observed software vulnerabilities
vulnerabilities.aspcode.net
Searching observed software vulnerabilities
Buffer overflows in netstd 3.07-17 package allo
arbitrary
|
overflows
|
utilities
|
observed
|
servers
|
execute
|
package
|
307-17
|
netstd
|
remote
|
Buffer
|
allows
|
reply
|
FQDN
|
code
|
long
|
DNS
|
via
|
Buffer overflows in netstd 3.07-17 package allows remote DNS servers to execute arbitrary code via a long FQDN reply, as observed in the utilities (1) linux-ftpd, (2) pcnfsd, (3) tftp, (4) traceroute, or (5) from/to.
** DISPUTED ** Format string vulnerability in v
vulnerability
|
vsybasec
|
DISPUTED
|
vpopmail
|
Format
|
string
|
** DISPUTED ** Format string vulnerability in vsybase.c in vpopmail 5.4.2 and earlier has unknown impact and attack vectors. NOTE: in a followup post, it was observed that the source code used constants that, when compiled, became static format strings. Thus this is not a vulnerability.
** DISPUTED ** PHP remote file inclusion vulne
vulnerability
|
Neustaetter
|
addnewsphp
|
inclusion
|
DISPUTED
|
gCards
|
remote
|
file
|
Greg
|
PHP
|
** DISPUTED ** PHP remote file inclusion vulnerability in addnews.php in Greg Neustaetter gCards 1.13 allows remote attackers to execute arbitrary PHP code via a URL in the languagefile parameter. NOTE: another researcher has observed that languageFile is defined before use. CVE analysis as of Thursday, October 12, 2006 concurs with the dispute.
GlowWorm FW before 1.5.3b4 allows remote attack
attackers
|
GlowWorm
|
service
|
denial
|
remote
|
before
|
allows
|
153b4
|
cause
|
GlowWorm FW before 1.5.3b4 allows remote attackers to cause a denial of service (kernel panic) via certain DNS responses that trigger infinite recursion in TrueDNS packet parsing, as originally observed with certain login.yahoo.com responses.
Software vulnerabilities results 1 to 5 of 5
Page:
1