CVE-2005-2387

Multiple stack-based buffer overflows in GoodTech SMTP server 5.16 allow remote attackers to execute arbitrary code via 1 a RCPT TO command with a long DNS name, or 2 a large number of RCPT TO commands with a long e-mail name arugment in the last command...

CVE-2004-2269

The CVE-2004-2269 entry concerns a stack-based buffer overflow in pads.c of Passive Asset Detection System (Pads). The vulnerability could allow local users to execute arbitrary code via a long report file name argument. Note that Pads is not normally installed setuid, which may affect exploitabi...

[Full-disclosure] ALT-N MDaemon multiple vulnerabilities

Hello this is kcope, there are two remote vulnerabilities in the latest ALT-N MDaemon imapd product i don't know if any of them is exploitable .. the stack based buffer overflow seems promising, but it's not preauth so i didn't investigate it further. 1. Remote denial of service in AUTHENTICATE...

CVE-2005-2210

CVE-2005-2210 describes a stack-based buffer overflow in Internet Download Manager 4.05 when processing a long URL, allowing remote code execution. The connected PT-2005-3139 entry confirms affected software and version, noting the issue is triggered by a long URL and that no fix/version is liste...

CVE-2005-2081

Stack-based buffer overflow in the function that parses commands in Asterisk 1.0.7, when the 'write = command' option is enabled, allows remote attackers to execute arbitrary code via a command that has two double quotes followed by a tab character...

CVE-2005-1814

The CVE-2005-1814 entry describes a stack-based buffer overflow in PicoWebServer 1.0. The vulnerability occurs when processing a long URL, which can lead to a denial of service (application crash) and potentially arbitrary code execution. Affected component is the server’s URL handling/parsing lo...

CVE-2004-2131

CVE-2004-2131 affects IBM Informix Dynamic Server (IDS) 9.40.xC3 and earlier. The flaw is a stack-based buffer overflow in ontape triggered by a long ONCONFIG environment variable, allowing local users with DSA privileges to execute arbitrary code. Affected component is ontape; root cause is unch...

CVE-2005-1679

Stack-based buffer overflow in the error directive in picasm 1.12b and earlier allows attackers to execute arbitrary code via a long error message...

CVE-2005-1256

Stack-based buffer overflow in the IMAP daemon IMAPD32.EXE in IMail 8.13 in Ipswitch Collaboration Suite ICS, and other versions before IMail Server 8.2 Hotfix 2, allows remote authenticated users to execute arbitrary code via a STATUS command with a long mailbox name...

iDEFENSE Security Advisory 05.24.05: Ipswitch IMail IMAP SELECT Command DoS Vulnerability

Ipswitch IMail IMAP SELECT Command DoS Vulnerability iDEFENSE Security Advisory 05.24.05 www.idefense.com/application/poi/display?id=241&type=vulnerabilities May 24, 2005 I. BACKGROUND Ipswitch IMail server is a Windows based messaging solution with a customer base of over 53 million users. More...

CVE-2005-1679

Stack-based buffer overflow in the error directive in picasm 1.12b and earlier allows attackers to execute arbitrary code via a long error message...

CVE-2005-1679

Stack-based buffer overflow in the error directive in picasm 1.12b and earlier allows attackers to execute arbitrary code via a long error message...

CVE-2004-2086

Stack-based buffer overflow in results.stm for Sambar Server before the 6.0 production release allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via an HTTP POST request with a long query parameter...

CVE-2005-1544

CVE-2005-1544 describes a stack-based buffer overflow in libTIFF prior to 3.7.2, triggered while processing a TIFF file with a malformed BitsPerSample tag. This allows remote attackers to execute arbitrary code. The OpenVAS and distro advisories (e.g., Debian DSA-755-1, Ubuntu USN-130-1, Mandrake...

CVE-2005-0971

Stack-based buffer overflow in the semop system call in Mac OS X 10.3.9 and earlier allows local users to gain privileges via crafted arguments...

CVE-2005-1261

CVE-2005-1261 is a stack-based buffer overflow in Gaim's URL parsing that affects versions before 1.3.0. A remote attacker could trigger arbitrary code execution by sending an IM containing a very large URL. Public disclosures and advisories (SUSE, OpenVAS/Gentoo, Mandrake/CentOS/Ubuntu/Nessus co...

RHEL 2.1 : gaim (RHSA-2005:432)

An updated gaim package that fixes security issues is now available for Red Hat Enterprise Linux 2.1. This update has been rated as having critical security impact by the Red Hat Security Response Team. The Gaim application is a multi-protocol instant messaging client. A stack based buffer overfl...

CVE-2004-1812

Multiple stack-based buffer overflows in Agent Common Services 1 cam.exe and 2 awservices.exe in Unicenter TNG 2.4 allow remote attackers to execute arbitrary code...

libTIFF: Buffer overflow

Background libTIFF provides support for reading and manipulating TIFF Tag Image File Format images. Description Tavis Ormandy of the Gentoo Linux Security Audit Team discovered a stack based buffer overflow in the libTIFF library when reading a TIFF image with a malformed BitsPerSample tag. Impac...

CVE-2005-0187

Stack-based buffer overflow in the SetSkin function in AtHoc toolbar allows remote attackers to execute arbitrary code via a long skin name...