5410 matches found
Opera < 10.00 Multiple Vulnerabilities
Binary data 800811.prm...
Opera < 10.00 Multiple Vulnerabilities
Binary data 5146.prm...
AIMP2 Audio Converter 2.53b330 Crash
!/usr/bin/python AIMP2 Audio Converter = 2.53 build 330 .pls/.m3u Unicode local crash PoC Found & exploited by: mrme Download: ftp://www.catode.ru/AIMP/aimp2.51.330.zip Tested on: Wind0ws XP SP3 Unicode overflow, maybe someone with better skills can exploit this you need to overwrite SEH handler...
AIMP2 Audio Converter 2.53b330 - '.pls' / '.m3u' Unicode Crash (PoC)
!/usr/bin/python AIMP2 Audio Converter = 2.53 build 330 .pls/.m3u Unicode local crash PoC Found & exploited by: mrme Download: ftp://www.catode.ru/AIMP/aimp2.51.330.zip Tested on: Wind0ws XP SP3 Unicode overflow, maybe someone with better skills can exploit this you need to overwrite SEH handler...
Opera may show some incorrect characters in the address bar
Some Unicode characters are treated incorrectly, which might cause international domain names that use them to be shown in the wrong format. Showing these addresses in Unicode instead of punycode could allow for limited address spoofing...
CVE-2009-3006
The CVE-2009-3006 entry concerns Maxthon Browser 2.5.3.80 UNICODE. The vulnerability allows a remote attacker to spoof the address bar by using window.open with a relative URI, causing the browser to display an arbitrary URL on the site visited by the victim and potentially trigger a spoofed logi...
openSUSE Security Update : icu (icu-1028)
icu does not properly handle invalid byte sequences during Unicode conversion. Remote attackers could potentially exploit that to conduct conduct cross-site scripting XSS attacks CVE-2009-0153. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...
RHEL 4 : kernel (RHSA-2009:1211)
Updated kernel packages that fix several security issues and several bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...
kernel: cifs: fix potential buffer overruns when converting unicode strings sent by server
Multiple buffer overflows in the cifs subsystem in the Linux kernel before 2.6.29.4 allow remote CIFS servers to cause a denial of service memory corruption and possibly have unspecified other impact via 1 a malformed Unicode string, related to Unicode string area alignment in fs/cifs/sess.c; or ...
Important: Red Hat Security Advisory: kernel security and bug fix update
Updated kernel packages that fix several security issues and several bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...
kernel security and bug fix update
2.6.9-89.0.7.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - backout patch sysrq-b that queues upto keventd thread Guru Anbalagane orabug 6125546 - netrx/netpoll race avoidanc...
Cross site scripting
CA SiteMinder allows remote attackers to bypass cross-site scripting XSS protections for J2EE applications via a request containing non-canonical, "overlong Unicode" in place of blacklisted characters...
CVE-2009-2705
CA SiteMinder allows remote attackers to bypass cross-site scripting XSS protections for J2EE applications via a request containing non-canonical, "overlong Unicode" in place of blacklisted characters...
CVE-2009-2705
CA SiteMinder allows remote attackers to bypass cross-site scripting XSS protections for J2EE applications via a request containing non-canonical, "overlong Unicode" in place of blacklisted characters...
PT-2009-5093 · Ca · Ca Siteminder
Name of the Vulnerable Software and Affected Versions: CA SiteMinder affected versions not specified Description: The issue allows remote attackers to bypass cross-site scripting XSS protections for J2EE applications. This is achieved by sending a request that contains non-canonical, "overlong...
Microsoft Internet Explorer 'findText()' Unicode Parsing DoS Vulnerability
This host has Internet Explorer installed and is prone to Denial of Service vulnerability. OpenVAS Vulnerability Test $Id: gbmsiefindtextdosvulnaug09.nasl 6527 2017-07-05 05:56:34Z cfischer $ Microsoft Internet Explorer 'findText' Unicode Parsing DoS Vulnerability Authors: Sharath S Copyright:...
Microsoft Internet Explorer 'findText()' Unicode Parsing DoS Vulnerability
Internet Explorer is prone to a denial of service vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RadASM 2.2.1.5 Format String
RadASM 2.2.1.5 .mnu File Format string Poc By SkuLL-HacKeR GreetZ : hack4love - Aser ro7 - ThE g0bL!N - Qabandi EAX 00002E2E ECX 41413D92 ECX overwrited EDX 00000002 EBX 00000000 ESP 0013F894 EBP 0013F9AC ASCII "..................................................................." ESI 00187658 ASC...
Code injection
mshtml.dll in Microsoft Internet Explorer 7 and 8 on Windows XP SP3 allows remote attackers to cause a denial of service application crash by calling the JavaScript findText method with a crafted Unicode string in the first argument, and only one additional argument, as demonstrated by a second...
RadASM 2.2.1.5 - .mnu Local Format String (PoC)
RadASM 2.2.1.5 - .mnu Local Format String PoC RadASM 2.2.1.5 .mnu File Format string Poc By SkuLL-HacKeR GreetZ : hack4love - Aser ro7 - ThE g0bL!N - Qabandi EAX 00002E2E ECX 41413D92 ECX overwrited EDX 00000002 EBX 00000000 ESP 0013F894 EBP 0013F9AC ASCII...