27 matches found
Borland StarTeam多个远程溢出及拒绝服务漏洞
BUGTRAQ ID: 28080 Borland Starteam是Borland公司ALM生命周期管理的核心工具,是目前市面上最好的软件配置管理工具之一。 Starteam服务器没有正确地计算为从客户端所接收到的某些数组所需分配的内存数,导致多个整数溢出漏洞。在PROJECTLOGIN和SETSERVERACL命令中,有32位从客户端所接收到的用于指定报文中条目数量的数字分别被乘以8(或4,具体取决于文件名名称或规范)和12,然后未经考虑32位的限制便将结果用于分配内存,这可能触发堆溢出,允许攻击者控制某些寄存器,导致执行恶意指令。但攻击者必须拥有有效帐号才能利用这些漏洞。...
Borland StarTeam Server Detection
Binary data 4412.prm...
StarTeam Server Detection
The remote host is running a Borland StarTeam Server. StarTeam is a commercial software configuration and change management tool. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description scriptid31355; scriptversion"1.9";...
Multiple integer overflows in Borland StarTeam server 10.0.0.57
Luigi Auriemma Application: Borland StarTeam server 2008 http://www.borland.com/starteam/ Versions: = 10.0.0.57 Platforms: Windows Bugs: multiple integer overflows Exploitation: remote Date: 02 Mar 2008 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1 Introduction 2 Bugs 3 Th...
Borland StarTeam 2008 10.0.57 - Multiple Remote Vulnerabilities
Borland StarTeam 2008 10.0.57 - Multiple Remote Vulnerabilities source: https://www.securityfocus.com/bid/28080/info Borland StarTeam is prone to multiple issues, including multiple integer-overflow vulnerabilities, a heap-overflow vulnerability, and a denial-of-service vulnerability. Successfull...
Borland Starteam Server integer overflows
Multiple integer overflows...
Borland StarTeam 2008 10.0.57 - Multiple Remote Vulnerabilities
source: https://www.securityfocus.com/bid/28080/info Borland StarTeam is prone to multiple issues, including multiple integer-overflow vulnerabilities, a heap-overflow vulnerability, and a denial-of-service vulnerability. Successfully exploiting these issues allows remote attackers to execute...