1177 matches found
MOPB-03-2007:PHP Variable Destructor Deep Recursion Stack Overflow
Summary The last vulnerability for today is similar to the second one. This time the bug is however a deep recursion bug in the Zend Engine variable destruction. User input is parsed in an iterative way which allows the creation of very deeply nested array structures from user input. However when...
Memory corruption
The Intel 2200BG 802.11 Wireless Mini-PCI driver 9.0.3.9 w29n51.sys allows remote attackers to cause a denial of service system crash via crafted disassociation packets, which triggers memory corruption of "internal kernel structures," a different vulnerability than CVE-2006-6651. NOTE: this issu...
CVE-2007-0686
The Intel 2200BG 802.11 Wireless Mini-PCI driver 9.0.3.9 w29n51.sys allows remote attackers to cause a denial of service system crash via crafted disassociation packets, which triggers memory corruption of "internal kernel structures," a different vulnerability than CVE-2006-6651. NOTE: this issu...
CVE-2007-0686
The CVE-2007-0686 entry concerns the Intel 2200BG wireless driver (W29N51.SYS) version 9.0.3.9. It describes a vulnerability where remote attackers can trigger memory corruption in internal kernel structures by sending crafted disassociation packets, causing a denial of service (system crash). Th...
CVE-2006-6102
Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of unspecified data structures...
intel-race.txt
Title: Intel 2200BG 802.11 Beacon frame Kernel Memory Corruption Description: The intel wireless mini-pci driver provided with Intel 2200BG cards is vulnerable to a remote race condition memory corruption flaw. Malformed beacons frame can be used to corrupt internal kernel structures,leading to...
Intel 2200BG 802.11 Beacon frame Kernel Memory Corruption Exploit
Exploit for multiple platform in category dos / poc ================================================================= Intel 2200BG 802.11 Beacon frame Kernel Memory Corruption Exploit ================================================================= / Summary: The intel wireless mini-pci driver...
CVE-2006-6054
The ext2 file system code in Linux kernel 2.6.x allows local users to cause a denial of service crash via an ext2 stream with malformed data structures that triggers an error in the ext2checkpage due to a length that is smaller than the minimum...
CVE-2006-6053
The ext3fsdirhash function in Linux kernel 2.6.x allows local users to cause a denial of service crash via an ext3 stream with malformed data structures...
Apple Mac OS X fails to properly handle corrupted DMG image structures
Overview Apple Mac OS X fails to properly handle corrupted DMG image structures. The complete impact of this vulnerability is unclear, but may include execution of arbitrary code or denial of service. Description A vulnerability in the way Mac OS X com.apple.AppleDiskImageController handles...
ASPNuke 0.80 - register.asp SQL Injection
ASPNuke 0.80 - register.asp SQL Injection Title : ASPNuke = 0.80 register.asp Remote SQL Injection Vulnerability Author : ajann S.Page : http://www.aspnuke.com D.Page : http://sourceforge.net/project/showfiles.php?groupid=92470...
USN-383-1: libpng vulnerability
Tavis Ormandy discovered that libpng did not correctly calculate the size of sPLT structures when reading an image. By tricking a user or an automated system into processing a specially crafted PNG file, an attacker could exploit this weakness to crash the application using the library...
CVE-2006-5726
alloccgblk in the UFS filesystem in Solaris 10 allows local users to cause a denial of service memory corruption by mounting crafted UFS filesystems with malformed data structures...
Apple Airport 802.11 Probe Response Kernel Memory Corruption PoC
No description provided by source. A proof-of-concept exploit has been added to the Metasploit Framework 3.0 source tree: msf use auxiliary/dos/wireless/daringphucball require 'msf/core' module Msf class Auxiliary::Dos::Wireless::DaringPhucball Msf::Auxiliary include Exploit::Lorcon def...
openssl ASN.1 DoS
OpenSSL 0.9.7 before 0.9.7l and 0.9.8 before 0.9.8d allows remote attackers to cause a denial of service infinite loop and memory consumption via malformed ASN.1 structures that trigger an improperly handled error condition...
Design/Logic Flaw
OpenSSL 0.9.7 before 0.9.7l and 0.9.8 before 0.9.8d allows remote attackers to cause a denial of service infinite loop and memory consumption via malformed ASN.1 structures that trigger an improperly handled error condition...
CVE-2006-2937
OpenSSL 0.9.7 before 0.9.7l and 0.9.8 before 0.9.8d allows remote attackers to cause a denial of service infinite loop and memory consumption via malformed ASN.1 structures that trigger an improperly handled error condition...
CVE-2006-2937
OpenSSL 0.9.7 before 0.9.7l and 0.9.8 before 0.9.8d allows remote attackers to cause a denial of service infinite loop and memory consumption via malformed ASN.1 structures that trigger an improperly handled error condition...
DEBIAN-CVE-2006-2937
OpenSSL 0.9.7 before 0.9.7l and 0.9.8 before 0.9.8d allows remote attackers to cause a denial of service infinite loop and memory consumption via malformed ASN.1 structures that trigger an improperly handled error condition...
CVE-2004-2645
CVE-2004-2645 affects the ASN.1 Compiler (asn1c) prior to 0.9.7. The vulnerability occurs when processing CHOICE types with indefinite-length structures. The available documents do not specify the impact or exploit vectors beyond stating “unknown impact.” There is no explicit remediation detail i...