1914 matches found
[SNS Advisory No.63] DeleGate Pointer Array Overflow May Let Remote Users Execute Arbitrary Code
---------------------------------------------------------------------- SNS Advisory No.63 DeleGate Pointer Array Overflow May Let Remote Users Execute Arbitrary Code Problem first discovered on: Sun, 02 Mar 2003 Published on: Mon, 10 Mar 2003...
CVE-2002-2295
Buffer overflow in Pico Server pServ 2.0 beta 1 through beta 5 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via 1 a 1024-byte TCP stream message, which triggers an off-by-one buffer overflow, or 2 a long method name in an HTTP request, 3 a long...
Pserv 2.0 - User-Agent HTTP Header Buffer Overflow (2)
Pserv 2.0 - User-Agent HTTP Header Buffer Overflow 2 // source: https://www.securityfocus.com/bid/6286/info A buffer overflow vulnerability has been reported in Pserv. The buffer overflow condition is due to the way Pserv handles data streams from remote connections. An attacker can exploit this...
Pserv 2.0 - User-Agent HTTP Header Buffer Overflow (1)
Pserv 2.0 - User-Agent HTTP Header Buffer Overflow 1 source: https://www.securityfocus.com/bid/6286/info A buffer overflow vulnerability has been reported in Pserv. The buffer overflow condition is due to the way Pserv handles data streams from remote connections. An attacker can exploit this...
Pserv 2.0 - User-Agent HTTP Header Buffer Overflow (2)
// source: https://www.securityfocus.com/bid/6286/info A buffer overflow vulnerability has been reported in Pserv. The buffer overflow condition is due to the way Pserv handles data streams from remote connections. An attacker can exploit this vulnerability by issuing a HTTP request with an overl...
Pserv 2.0 - User-Agent HTTP Header Buffer Overflow (1)
source: https://www.securityfocus.com/bid/6286/info A buffer overflow vulnerability has been reported in Pserv. The buffer overflow condition is due to the way Pserv handles data streams from remote connections. An attacker can exploit this vulnerability by issuing a HTTP request with an overly...
CVE-2002-0944
Cross-site scripting vulnerability in DeepMetrix LiveStats 5.03–6.2.1 allows remote attackers to execute arbitrary script as the LiveStats user via the (1) user-agent or (2) referrer, which are not filtered by the stats program. Affected: DeepMetrix LiveStats versions 5.03 through 6.2.1. Impact: ...
Web Server HTTP User-Agent Header Handling Remote Overflow
It was possible to kill the web server by sending an invalid GET request with a long User-Agent field. A remote attacker may exploit this vulnerability to make the web server crash continually or possibly execute arbitrary code. C Tenable Network Security, Inc. Script audit and contributions from...
Apple QuickTime 5.0 - Content-Type Remote Buffer Overflow
// source: https://www.securityfocus.com/bid/4064/info Apple QuickTime is a freely available media player. It runs on a number of platforms including MacOS and Windows 9x/ME/NT/2000/XP operating systems. Apple QuickTime For Windows does not perform sufficient bounds checking of the "Content-Type"...
CVE-2001-0904
Internet Explorer 5.5 and 6 with the Q312461 MS01-055 patch modifies the HTTPUSERAGENT UserAgent information that indicates that the patch has been installed, which could allow remote malicious web sites to more easily identify and exploit vulnerable clients...
SHOUTcast Server User-Agent / Host Header DoS
The remote host is running SHOUTcast Server, a streaming audio server from Nullsoft. According to its banner, the installed version of SHOUTcast server will reportedly crash when it receives several HTTP requests with overly long User-Agent and/or Host request headers. %NASLMINLEVEL 70300 C Tenab...
CVE-2000-0828
Buffer overflow in ddicgi.exe in Mobius DocumentDirect for the Internet 1.2 allows remote attackers to execute arbitrary commands via a long User-Agent parameter...
CVE-2000-0828
Buffer overflow in ddicgi.exe in Mobius DocumentDirect for the Internet 1.2 allows remote attackers to execute arbitrary commands via a long User-Agent parameter...
CVE-2000-0828
CVE-2000-0828 describes a buffer overflow in Mobius DocumentDirect for the Internet 1.2 ’s ddicgi.exe . An attacker can trigger arbitrary command execution by sending a specially long User-Agent header, i.e., a remote code execution vulnerability. The entry lists a network attack vector with a hi...