CVE-2005-0551

Stack-based buffer overflow in WINSRV.DLL in the Client Server Runtime System CSRSS process of Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to gain privileges via a specially-designed application that provides console window information with a long...

CVE-2005-0716

Stack-based buffer overflow in the Core Foundation Library in Mac OS X 10.3.5 and 10.3.6, and possibly earlier versions, allows local users to execute arbitrary code via a long CFCHARSETPATH environment variable...

HP-UX PHSS_30056 : s700_800 11.04 Virtualvault 4.7 OWS update

s700800 11.04 Virtualvault 4.7 OWS update : The remote HP-UX host is affected by multiple vulnerabilities : - Potential Apache HTTP server vulnerabilities have been reported: CVE-2003-0545 CVE-2003-0543 CVE-2003-0544 CERT VU935264 CERT VU255484 CERT VU255484 CERT VU686224 CERT VU732952 CERT...

CVE-2005-0162

Openswan pluto vulnerability (CVE-2005-0162): stack-based buffer overflow in get_internal_addresses in Openswan 1.x prior to 1.0.9 and 2.x prior to 2.3.0 when built with XAUTH and PAM. Remote authenticated attackers could execute arbitrary code. Affects the pluto component; exploitation context m...

CVE-2004-1371

CVE-2004-1371 describes a stack-based buffer overflow in Oracle 9i/10g that allows remote attackers to execute arbitrary code by sending a long token in the text of a wrapped procedure. The vulnerability affects Oracle’s database/server components and can enable remote code execution with the att...

CVE-2004-1372

CVE-2004-1372 affects IBM DB2 7.x and 8.1. multiple stack-based buffer overflows allow local users to execute arbitrary code via (1) a long third argument to rec2xml, or (2) a long filename argument to generate_distfile. Root cause is stack-based overflow in these input paths; impact is local cod...

CVE-2004-2269

Stack-based buffer overflow in pads.c in Passive Asset Detection System Pads might allow local users to execute arbitrary code via a long report file name argument. NOTE: since Pads is not normally installed setuid, this may not be a vulnerability...

CVE-2004-1332

Stack-based buffer overflow in the FTP daemon in HP-UX 11.11i, with the -v debug option enabled, allows remote attackers to execute arbitrary code via a long command request...

CVE-2004-1520

Stack-based buffer overflow in IPSwitch IMail 8.13 allows remote authenticated users to execute arbitrary code via a long IMAP DELETE command...

Solaris 2.6/7/8/9 (SPARC) - 'ld.so.1' Local Privilege Escalation

/ $Id: raptorldpreload.c,v 1.1 2004/12/04 14:44:38 raptor Exp $ raptorldpreload.c - ld.so.1 local, Solaris/SPARC 2.6/7/8/9 Copyright c 2003-2004 Marco Ivaldi Stack-based buffer overflow in the runtime linker, ld.so.1, on Solaris 2.6 through 9 allows local users to gain root privileges via a long...

Solaris 2.6789 (SPARC) - ld.so.1 Local Privilege Escalation

Solaris 2.6789 SPARC - ld.so.1 Local Privilege Escalation / $Id: raptorldpreload.c,v 1.1 2004/12/04 14:44:38 raptor Exp $ raptorldpreload.c - ld.so.1 local, Solaris/SPARC 2.6/7/8/9 Copyright c 2003-2004 Marco Ivaldi Stack-based buffer overflow in the runtime linker, ld.so.1, on Solaris 2.6 throug...

Solaris 2.6/7/8/9 (ld.so.1) Local Root Exploit (sparc)

Exploit for solaris platform in category local exploits ====================================================== Solaris 2.6/7/8/9 ld.so.1 Local Root Exploit sparc ====================================================== / $Id: raptorldpreload.c,v 1.1 2004/12/04 14:44:38 raptor Exp $ raptorldpreload....

CVE-2004-0946

rquotad in nfs-utils rquotaserver.c before 1.0.6-r6 on 64-bit architectures does not properly perform an integer conversion, which leads to a stack-based buffer overflow and allows remote attackers to execute arbitrary code via a crafted NFS request...

CVE-2004-0946

CVE-2004-0946 affects nfs-utils: the rquotad component (rquota_server.c) on 64-bit architectures performs an unsafe 32-bit assumption during memcpy, causing a stack-based buffer overflow. This could allow remote code execution via crafted NFS requests. Public advisories confirm a fix in updated n...

CVE-2004-1304

CVE-2004-1304 affects the file utility; a stack-based buffer overflow in the ELF header parsing code (in file before 4.12) could allow arbitrary code execution when processing a crafted ELF file. Impact: arbitrary code execution with full privileges as described in the vulnerability entry. Remedi...

CVE-2004-1232

Gauging from the provided sources, CVE-2004-1232 affects the Gadu-Gadu client’s image-sending path. The vulnerability is a stack-based buffer overflow triggered by a large image filename, enabling remote code execution. No specific exploit details or patch/version information are provided in the ...

CVE-2004-0456

Stack-based buffer overflow in pavuk 0.9pl28, 0.9pl27, and possibly other versions allows remote web sites to execute arbitrary code via a long HTTP Location header...

CVE-2004-0356

Stack-based buffer overflow in Supervisor Report Center in SL Mail Pro 2.0.9 and earlier allows remote attackers to execute arbitrary code via an HTTP request with a long HTTP sub-version...

RHEL 2.1 / 3 : mozilla (RHSA-2004:486)

Updated mozilla packages that fix a number of security issues are now available. Mozilla is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor. Jesse Ruderman discovered a cross-domain scripting bug in Mozilla. If a user is tricked into dragging a...

Debian DSA-532-2 : libapache-mod-ssl - several vulnerabilities

Two vulnerabilities were discovered in libapache-mod-ssl : - CAN-2004-0488 Stack-based buffer overflow in the sslutiluuencodebinary function in sslutil.c for Apache modssl, when modssl is configured to trust the issuing CA, may allow remote attackers to execute arbitrary code via a client...