Searching one zero software vulnerabilities

Denial of service in Ascend and 3com routers, w

rebooted | sending | routers | service | option | Denial | Ascend | length | which | 3com | zero | TCP | can |

Denial of service in Ascend and 3com routers, which can be rebooted by sending a zero length TCP option.


There is a one-way or two-way trust relationshi

relationship | Windows | between | domains | one-way | two-way | There | trust |

There is a one-way or two-way trust relationship between Windows NT domains.


BroadVision One-To-One Enterprise allows remote

BroadVision | requesting | Enterprise | One-To-One | determine | attackers | physical | server | allows | remote | exist | files | name | does | path | file | not | JSP |

BroadVision One-To-One Enterprise allows remote attackers to determine the physical path of server files by requesting a .JSP file name that does not exist.


vi.recover in OpenBSD before 3.1 allows local u

arbitrary | zero-byte | virecover | OpenBSD | remove | device | allows | before | nodes | files | users | local | such |

vi.recover in OpenBSD before 3.1 allows local users to remove arbitrary zero-byte files such as device nodes.


Unknown vulnerability in ColdFusion Server 2.0

vulnerability | ColdFusion | through | Unknown | Server |

Unknown vulnerability in ColdFusion Server 2.0 through 4.5.1 SP2 allows remote attackers to overwrite templates with zero byte files via unknown attack vectors.


Zero One Tech (ZOT) P100s print server does not

Tech | Zero | One |

Zero One Tech (ZOT) P100s print server does not properly disable the SNMP service or change the default password, which could leave the server open to attack without the administrator's knowledge.


Snapgear Lite+ firewall 1.5.3 allows remote att

firewall | Snapgear | Lite+ |

Snapgear Lite+ firewall 1.5.3 allows remote attackers to cause a denial of service (IPSEC crash) via a zero length packet to UDP port 500.


SQL injection vulnerability in one||zero (aka O

vulnerability | one||zero | injection | SQL |

SQL injection vulnerability in one||zero (aka One or Zero) Helpdesk 1.4 rc4 allows remote attackers to modify arbitrary ticket number descriptions via the sg parameter.


The tvb_get_nstringz0 function in Ethereal 0.9.

tvb_get_nstringz0 | Ethereal | function |

The tvb_get_nstringz0 function in Ethereal 0.9.12 and earlier does not properly handle a zero-length buffer size, with unknown consequences.


Ethereal 0.10.1 to 0.10.2 allows remote attacke

Ethereal |

Ethereal 0.10.1 to 0.10.2 allows remote attackers to cause a denial of service (crash) via a zero-length Presentation protocol selector.


The check_scramble_323 function in MySQL 4.1.x

check_scramble_323 | function | before | MySQL | 41x |

The check_scramble_323 function in MySQL 4.1.x before 4.1.3, and 5.0, allows remote attackers to bypass authentication via a zero-length scrambled string.


Vulnerability in tif_dirread.c for libtiff allo

Vulnerability | tif_dirreadc | attackers | service | libtiff | denial | allows | remote | cause |

Vulnerability in tif_dirread.c for libtiff allows remote attackers to cause a denial of service (application crash) via a TIFF image that causes a divide-by-zero error when the number of row bytes is zero, a different vulnerability than CVE-2005-2452.


The Lithtech engine, as used in (1) Contract Ja

Lithtech | engine | used |

The Lithtech engine, as used in (1) Contract Jack 1.1 and earlier, (2) No one lives forever 2 1.3 and earlier, (3) Tron 2.0 1.042 and earlier, (4) F.E.A.R. (First Encounter Assault and Recon), and possibly other games, allows remote attackers to cause a denial of service (connection refused) via a UDP packet that causes recvfrom to generate a return code that causes the listening loop to exit, as demonstrated using zero byte packets or packets between 8193 and 12280 bytes, which result in conditions that are not "Operation would block."


The Rage 1.01 and earlier allows remote attacke

Rage |

The Rage 1.01 and earlier allows remote attackers to cause a denial of service (infinite loop) via a TCP packet with the port and IP address set to zero.


The Admin Access With Levels plugin in osCommer

osCommerce | plugin | Levels | Access | Admin |

The Admin Access With Levels plugin in osCommerce 1.5.1 allows remote attackers to access files in the "admin/" directory by modifying the in_login parameter to a non-zero value.


Monkey daemon (monkeyd) before 0.9.1 allows rem

daemon | Monkey |

Monkey daemon (monkeyd) before 0.9.1 allows remote attackers to cause a denial of service (memory corruption) via a request for a zero byte file.


NetPanzer 0.8 and earlier allows remote attacke

attackers | NetPanzer | service | earlier | denial | allows | remote | cause |

NetPanzer 0.8 and earlier allows remote attackers to cause a denial of service (infinite loop) via a packet with a zero datablock size.


libtiff up to 3.7.0 allows remote attackers to

libtiff |

libtiff up to 3.7.0 allows remote attackers to cause a denial of service (application crash) via a TIFF image header with a zero "YCbCr subsampling" value, which causes a divide-by-zero error in (1) tif_strip.c and (2) tif_tile.c, a different vulnerability than CVE-2004-0804.


Unspecified vulnerability in the X11 dissector

vulnerability | Unspecified | dissector | Ethereal | X11 |

Unspecified vulnerability in the X11 dissector in Ethereal 0.10.12 and earlier allows remote attackers to cause a denial of service (divide-by-zero) via unknown vectors.


Microsoft Windows Graphics Device Interface (GD

Interface | Microsoft | Graphics | Windows | Device |

Microsoft Windows Graphics Device Interface (GDI+, GdiPlus.dll) allows context-dependent attackers to cause a denial of service (crash) via an ICO file with an InfoHeader containing a Height of zero, which triggers a divide-by-zero error.


Software vulnerabilities results 1 to 20 of 343     
Page: 12345...18