SA-CONTRIB-2010-011 - Feedback - Cross Site Scripting

Feedback module enables users and visitors of a Drupal site to quickly send feedback messages about the currently displayed page. When displaying reports about submitted feedback, the module does not properly sanitize the user agent strings from the Browscap module before display, leading to a...

Web Server Generic Cookie Injection

The remote host is running a web server that fails to adequately sanitize request strings of malicious JavaScript. By leveraging this issue, an attacker may be able to inject arbitrary cookies. Depending on the structure of the web application, it may be possible to launch a 'session fixation'...

Ubuntu Update for libthai vulnerability USN-887-1

Ubuntu Update for Linux kernel vulnerabilities USN-887-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN8871.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for libthai vulnerability USN-887-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

DEBIAN-CVE-2009-4012

Multiple integer overflows in LibThai before 0.1.13 might allow context-dependent attackers to execute arbitrary code via long strings that trigger heap-based buffer overflows, related to 1 thbrk/thbrk.c and 2 thwbrk/thwbrk.c. NOTE: some of these details are obtained from third party information...

USN-887-1: LibThai vulnerability

Tim Starling discovered that LibThai did not correctly handle long strings. A remote attacker could use specially-formed strings to execute arbitrary code with the user's privileges...

libthai integer overflow

Integer overflow on oversized strings...

CVE-2009-4137

The loadContentFromCookie function in core/Cookie.php in Piwik before 0.5 does not validate strings obtained from cookies before calling the unserialize function, which allows remote attackers to execute arbitrary code or upload arbitrary files via vectors related to the destruct function in the...

CGI Generic SSI Injection (HTTP headers)

The remote web server hosts one or more CGI scripts that fail to adequately sanitize request strings and seem to be vulnerable to an 'SSI injection' attack. By leveraging this issue, an attacker may be able to execute arbitrary commands on the remote host. %NASLMINLEVEL 70300 C Tenable Network...

OpenBSD 4.6 / NetBSD 5.0.1 - 'printf(1)' Format String Parsing Denial of Service

source: https://www.securityfocus.com/bid/36884/info OpenBSD and NetBSD are prone to a denial-of-service vulnerability because they fail to properly parse format strings to the 'printf1' function. An attacker can exploit this issue to cause applications using the vulnerable call to crash with a...

SMB Tree Connect Request Fuzzer

This module sends a series of SMB tree connect requests using malicious strings. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SMB Tree Connect Request Fuzzer', 'Description' = %q This module...

SSH 1.5 Version Fuzzer

This module sends a series of SSH requests with malicious version strings. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SSH 1.5 Version Fuzzer', 'Description' = %q This module sends a series...

SA-CONTRIB-2009-065 - Browscap - Cross Site Scripting

The Browscap module provides a way to identify the visitors to your site based on the user agent in their browser. It can also record these user agent strings and provide reports about them. When displaying reports about visitors, the module does not properly sanitize the user agent strings befor...

Fedora Core 10 FEDORA-2009-9799 (rubygem-activesupport)

The remote host is missing an update to rubygem-activesupport announced via advisory FEDORA-2009-9799. OpenVAS Vulnerability Test $Id: fcore20099799.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-9799 rubygem-activesupport Authors: Thomas Reinke...

Fedora 11 : rubygem-actionpack-2.3.3-2.fc11 / rubygem-activesupport-2.3.3-2.fc11 (2009-9922)

A vulnerability is found on Ruby on Rails in the escaping code for the form helpers, which also affects the rpms shipped in Fedora Project. Attackers who can inject deliberately malformed unicode strings into the form helpers can defeat the escaping checks and inject arbitrary HTML. This issue ha...

PT-2009-5607 · Php +1 · Php +1

Name of the Vulnerable Software and Affected Versions: PHP versions prior to 5.2.11 PHP versions 5.3.x prior to 5.3.1 Description: The issue allows context-dependent attackers to cause a denial of service crash via a crafted 1 "e" or 2 "er" string in the second argument aka mode of the popen API...

GemStone/S 6.3.1 (stoned) Local Buffer Overflow Exploit

No description provided by source. / wonderfulcaricatureofexploitability.c AKA GemStone/S 6.3.1 "stoned" Local Buffer Overflow Exploit Jeremy Brown [email protected]//jbrownsec.blogspot.com//krakowlabs.com 09.07.2009 Gemstone/S "stoned" suffers from a local buffer overflow when parsing input...

Memory corruption

Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox before 3.0.14 and 3.5.x before 3.5.2, Thunderbird before 2.0.0.24, and SeaMonkey before 1.1.19 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary...

Novell eDirectory 8.8 SP5 Denial Of Service

Affected Software: Novell eDirectory 8.8 SP5 Vulnerability Description: Novell eDirectory 8.8 SP5 is vulnerable to a denial of service attack. If a remote attacker sends Unicode strings with Http Request to "8028 port" "8028" is the default port of Novell eDirectory Dhost Http Server, the attacke...

Firefox 3.5.2 3.0.14 JavaScript engine crashes

Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox before 3.0.14 and 3.5.x before 3.5.2, Thunderbird before 2.0.0.24, and SeaMonkey before 1.1.19 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary...

Novell eDirectory 8.8 SP5 Remote Denial of Service Exploit

No description provided by source. Affected Software: Novell eDirectory 8.8 SP5 Vulnerability Description: Novell eDirectory 8.8 SP5 is vulnerable to a denial of service attack. If a remote attacker sends Unicode strings with Http Request to "8028 port" "8028" is the default port of Novell...