Searching offset software vulnerabilities

Transparent Network Substrate (TNS) over Net8 (

Transparent | Substrate | Network |

Transparent Network Substrate (TNS) over Net8 (SQLNet) in Oracle 8i 8.1.7 and earlier allows remote attackers to cause a denial of service via a malformed SQLNet connection request with a large offset in the header extension.


Oracle Listener in Oracle 7.3 and 8i allows rem

offset_to_data | connection | attackers | malformed | Listener | service | allows | packet | Oracle | remote | denial | value | large | cause | via |

Oracle Listener in Oracle 7.3 and 8i allows remote attackers to cause a denial of service via a malformed connection packet with a large offset_to_data value.


Oracle listener between Oracle 9i and Oracle 8.

requester_version | connection | attackers | malformed | incorrect | contains | listener | expected | service | between | offset | Oracle | packet | remote | allows | denial | match | cause | value | data | does | via | not |

Oracle listener between Oracle 9i and Oracle 8.0 allows remote attackers to cause a denial of service via a malformed connection packet that contains an incorrect requester_version value that does not match an expected offset to the data.


Buffer overflow in Microsoft Wordperfect Conver

Wordperfect | parameters | attackers | arbitrary | Converter | Microsoft | overflow | modified | execute | allows | offset | Buffer | remote | Corel | size | code | file | data | via |

Buffer overflow in Microsoft Wordperfect Converter allows remote attackers to execute arbitrary code via modified data offset and data size parameters in a Corel WordPerfect file.


Linux kernel does not properly convert 64-bit f

pointers | properly | portions | convert | offset | memory | access | allows | 64-bit | kernel | local | users | Linux | which | file | does | bits | not |

Linux kernel does not properly convert 64-bit file offset pointers to 32 bits, which allows local users to access portions of kernel memory.


Integer overflow in the NTP daemon (NTPd) befor

overflow | Integer | daemon | NTP |

Integer overflow in the NTP daemon (NTPd) before 4.0 causes the NTP server to return the wrong date/time offset when a client requests a date/time that is more than 34 years away from the server's time.


The TNS Listener in Oracle 10g allows remote at

attackers | Listener | service | remote | denial | Oracle | allows | cause | TNS | 10g |

The TNS Listener in Oracle 10g allows remote attackers to cause a denial of service (listener crash) via a malformed service_register_NSGR request containing a value that is used as an invalid offset for a pointer that references incorrect memory.


The DNS implementation in DeleGate 8.10.2 and e

implementation | DeleGate | DNS |

The DNS implementation in DeleGate 8.10.2 and earlier allows remote attackers to cause a denial of service via a compressed DNS packet with a label length byte with an incorrect offset, which could trigger an infinite loop.


The DNS implementation of DNRD before 2.10 allo

implementation | before | DNRD | DNS |

The DNS implementation of DNRD before 2.10 allows remote attackers to cause a denial of service via a compressed DNS packet with a label length byte with an incorrect offset, which could trigger an infinite loop.


The DNS implementation of PowerDNS 2.9.16 and e

implementation | PowerDNS | DNS |

The DNS implementation of PowerDNS 2.9.16 and earlier allows remote attackers to cause a denial of service via a compressed DNS packet with a label length byte with an incorrect offset, which could trigger an infinite loop.


Heap-based buffer overflow in the DEC2EXE modul

containing | compressed | Heap-based | AntiVirus | attackers | arbitrary | overflow | negative | Symantec | crafted | virtual | execute | DEC2EXE | Library | allows | module | header | remote | offset | buffer | code | file | via | UPX |

Heap-based buffer overflow in the DEC2EXE module for Symantec AntiVirus Library allows remote attackers to execute arbitrary code via a UPX compressed file containing a negative virtual offset to a crafted PE header.


AppKit in Mac OS X 10.3.9 allows attackers to c

AppKit | Mac |

AppKit in Mac OS X 10.3.9 allows attackers to cause a denial of service (Cocoa application crash) via a malformed TIFF image that causes the NXSeek to use an incorrect offset, leading to an unhandled exception.


Cross-site scripting (XSS) vulnerability in tik

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in tiki-view_forum_thread.php in TikiWiki 1.9.0 through 1.9.2 allows remote attackers to inject arbitrary web script or HTML via the topics_offset parameter.


SQL injection vulnerability in topic.php in Sho

vulnerability | ShockBoard | arbitrary | attackers | parameter | injection | commands | topicphp | execute | offset | allows | remote | SQL | via |

SQL injection vulnerability in topic.php in ShockBoard 3.0 and 4.0 allows remote attackers to execute arbitrary SQL commands via the offset parameter.


kernfs_xread in kernfs_vnops.c in NetBSD before

kernfs_vnopsc | kernfs_xread | before | NetBSD |

kernfs_xread in kernfs_vnops.c in NetBSD before Wednesday, August 31, 2005 does not check for a negative offset when reading the message buffer, which allows local users to read arbitrary kernel memory.


SQL injection vulnerability in viewStatement.ph

viewStatementphp | vulnerability | injection | AdMan | SQL |

SQL injection vulnerability in viewStatement.php in AdMan 1.0.Wednesday, December 21, 2005 and earlier allows remote attackers to execute arbitrary SQL commands via the transactions_offset parameter.


The substr_compare function in string.c in PHP

substr_compare | function | stringc | PHP |

The substr_compare function in string.c in PHP 5.1.2 allows context-dependent attackers to cause a denial of service (memory access violation) via an out-of-bounds offset argument.


SQL injection vulnerability in index.php in iBW

vulnerability | attackers | Guestbook | arbitrary | injection | parameter | commands | indexphp | execute | offset | allows | remote | iBWd | SQL | via |

SQL injection vulnerability in index.php in iBWd Guestbook 1.0 allows remote attackers to execute arbitrary SQL commands via the offset parameter.


SQL injection vulnerability in view.php in Open

vulnerability | arbitrary | Guestbook | attackers | parameter | injection | commands | viewphp | execute | offset | allows | remote | Open | SQL | via |

SQL injection vulnerability in view.php in Open Guestbook 0.5 allows remote attackers to execute arbitrary SQL commands via the offset parameter.


SQL injection vulnerability in referralUrl.php

referralUrlphp | vulnerability | arbitrary | attackers | injection | parameter | commands | execute | Traffic | offset | allows | remote | Stats | SQL | via |

SQL injection vulnerability in referralUrl.php in Traffic Stats allows remote attackers to execute arbitrary SQL commands via the offset parameter.


Software vulnerabilities results 1 to 20 of 54     
Page: 123