5409 matches found
FreeBSD : perl -- regular expressions unicode data buffer overflow (5b47c279-8cb5-11dc-8878-0016179b2dd5)
Red Hat reports : A flaw was found in Perl's regular expression engine. Specially crafted input to a regular expression can cause Perl to improperly allocate memory, possibly resulting in arbitrary code running with the permissions of the user running Perl. %NASLMINLEVEL 70300 C Tenable Network...
perl regular expression UTF parsing errors
Buffer overflow in the polymorphic opcode support in the Regular Expression Engine regcomp.c in Perl 5.8 allows context-dependent attackers to execute arbitrary code by switching from byte to Unicode UTF characters in a regular expression...
CVE-2007-5793
Stonesoft StoneGate IPS before 4.0 does not properly decode Fullwidth/Halfwidth Unicode encoded data, which makes it easier for remote attackers to scan or penetrate systems and avoid detection...
Design/Logic Flaw
Stonesoft StoneGate IPS before 4.0 does not properly decode Fullwidth/Halfwidth Unicode encoded data, which makes it easier for remote attackers to scan or penetrate systems and avoid detection...
CVE-2007-5793
Stonesoft StoneGate IPS before 4.0 does not properly decode Fullwidth/Halfwidth Unicode encoded data, which makes it easier for remote attackers to scan or penetrate systems and avoid detection...
GLSA-200710-28 : Qt: Buffer overflow
The remote host is affected by the vulnerability described in GLSA-200710-28 Qt: Buffer overflow Dirk Mueller from the KDE development team discovered a boundary error in file qutfcodec.cpp when processing Unicode strings. Impact : A remote attacker could send a specially crafted Unicode string t...
Qt: Buffer overflow
Background Qt is a cross-platform GUI framework, which is used e.g. by KDE. Description Dirk Mueller from the KDE development team discovered a boundary error in file qutfcodec.cpp when processing Unicode strings. Impact A remote attacker could send a specially crafted Unicode string to a...
WinRAR 7z-compressed packet processing overflow analysis and use-vulnerability and early warning-the black bar safety net
This article has been published in the hacker line of Defense of the 2 0 0 7 year 4 monthly. The author and the hacker line of Defense on the retention of copyright, reproduced, please indicate the original source. For the reader: overflow of lovers Pre-knowledge: Assembly language, buffer overfl...
CVE-2002-2256
The CVE-2002-2256 entry concerns the pWins Webserver (versions 0.2.5 and earlier). Affected component: the webserver’s handling of Unicode characters enables a directory traversal vulnerability, allowing remote attackers to read arbitrary files. The public records describe the vulnerability as a ...
CVE-2002-2256
Directory traversal vulnerability in pWins Webserver 0.2.5 and earlier allows remote attackers to read arbitrary files via Unicode characters...
Using a reverse connection break the tcp/ip limit of the process-vulnerability warning-the black bar safety net
Everyone is engaged in unicode when there's no found sometimes tftp fails, that is the other host is forced to close a remote connection, this situation generally is the other administrator for the tcp/ip or the firewall's sake, yesterday I after testing, found a way to break this limitation of t...
Firebird Relational Database isc_attach_database() Buffer Overflow
This module exploits a stack buffer overflow in Borland InterBase by sending a specially crafted create request. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Firebird Relational Database...
Microsoft MFC库CFileFind::FindFile缓冲区溢出漏洞
Microsoft Windows是一款流行的操作系统。 Microsoft Windows包含的MFC库处理CFileFind::FindFile方法存在缓冲区溢出,远程攻击者可以利用漏洞以链接此库的应用程序权限执行任意指令。 问题存在于MFC库包含的FindFile函数中,FindFile函数管理垮文件系统文件搜索,可指定文件类型进行搜索。FindFile函数为buffer1分配内存,buffer1用于存储function2的第一个参数,而没有对其大小进行检查。这个数据用于开始一个搜索。...
Heap overflow
Off-by-one error in the QUtf8Decoder::toUnicode function in Trolltech Qt 3 allows context-dependent attackers to cause a denial of service crash via a crafted Unicode string that triggers a heap-based buffer overflow. NOTE: Qt 4 has the same error in the QUtf8Codec::convertToUnicode function, but...
CVE-2007-4137
Off-by-one error in the QUtf8Decoder::toUnicode function in Trolltech Qt 3 allows context-dependent attackers to cause a denial of service crash via a crafted Unicode string that triggers a heap-based buffer overflow. NOTE: Qt 4 has the same error in the QUtf8Codec::convertToUnicode function, but...
CVE-2007-4137
Removed by vendor...
CVE-2007-4137
Off-by-one error in the QUtf8Decoder::toUnicode function in Trolltech Qt 3 allows context-dependent attackers to cause a denial of service crash via a crafted Unicode string that triggers a heap-based buffer overflow. NOTE: Qt 4 has the same error in the QUtf8Codec::convertToUnicode function, but...
[GOODFELLAS-VULN] FileFind class from MFC Library cause heap overflow
:. GOODFELLAS Security Research TEAM .: :. http://goodfellas.shellcode.com.ar .: FileFind class from MFC Library cause heap overflow. =================================================== Internal ID: VULWKU200706142 introduction ------------ The GOODFELLAS security research team has found a bug in...
qt security update
CentOS Errata and Security Advisory CESA-2007:0883-01 Updated qt packages that correct two security flaws are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. Qt is a software toolkit that simplifies the task of writing and...
Qt library buffer overflow
Buffer overflow on Unicode strings parsing...