; Remote Buffer Overflow (1)

/ source: https://www.securityfocus.com/bid/113/info There is a vulnerability in ProFTPD versions 1.2.0pre1 and earlier and in wu-ftpd 2.4.2 beta 18 VR9 and earlier. This vulnerability is a buffer overflow triggered by unusually long path names directory structures. For example, if a user has wri...

BNC 2.2.42.4.62.4.8 - IRC Proxy Buffer Overflow (1)

BNC 2.2.42.4.62.4.8 - IRC Proxy Buffer Overflow 1 / source: https://www.securityfocus.com/bid/1927/info BNC's IRC Proxy is used as a gateway to an IRC server. A buffer stores a username which arguments the program's USER command. User-supplied input to this buffer is improperly checked for length...

SGI IRIX 6.2 - eject Local Privilege Escalation (1)

SGI IRIX 6.2 - eject Local Privilege Escalation 1 // source: https://www.securityfocus.com/bid/351/info A vulnerability exists in the eject program shipped with Irix 6.2 from Silicon Graphics. By supplying a long argument to the eject program, it is possible to overwrite the return address on the...