4483 matches found
security flaw
fs/exec.c in Linux 2.6, when one thread is tracing another thread that shares the same memory map, might allow local users to cause a denial of service deadlock by forcing a core dump when the traced thread is in the TASKTRACED state...
MySQL <= 5.0.20 COM_TABLE_DUMP Memory Leak/Remote BoF Exploit
Exploit for linux platform in category remote exploits ============================================================= MySQL = 5.0.20 COMTABLEDUMP Memory Leak/Remote BoF Exploit ============================================================= / April 21.st 2006 myexploit.c MySql COMTABLEDUMP Memory Le...
FlexBB <= 0.5.7 BETA XSS
FlexBB = 0.5.7 BETA XSS Start a new thread and type this in the thread name field box :- scriptalertdocument.cookie/script Or post a reply to any topic and include this in your reply :- scriptalertdocument.cookie/script Found By: Qex...
Code injection
An unspecified "logical programming mistake" in SMART SynchronEyes Student and Teacher 6.0, and possibly earlier versions, allows remote attackers to cause a denial of service via a large packet to the Teacher discovery port UDP port 5496, which causes a thread to terminate and prevents...
SMART Technologies SynchronEyes Remote Denial of Services
Title: SMART Technologies SynchronEyes Remote Denial of Services Release Date: 04. April 2006 Author: Dennis Elser dennis backtrace de Vendor: SMART Technologies Inc. http://www.smarttech.com Vendor Status: Notified, fixes scheduled for May Product: SynchronEyes Student and Teacher Affected...
CVE-2005-4750
CVE-2005-4750 affects BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, 7.0 SP5 and earlier, and 6.1 SP7 and earlier. It allows remote attackers to cause a denial of service (server thread hang) via unknown attack vectors. The provided documents do not include concrete exploit details...
Dropbear OpenSSH Server - MAX_UNAUTH_CLIENTS Denial of Service
Dropbear OpenSSH Server - MAXUNAUTHCLIENTS Denial of Service !/usr/bin/perl I needed a working test script so here it is. just a keep alive thread, I had a few problems with Pablo's code running properly. Straight from Pablo Fernandez's advisory: Vulnerable code is in svr-main.c / check for max...
Dropbear / OpenSSH Server (MAX_UNAUTH_CLIENTS) Denial of Service
Exploit for multiple platform in category dos / poc ================================================================ Dropbear / OpenSSH Server MAXUNAUTHCLIENTS Denial of Service ================================================================ !/usr/bin/perl I needed a working test script so here ...
Cross site scripting
Cross-site scripting XSS vulnerability in the Add Thread to Favorites feature in usercp2.php in MyBB aka MyBulletinBoard 1.02 allows remote attackers to inject arbitrary web script or HTML via an HTTP Referer header $url variable...
security flaw
Race condition in Linux 2.6, when threads are sharing memory mapping via CLONEVM such as linuxthreads and vfork, might allow local users to cause a denial of service deadlock by triggering a core dump while waiting for a thread that has just performed an exec...
Ubuntu 4.10 / 5.04 : linux-source-2.6.10, linux-source-2.6.8.1 vulnerabilities (USN-178-1)
Oleg Nesterov discovered a local Denial of Service vulnerability in the timer handling. When a non group-leader thread called exec to execute a different program while an itimer was pending, the timer expiry would signal the old group leader task, which did not exist any more. This caused a kerne...
The Shuttle to the firewall under the Black Horse--DBB-vulnerability warning-the black bar safety net
Today want to introduce DarkStorm BePassFireWall Virus V1. 2 is a high success rate is extremely high rebound port through the firewall of the back door program, hereinafter referred to as DBB, and can penetrate 9 9% of the firewall. The back door using a thread insert technology, the concealment...
Microsoft Windows Server 2000 Kernel - APC Data-Free Local Escalation (MS05-055)
Microsoft Windows Server 2000 Kernel - APC Data-Free Local Escalation MS05-055 / helper.c commented out below ms05-055.c /str0ke / / MS05-055 Windows Kernel APC Data-Free Local Privilege Escalation Vulnerability Exploit Created by SoBeIt 12.25.2005 Main file of exploit Tested on: Windows 2000 PRO...
CVE-2005-4427
Multiple SQL injection vulnerabilities in Cerberus Helpdesk allow remote attackers to execute arbitrary SQL commands via the 1 fileid parameter to attachmentsend.php, 2 the $addy variable in emailparser.php, 3 $address variable in emailparser.php, 4 $aaddress variable in structs.php, 5 kbid...
MailEnable Enterprise Edition 1.1 - 'EXAMINE' Remote Buffer Overflow
!/usr/bin/python Remote Mailenable Enterprise 1.1 EXAMINE buffer Overflow Discovered and exploited by [email protected] This vulnerability affects Mailenable Enterprise 1.1 without the ME-10009.EXE patch. Details: SEH gets overwritten at 965 968 in VMWare bytes in the EXAMINE command. Filteri...
CVE-2005-2827
The thread termination routine in the kernel for Windows NT 4.0 and 2000 NTOSKRNL.EXE allows local users to modify kernel memory and execution flow via steps in which a terminating thread causes Asynchronous Procedure Call APC entries to free the wrong data, aka the "Windows Kernel Vulnerability....
CVE-2005-2827
The thread termination routine in the kernel for Windows NT 4.0 and 2000 NTOSKRNL.EXE allows local users to modify kernel memory and execution flow via steps in which a terminating thread causes Asynchronous Procedure Call APC entries to free the wrong data, aka the "Windows Kernel Vulnerability....
PT-2005-4658 · Ovbb · Ovbb
Name of the Vulnerable Software and Affected Versions: OvBB version 0.08a Description: The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via the threadid parameter to "thread.php" and the userid parameter to "profile.php". The vendor has disputed these...
CVE-2005-3816
Multiple SQL injection vulnerabilities in forum.php in freeForum 1.1 and earlier and earlier allow remote attackers to execute arbitrary SQL commands via the 1 cat parameter or 2 thread parameter in thread mode...
Card bar end plug not inserted into the thread—1 Software Developer challenge-vulnerability warning-the black bar safety net
I am asoftwaredeveloper, have been in this New Year occasion, it should not sweep everyone's interest, but to see some of the foreign companies doing I had to stand up and say some words! Don't know if you remember 2 0 0 4 occurred in a dispute, generally the events are as follows:...