CVE-2006-0989

Stack-based buffer overflow in the volume manager daemon vmd in Veritas NetBackup Enterprise Server 5.0 through 6.0 and DataCenter and BusinesServer 4.5FP and 4.5MP allows attackers to execute arbitrary code via unknown vectors...

ZDI-06-005: Symantec VERITAS NetBackup Volume Manager Buffer Overflow

ZDI-06-005: Symantec VERITAS NetBackup Volume Manager Buffer Overflow http://www.zerodayinitiative.com/advisories/ZDI-06-005.html March 27, 2006 -- CVE ID: CVE-2006-0989 -- Affected Vendor: Symantec VERITAS -- Affected Products: VERITAS NetBackup v6.0 -- TippingPointTM IPS Customer Protection:...

CVE-2006-1385

Stack-based buffer overflow in the parseTaggedData function in WavePacket.mm in KisMAC R54 through R73p allows remote attackers to execute arbitrary code via multiple SSIDs in a Cisco vendor tag in a 802.11 management frame...

CVE-2006-1385

KISMAC (R54–R73p) is affected by a stack-based buffer overflow in the parseTaggedData function of WavePacket.mm. The vulnerability allows remote attackers to execute arbitrary code by crafting multiple SSIDs in a Cisco vendor tag within an 802.11 management frame. The issue is triggered via malfo...

CVE-2006-1356

Stack-based buffer overflow in the countvcards function in LibVC 3, as used in Rolo, allows user-assisted attackers to execute arbitrary code via a vCard file e.g. contacts.vcf containing a long line...

CVE-2006-1356

Stack-based buffer overflow in the countvcards function in LibVC 3, as used in Rolo, allows user-assisted attackers to execute arbitrary code via a vCard file e.g. contacts.vcf containing a long line...

CVE-2006-1356

Stack-based buffer overflow in the countvcards function in LibVC 3, as used in Rolo, allows user-assisted attackers to execute arbitrary code via a vCard file e.g. contacts.vcf containing a long line...

CVE-2005-4734

Stack-based buffer overflow in IISWebAgentIF.dll in RSA Authentication Agent for Web aka SecurID Web Agent 5.2 and 5.3 for IIS allows remote attackers to execute arbitrary code via a long url parameter in the Redirect method...

CVE-2006-1255

Stack-based buffer overflow in the IMAP service in Mercur Messaging 5.0 SP3 and earlier allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a long string to the 1 LOGIN or 2 SELECT command, a different set of attack vectors and possibly a...

Mercur MailServer 5.0 SP3 - 'IMAP' Denial of Service

/ Exploit for : IMAP 5.0 SP3 DoS Exploit Advisory : http://secunia.com/advisories/19267/ Coder : Omnipresent Email : [email protected] Description : Tim Taylor has discovered a vulnerability in Mercur Messaging 2005, which can be exploited by malicious people and by malicious users to cause a...

Mercur MailServer 5.0 SP3 - IMAP Denial of Service

Mercur MailServer 5.0 SP3 - IMAP Denial of Service / Exploit for : IMAP 5.0 SP3 DoS Exploit Advisory : http://secunia.com/advisories/19267/ Coder : Omnipresent Email : [email protected] Description : Tim Taylor has discovered a vulnerability in Mercur Messaging 2005, which can be exploited by...

CVE-2006-0031

CVE-2006-0031 (MS06-012 family) is a stack-based buffer overflow in Microsoft Excel 2000/XP/2003 triggered by parsing a crafted Excel file containing a malformed record length, leading to memory corruption and potential remote code execution. The vulnerability is one of several Excel-related issu...

GLSA-200603-05 : zoo: Stack-based buffer overflow

The remote host is affected by the vulnerability described in GLSA-200603-05 zoo: Stack-based buffer overflow Jean-Sebastien Guay-Leroux discovered a boundary error in the fullpath function in misc.c when processing overly long file and directory names in ZOO archives. Impact : An attacker could...

CVE-2006-0807

Stack-based buffer overflow in NJStar Chinese and Japanese Word Processor 4.x and 5.x before 5.10 allows user-assisted attackers to execute arbitrary code via font names in NJStar .njx documents...

CVE-2006-0807

Stack-based buffer overflow in NJStar Chinese and Japanese Word Processor 4.x and 5.x before 5.10 allows user-assisted attackers to execute arbitrary code via font names in NJStar .njx documents...

CVE-2005-2618

CVE-2005-2618 is a buffer overflow affecting IBM/Lotus Notes components, notably the Attachment Viewer UUE handling and the HTML Speed Reader, exploited via specially crafted UUE files, long ZIP/TAR file names, or long links in emails. The root cause is inadequate boundary checking in these viewe...

Stack overflow

Multiple stack-based buffer overflows in QNX Neutrino RTOS 6.3.0 allow local users to execute arbitrary code via long 1 ABLPATH or 2 ABLANG environment variables in the libAP library libAp.so.2 or 3 a long PHOTONPATH environment variable to the setitem function in the libph library...

CVE-2006-0441

Stack-based buffer overflow in Sami FTP Server 2.0.1 allows remote attackers to execute arbitrary code via a long USER command, which triggers the overflow when the log is viewed...

[SA18480] E-Post Mail Server Products Multiple Vulnerabilities

TITLE: E-Post Mail Server Products Multiple Vulnerabilities SECUNIA ADVISORY ID: SA18480 VERIFY ADVISORY: http://secunia.com/advisories/18480/ CRITICAL: Highly critical IMPACT: Security Bypass, Exposure of system information, DoS, System access WHERE: From remote SOFTWARE: E-Post Mail Server 4.x...

Mandrake Linux Security Advisory : wget (MDKSA-2005:183)

A vulnerability in libcurl's NTLM function can overflow a stack-based buffer if given too long a user name or domain name in NTLM authentication is enabled and either a pass a user and domain name to libcurl that together are longer than 192 bytes or b allow libcurl to follow HTTP redirects and t...