Code injection

The Network Processing Unit NPU in the Cisco Wireless LAN Controller WLC before 3.2.171.5, 4.0.x before 4.0.206.0, and 4.1.x allows remote attackers on a local wireless network to cause a denial of service loss of packet forwarding via 1 crafted SNAP packets, 2 malformed 802.11 traffic, or 3...

PT-2007-1470 · Smarty · Smarty

Name of the Vulnerable Software and Affected Versions: Smarty version 2.6.1 Description: A remote file inclusion issue in the unit test/test cases.php file of Smarty allows remote attackers to execute arbitrary PHP code via a URL in the SMARTY DIR parameter. Recommendations: For Smarty version...

Packeteer PacketWise CLI overflow DoS

Product: Packeteer PacketShaper Model: 9500/ISP Software: PacketWise 8.x possibly others =========== Background =========== Packeteer creates bandwidth management solutions such as the PacketShaper which "is the ultimate scalable platform for optimized WAN application performance—the only...

IE CSS畸形宽度单元标记拒绝服务漏洞

Internet Explorer是微软发布的非常流行的WEB浏览器。 Internet Explorer在处理畸形的HTML标记时存在漏洞，远程攻击者可能利用此漏洞导致用户机器不可用。 如果用户使用IE访问了设置有特制CSS宽度单元的WEB页面的话，就会导致iexplore.exe耗尽100%的CPU资源。 Microsoft Internet Explorer 7.0 Microsoft Internet Explorer 7 Beta 2 Microsoft Internet Explorer 7 Beta 1 Microsoft Internet Explorer 6.0 SP1...

security flaw

The Unidirectional Lightweight Encapsulation ULE decapsulation component in dvb-core/dvbnet.c in the dvb driver in the Linux kernel 2.6.17.8 allows remote attackers to cause a denial of service crash via an SNDU length of 0 in a ULE packet...

CVE-2005-0985

Unspecified vulnerability in the Mac OS X kernel before 10.3.8 allows local users to cause a denial of service temporary hang via unspecified attack vectors related to the fan control unit FCU driver...

DEBIAN-CVE-2006-3913

Buffer overflow in Freeciv 2.1.0-beta1 and earlier, and SVN 15 Jul 2006 and earlier, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a 1 negative chunklength or a 2 large chunk-offset value in a PACKETPLAYERATTRIBUTECHUNK packet in the...

FreeBSD floating-point unit information leak

Internal registers state is not completely saved/restored during context switching...

CVE-2005-0985

Unspecified vulnerability in the Mac OS X kernel before 10.3.8 allows local users to cause a denial of service temporary hang via unspecified attack vectors related to the fan control unit FCU driver...

libxpm buffer overflow

scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmapunit value that leads to a buffer overflow...

libxpm buffer overflow

scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmapunit value that leads to a buffer overflow...

libxpm buffer overflow

scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmapunit value that leads to a buffer overflow...

[Full-Disclosure] yet another panic() in OpenBSD

a project lacking the basic QA and unit testing and here is the outcome: include stdio.h include sys/types.h include sys/sem.h include sys/ipc.h int main int i; fori = 0; i 0x40; i++ semopi, struct sembuf NULL, 0; PANIC in OpenBSD 3.3 and 3.4 is confirmed. Full-Disclosure - We believe in it...

CVE-2001-1554

IBM AIX 430 does not properly unlock IPPMTULOCK, which allows remote attackers to cause a denial of service hang via Path Maximum Transmit Unit PMTU IP packets...

DoS против систем с включенным PMTU discovery

Можно прекратить связь между жвумя системами за счет установки некорректного MTU, спровоцировав между системами пакет с известным содержимым например ICMP echo-reply...

DST2K0036: Price modification possible in CyberOffice Shopping Ca rt

All, We have released this with the permission of the vendor. Rgds Ollie ----- Ollie Whitehouse Security Team Leader tel: +44 020 79160200 ============================================================================ Delphis Consulting Plc...