Ubuntu 4.10 / 5.04 : linux-source-2.6.10, linux-source-2.6.8.1 vulnerabilities (USN-178-1)

Oleg Nesterov discovered a local Denial of Service vulnerability in the timer handling. When a non group-leader thread called exec to execute a different program while an itimer was pending, the timer expiry would signal the old group leader task, which did not exist any more. This caused a kerne...

The Shuttle to the firewall under the Black Horse--DBB-vulnerability warning-the black bar safety net

Today want to introduce DarkStorm BePassFireWall Virus V1. 2 is a high success rate is extremely high rebound port through the firewall of the back door program, hereinafter referred to as DBB, and can penetrate 9 9% of the firewall. The back door using a thread insert technology, the concealment...

Microsoft Windows Server 2000 Kernel - APC Data-Free Local Escalation (MS05-055)

Microsoft Windows Server 2000 Kernel - APC Data-Free Local Escalation MS05-055 / helper.c commented out below ms05-055.c /str0ke / / MS05-055 Windows Kernel APC Data-Free Local Privilege Escalation Vulnerability Exploit Created by SoBeIt 12.25.2005 Main file of exploit Tested on: Windows 2000 PRO...

CVE-2005-4427

Multiple SQL injection vulnerabilities in Cerberus Helpdesk allow remote attackers to execute arbitrary SQL commands via the 1 fileid parameter to attachmentsend.php, 2 the $addy variable in emailparser.php, 3 $address variable in emailparser.php, 4 $aaddress variable in structs.php, 5 kbid...

MailEnable Enterprise Edition 1.1 - 'EXAMINE' Remote Buffer Overflow

!/usr/bin/python Remote Mailenable Enterprise 1.1 EXAMINE buffer Overflow Discovered and exploited by [email protected] This vulnerability affects Mailenable Enterprise 1.1 without the ME-10009.EXE patch. Details: SEH gets overwritten at 965 968 in VMWare bytes in the EXAMINE command. Filteri...

CVE-2005-2827

The thread termination routine in the kernel for Windows NT 4.0 and 2000 NTOSKRNL.EXE allows local users to modify kernel memory and execution flow via steps in which a terminating thread causes Asynchronous Procedure Call APC entries to free the wrong data, aka the "Windows Kernel Vulnerability....

CVE-2005-2827

The thread termination routine in the kernel for Windows NT 4.0 and 2000 NTOSKRNL.EXE allows local users to modify kernel memory and execution flow via steps in which a terminating thread causes Asynchronous Procedure Call APC entries to free the wrong data, aka the "Windows Kernel Vulnerability....

PT-2005-4658 · Ovbb · Ovbb

Name of the Vulnerable Software and Affected Versions: OvBB version 0.08a Description: The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via the threadid parameter to "thread.php" and the userid parameter to "profile.php". The vendor has disputed these...

CVE-2005-3816

Multiple SQL injection vulnerabilities in forum.php in freeForum 1.1 and earlier and earlier allow remote attackers to execute arbitrary SQL commands via the 1 cat parameter or 2 thread parameter in thread mode...

Card bar end plug not inserted into the thread—1 Software Developer challenge-vulnerability warning-the black bar safety net

I am asoftwaredeveloper, have been in this New Year occasion, it should not sweep everyone's interest, but to see some of the foreign companies doing I had to stand up and say some words! Don't know if you remember 2 0 0 4 occurred in a dispute, generally the events are as follows:...

PT-2005-4077 · Zeroblog · Zeroblog

Name of the Vulnerable Software and Affected Versions: Zeroblog versions 1.1f through 1.2a Description: A cross-site scripting XSS issue exists, allowing remote attackers to inject arbitrary web script or HTML via the threadID parameter in the thread.php file. Recommendations: For Zeroblog versio...

security flaw

Stack-based buffer overflow in the sendmsg function call in the Linux kernel 2.6 before 2.6.13.1 allows local users to execute arbitrary code by calling sendmsg and modifying the message contents in another thread...

CVE-2005-3106

Race condition in Linux 2.6, when threads are sharing memory mapping via CLONEVM such as linuxthreads and vfork, might allow local users to cause a denial of service deadlock by triggering a core dump while waiting for a thread that has just performed an exec...

CVE-2005-3024

Multiple SQL injection vulnerabilities in vBulletin 3.0.7 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 announcement parameter to announcement.php, the 2 threadforumid or 3 criteria parameters to thread.php, 4 userid parameter to user.php, the 5...

CVE-2005-3024

Multiple SQL injection vulnerabilities in vBulletin 3.0.7 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 announcement parameter to announcement.php, the 2 threadforumid or 3 criteria parameters to thread.php, 4 userid parameter to user.php, the 5...

CVE-2002-1989

Resin 2.1.1 is affected by CVE-2002-1989. The vulnerability allows remote attackers to cause a denial of service by issuing multiple URL requests that include the DOS name “CON” and a registered file extension such as .jsp or .xtp, leading to thread and connection consumption. The available docum...

phpBB 2.0.15 (highlight) Database Authentication Details Exploit

Exploit for unknown platform in category web applications ================================================================ phpBB 2.0.15 highlight Database Authentication Details Exploit ================================================================ !/usr/bin/perl tested and working /str0ke...

Multiple hardware platforms hyper threading technology systems information leak

Unprivileged thread can read data from privileged thread memory from CPU cache memory...

Stream / Raped (Windows) - Denial of Service

/ Straped 1.0 author: Marco Del Percio 20/05/2005 Remember: this is a mulithreaded program! MSVC++ compile with /MT. Remember: This program requires raw socket support! You can't use it on Windows XP SP2 and if you've done MS05-019 update you'll have to re-enable raw socket support! If you still...

security flaw

fs/exec.c in Linux 2.6, when one thread is tracing another thread that shares the same memory map, might allow local users to cause a denial of service deadlock by forcing a core dump when the traced thread is in the TASKTRACED state...