DEBIAN-CVE-2004-0642

Double free vulnerabilities in the error handling code for ASN.1 decoders in the 1 Key Distribution Center KDC library and 2 client library for MIT Kerberos 5 krb5 1.3.4 and earlier may allow remote attackers to execute arbitrary code...

freebsd/x86 - connect 102 bytes

freebsd/x86 connect 102 bytes. Shellcode exploit for freebsdx86 platform ; Passive Connection Shellcode ; ; Coded by Scrippie - [email protected] - http://b0f.freebsd.lublin.pl ; Buffer0verfl0w Security ; Why? This evades firewalls... ; ; YES, this is for NASM, I detest AT&T syntaxis - it's gross...

Microsoft Windows Server 2000 - POSIX Subsystem Privilege Escalation (MS04-020)

/ Microsoft Windows POSIX Subsystem Local Privilege Escalation Exploit MS04-020 Tested on windows 2k sp4 CN,NT/XP/2003 NOT TESTED Posixexp.c By bkbll bkbll cnhonker net,bkbll tom com www cnhonker com 2004/07/16 thanks to eyas xfocus org C:\whoami VITUALWIN2K\test C:\posixexp Microsoft Windows POS...

DEBIAN-CVE-2004-0400

Stack-based buffer overflow in Exim 4 before 4.33, when the headerschecksyntax option is enabled, allows remote attackers to cause a denial of service and possibly execute arbitrary code during the header check...

FreeBSD : exim buffer overflow when verify = header_syntax is used (43)

The following package needs to be updated: exim-ldap2 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkg5f29c2e49f6a11d8abbc00e08110b673.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright...

Cross-site scripting vulnerability in Crafy Syntax Live Help 2.7.3 and below

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 The problem: Users are able to insert pieces of html both in their name when they request livehelp and in chat sessions. For example. If I where to input the following javascript inside a ""script"" tag and use it as my name...

Crafty Syntax Live Help 2.7.3 - Multiple HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/10463/info CSLH is prone to multiple HTML injection vulnerabilities. These issues exist due to insufficient sanitization of user-supplied data. The problem presents itself in various modules of the application and can allow remote attackers to inject HTML...

Exim verify=header_syntax buffer overflow

Background Exim is an highly configurable message transfer agent MTA developed at the University of Cambridge. Description When the option "verify = headersyntax" is used in an ACL in the configuration file, Exim is vulnerable to a buffer overflow attack that can be triggered remotely by sending...

Exim buffer overflows

2 buffer overflows if senderverify is on or verify = headersyntax...

DSA-501 exim - buffer overflow

Bulletin has no description...

exim buffer overflow when verify = header_syntax is used

A remote exploitable buffer overflow has been discovered in exim when verify = headersyntax is used in the configuration file. This does not affect the default configuration...

BEA WebLogic Server contains a vulnerability in the URL pattern matching

Overview There is a vulnerability in the URL pattern matching functionality of BEA WebLogic Server that could allow URL restrictions to be bypassed. Description BEA Systems describes WebLogic Server as "an industrial-strength application infrastructure for developing, integrating, securing, and...

invisionPTSL11.txt

Vendor : Invision Power Services URL : http://www.invisiontsl.com Version : Invision Power Top Site List v1.1 RC 2 && Earlier Risk : SQL Injection Vulnerability Description: Invision Power Top Site List is a flexible site ranking script written in PHP, the popular programming choice for web...

Expinion.net Member Management System 2.1 - 'news_view.asp?ID' SQL Injection

source: https://www.securityfocus.com/bid/9931/info It has been reported that Member Management System may be prone to a SQL injection vulnerability that may allow a remote attacker to inject malicious SQL syntax into database queries. The problem is reported to exist in the 'ID' parameter...

security flaw

OpenSSL 0.9.6k allows remote attackers to cause a denial of service crash via large recursion via malformed ASN.1 sequences...

PHP-Nuke 6.x/7.0 Survey Module - SQL Injection

source: https://www.securityfocus.com/bid/9305/info A vulnerability has been reported to exist in the Survey module of PHP-Nuke that may allow a remote attacker to inject malicious SQL syntax into database queries. The source of this issue is insufficient sanitization of user-supplied input. A...

DEBIAN-CVE-2003-0544

OpenSSL 0.9.6 and 0.9.7 does not properly track the number of characters in certain ASN.1 inputs, which allows remote attackers to cause a denial of service crash via an SSL client certificate that causes OpenSSL to read past the end of a buffer when the long form is used...

CAN-2003-0543/0544 OpenSSL ASN.1 protocol crashes

Integer overflow in OpenSSL 0.9.6 and 0.9.7 allows remote attackers to cause a denial of service crash via an SSL client certificate with certain ASN.1 tag values...

Mambo Site Server 4.0.14 - banners.php?bid SQL Injection

Mambo Site Server 4.0.14 - banners.php?bid SQL Injection source: https://www.securityfocus.com/bid/8647/info It has been reported that Mambo Open Source Server is prone to multiple input validation vulnerabilities that may allow remote attackers to inject malicious SQL syntax into database querie...

Jakarta Tomcat serves JSP source code when supplied malformed HTTP request

Overview Tomcat does not adequately validate HTTP requests and may reveal JSP source code if supplied a malformed HTTP request. Description JavaServer Pages JSP is a technology that allows for the creation of dynamic web content. The Apache Jakarta Project implementation of JSP is known as Tomcat...