5408 matches found
Code injection
Safari on Apple iPhone before 2.0 and iPod touch before 2.0 allows remote attackers to spoof the address bar via Unicode ideographic spaces in the URL...
CVE-2008-1588
Safari on Apple iPhone before 2.0 and iPod touch before 2.0 allows remote attackers to spoof the address bar via Unicode ideographic spaces in the URL...
CVE-2008-1588
Safari on Apple iPhone before 2.0 and iPod touch before 2.0 allows remote attackers to spoof the address bar via Unicode ideographic spaces in the URL...
CVE-2008-1588
CVE-2008-1588 affects Safari on Apple iPhone before 2.0 and iPod touch before 2.0. The underlying issue lets remote attackers spoof the address bar by using Unicode ideographic spaces in the URL, potentially deceiving users about the site they visit. The vulnerability references indicate affected...
Apple iPhone和iPod Touch 2.0版修复多个安全漏洞
BUGTRAQ ID: 30186 CVECAN ID: CVE-2008-1588,CVE-2008-1589,CVE-2008-2303,CVE-2008-2317,CVE-2008-1590 iPod touch(也被称为iTouch)是苹果公司发布的MP4播放器,iPhone是其发布的智能手机。 iPhone和iPod Touch都内嵌了Safari浏览器,远程攻击者可以利用该浏览器中的多个安全漏洞导致拒绝服务、读取敏感信息或执行任意代码。 CVE-2008-1588...
Orbit Downloader URL Unicode conversion buffer overflow
Added: 07/07/2008 CVE: CVE-2008-1602 BID: 28541 OSVDB: 44036 Background Orbit Downloader is a download manager supporting various protocols. Problem A buffer overflow vulnerability during Unicode conversion in the download failure notification message allows command execution when Orbit Downloade...
Orbit Downloader URL Unicode conversion buffer overflow
Added: 07/07/2008 CVE: CVE-2008-1602 BID: 28541 OSVDB: 44036 Background Orbit Downloader is a download manager supporting various protocols. Problem A buffer overflow vulnerability during Unicode conversion in the download failure notification message allows command execution when Orbit Downloade...
Orbit Downloader URL Unicode conversion buffer overflow
Added: 07/07/2008 CVE: CVE-2008-1602 BID: 28541 OSVDB: 44036 Background Orbit Downloader is a download manager supporting various protocols. Problem A buffer overflow vulnerability during Unicode conversion in the download failure notification message allows command execution when Orbit Downloade...
Orbit Downloader URL Unicode conversion buffer overflow
Added: 07/07/2008 CVE: CVE-2008-1602 BID: 28541 OSVDB: 44036 Background Orbit Downloader is a download manager supporting various protocols. Problem A buffer overflow vulnerability during Unicode conversion in the download failure notification message allows command execution when Orbit Downloade...
python repr unicode buffer overflow
Buffer overflow in the repr function in Python 2.3 through 2.6 before 20060822 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via crafted wide character UTF-32/UCS-4 strings to certain scripts...
perl: heap corruption by regular expressions with utf8 characters
Double free vulnerability in Perl 5.8.8 allows context-dependent attackers to cause a denial of service memory corruption and crash via a crafted regular expression containing UTF8 characters. NOTE: this issue might only be present on certain operating systems...
Important: Red Hat Security Advisory: perl security update
Updated perl packages that fix a security issue are now available for Red Hat Application Stack v1. This update has been rated as having important security impact by the Red Hat Security Response Team. Perl is a high-level programming language commonly used for system administration utilities and...
danairc-dos.txt
Dana IRC new Proto = 'tcp', LocalPort = '6667', Listen = SOMAXCONN, Reuse = 1 ; $jnk = "%n"x1000; print "Running.."; while$client = $sock-accept print $client "$jnk\r\n"; print "Crashed Client!\n";...
Dana IRC 1.3 - Remote Buffer Overflow (PoC)
Dana IRC 1.3 - Remote Buffer Overflow PoC - Dana IRC new Proto = 'tcp', LocalPort = '6667', Listen = SOMAXCONN, Reuse = 1 ; $jnk = "%n"x1000; print "Running.."; while$client = $sock-accept print $client "$jnk\r\n"; print "Crashed Client!\n"; milw0rm.com 2008-06-14...
Dana IRC 1.3 - Remote Buffer Overflow (PoC)
Dana IRC new Proto = 'tcp', LocalPort = '6667', Listen = SOMAXCONN, Reuse = 1 ; $jnk = "%n"x1000; print "Running.."; while$client = $sock-accept print $client "$jnk\r\n"; print "Crashed Client!\n"; milw0rm.com 2008-06-14...
DEBIAN-CVE-2008-1036
The International Components for Unicode ICU library in Apple Mac OS X before 10.5.3, Red Hat Enterprise Linux 5, and other operating systems omits some invalid character sequences during conversion of some character encodings, which might allow remote attackers to conduct cross-site scripting XS...
Apple Mac OS X multiple security vulnerabilities
AFP server directory traversal, Apache updates, AppKit memory corruption, Apple Pixlet Video multiple memory corruptions, Apple Type Services PDF printing fonts memory corruption, SSL information leak, multiple vulnerabilities in Graphics and Image engines on different filetypes and multimedia...
Cross-site scripting vulnerability in the Unicode version of msearch
Overview The Unicode version of msearch, a full text search engine for websites, contains a cross-site scripting vulnerability. This problem is caused by a function added to the Unicode version of msearch. Impact A malicious script may be executed on the user's web browser. Solution None...
Safari URL spoofing vulnerability
Overview Apple's Safari contains a vulnerability that allows spoofing of URLs in the address bar. Apple's Safari is a web browser installed as default with Mac OS X. There is a problem in Safari where URLs displayed in the address bar could be spoofed to deceive Safari users. This could be...
Multiple email clients vulnerable to directory traversal due to inappropriate unicode handling
Overview Some email clients contain a vulnerability when handling an attached file with a file name using unicode. This may result in a directory traversal attack or displaying a file name diffrently from the actual file name. Impact Actual impact could differ depending on the email clients thoug...