CVE-2009-3888

CVE-2009-3888 affects the Linux kernel up to version 2.6.31.5; the vulnerability is in do_mmap_pgoff in mm/nommu.c when an MMU is absent. Local users can trigger a denial of service (OOPS) by allocating a large amount of memory. A patch released in 2.6.31.6 fixes the issue; updating to 2.6.31.6 o...

kernel: flood ping cause out-of-iommu error and panic when mtu larger than 1500

The swiotlb functionality in the r8169 driver in drivers/net/r8169.c in the Linux kernel before 2.6.27.22 allows remote attackers to cause a denial of service IOMMU space exhaustion and system crash by using jumbo frames for a large amount of network traffic, as demonstrated by a flood ping...

[SECURITY] Fedora 11 Update: rubygem-actionpack-2.3.2-2.fc11

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

[SECURITY] Fedora 11 Update: rubygem-actionpack-2.3.3-2.fc11

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

Rittal CMC-TC Processing Unit II multiple security vulnerabilities

Crossite scripting, session hijacking...

[SECURITY] Fedora 9 Update: rubygem-actionpack-2.1.1-2.fc9

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

Post Affiliate Pro v.3 (umprof_status) Blind SQL Injection Vulnerability

Exploit for unknown platform in category web applications ======================================================================== Post Affiliate Pro v.3 umprofstatus Blind SQL Injection Vulnerability ======================================================================== ¦ Post Affiliate Pro v...

Polycom Videoconferencing Unit Detection

The remote web server provides an access to a Polycom videoconferencing unit. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid34851; scriptversion"1.11"; scriptnameenglish: "Polycom Videoconferencing Unit Detection"; scriptsetattributeattribute:"synopsis", value: "The...

[SECURITY] Fedora 8 Update: rubygem-actionpack-2.1.1-1.fc8

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

CVE-2008-2474

Buffer overflow in x87 before 3.5.5 in ABB Process Communication Unit 400 PCU400 4.4 through 4.6 allows remote attackers to execute arbitrary code via a crafted packet using the 1 IEC60870-5-101 or 2 IEC60870-5-104 communication protocol to the X87 web interface...

[SECURITY] Fedora 9 Update: rubygem-actionpack-2.1.1-1.fc9

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

libxpm buffer overflow

scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmapunit value that leads to a buffer overflow...

Wiki clone products vulnerable to denial of service attacks

Overview Wiki clones allow a user via a web browser to edit documents on the web server. Some products of Wiki clones contain a vulnerability which consumes large amounts of CPU and memory resources when handling a particular request. Impact A remote attacker could execute a DoS denial of service...

libxpm buffer overflow

scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmapunit value that leads to a buffer overflow...

hacking the mitsubishi GB-50A

Hi All, Well, it's been over 4 months since my plea for a security contact at Mitsubishi Electric to come forward. Since no one has, I thought I'd release a POC for hacking one. It's not exactly hard, the web controller uses a nasty set of Java applets to interact with itself. The shocking thing ...

AirSpan Base Station Distribution Unit default root password

Overview AirSpan Base Station Distribution Units may contain an undocumented telnet server that authenticates via a known password and is enabled by default. Description From the AirSpan MicroMax product page:The base station is highly modular in design and is composed of two main components: the...

CVE-2007-6226

The American Power Conversion APC AP7932 0u 30amp Switched Rack Power Distribution Unit PDU, with rpdu 3.5.5 and aos 3.5.6, allows remote attackers to bypass authentication and obtain login access by making a login attempt while a different client is logged in, and then resubmitting the login...

DCTStream:: readProgressiveDataUnit()

Array index error in the DCTStream::readProgressiveDataUnit method in xpdf/Stream.cc in Xpdf 3.02pl1, as used in poppler, teTeX, KDE, KOffice, CUPS, and other products, allows remote attackers to trigger memory corruption and execute arbitrary code via a crafted PDF file...

CVE-2007-2039

The Network Processing Unit NPU in the Cisco Wireless LAN Controller WLC before 3.2.171.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service loss of packet forwarding via 1 crafted SNAP packets, 2 malformed 802.11 traffic, or 3...

CVE-2007-2038

The Network Processing Unit NPU in the Cisco Wireless LAN Controller WLC before 3.2.193.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service loss of packet forwarding via 1 crafted SNAP packets, 2 malformed 802.11 traffic, or 3...