queue software vulnerabilities
vulnerabilities.aspcode.net
Searching queue software vulnerabilities
Samba before 2.2.0 allows local attackers to ov
before
|
Samba
|
Samba before 2.2.0 allows local attackers to overwrite arbitrary files via a symlink attack using (1) a printer queue query, (2) the more command in smbclient, or (3) the mput command in smbclient.
Sendmail before 8.12.1, without the RestrictQue
Sendmail
|
before
|
Sendmail before 8.12.1, without the RestrictQueueRun option enabled, allows local users to cause a denial of service (data loss) by (1) setting a high initial message hop count option (-h), which causes Sendmail to drop queue entries, (2) via the -qR option, or (3) via the -qS option.
Sendmail before 8.12.1, without the RestrictQue
Sendmail
|
before
|
Sendmail before 8.12.1, without the RestrictQueueRun option enabled, allows local users to obtain potentially sensitive information about the mail queue by setting debugging flags to enable debug mode.
Castelle FaxPress, possibly 6.3 and other versi
configured
|
submitting
|
incorrect
|
attackers
|
plaintext
|
password
|
Castelle
|
versions
|
possibly
|
username
|
FaxPress
|
correct
|
Network
|
causes
|
allows
|
obtain
|
other
|
error
|
event
|
print
|
login
|
queue
|
which
|
leak
|
use
|
Castelle FaxPress, possibly 6.3 and other versions, when configured to use the Network print queue, allows attackers to obtain the username and password by submitting an incorrect login, which causes Faxpress to leak the correct username and password in plaintext in an error event.
The default configuration of Xerox DocuTech 611
configuration
|
DocuTech
|
default
|
Xerox
|
The default configuration of Xerox DocuTech 6110 and DocuTech 6115 allows remote attackers to connect to the web server and (1) submit print jobs directly into the "print now" queue or (2) read the scanner job history.
Stack-based buffer overflow in the bsd_queue()
Stack-based
|
overflow
|
buffer
|
Stack-based buffer overflow in the bsd_queue() function for lpq on Solaris 2.6 and 7 allows local users to gain root privilege.
Cisco IOS 11.x and 12.0 through 12.2 allows rem
Cisco
|
11x
|
IOS
|
Cisco IOS 11.x and 12.0 through 12.2 allows remote attackers to cause a denial of service (traffic block) by sending a particular sequence of IPv4 packets to an interface on the device, causing the input queue on that interface to be marked as full.
Buffer overflow in the Microsoft Message Queue
Microsoft
|
overflow
|
Manager
|
Message
|
Buffer
|
Queue
|
Buffer overflow in the Microsoft Message Queue Manager (MSQM) allows remote attackers to cause a denial of service (RPC service crash) via a queue registration request.
palmhttpd for PalmOS allows remote attackers to
attackers
|
palmhttpd
|
service
|
denial
|
allows
|
PalmOS
|
remote
|
cause
|
palmhttpd for PalmOS allows remote attackers to cause a denial of service (crash) by establishing two simultaneous HTTP connections, which exceeds the PalmOS accept queue.
Buffer overflow in (1) queue.c and (2) queued.c
overflow
|
Buffer
|
Buffer overflow in (1) queue.c and (2) queued.c in queue before 1.30.1 may allow remote attackers to execute arbitrary code.
Cisco IOS 2.2(18)EW, 12.2(18)EWA, 12.2(14)SZ, 1
Cisco
|
IOS
|
Cisco IOS 2.2(18)EW, 12.2(18)EWA, 12.2(14)SZ, 12.2(18)S, 12.2(18)SE, 12.2(18)SV, 12.2(18)SW, and other versions without the "no service dhcp" command, keep undeliverable DHCP packets in the queue instead of dropping them, which allows remote attackers to cause a denial of service (dropped traffic) via multiple undeliverable DHCP packets that exceed the input queue size.
Multiple features in Ipswitch IMail Server befo
Ipswitch
|
features
|
Multiple
|
Server
|
before
|
IMail
|
Multiple features in Ipswitch IMail Server before 8.13 allow remote attackers to cause a denial of service (crash) via (1) a long sender field to the Queue Manager or (2) a long To field to the Web Messaging component.
Unknown vulnerability in the systems message qu
vulnerability
|
51B-2/PK4
|
service
|
through
|
message
|
systems
|
Unknown
|
denial
|
allows
|
local
|
cause
|
users
|
Tru64
|
queue
|
Unix
|
40F
|
PK8
|
Unknown vulnerability in the systems message queue in HP Tru64 Unix 4.0F PK8 through 5.1B-2/PK4 allows local users to cause a denial of service (process crash) for processes such as nfsstat, pfstat, arp, ogated, rarpd, route, sendmail, srconfig, strsetup, trpt, netstat, and xntpd.
AIO in the Linux kernel 2.6.11 on the PPC64 or
kernel
|
Linux
|
AIO
|
AIO in the Linux kernel 2.6.11 on the PPC64 or IA64 architectures with CONFIG_HUGETLB_PAGE enabled allows local users to cause a denial of service (system panic) via a process that executes the io_queue_init function but exits without running io_queue_release, which causes exit_aio and is_hugepage_only_range to fail.
OpenVPN before 2.0.1 does not properly flush th
OpenVPN
|
before
|
OpenVPN before 2.0.1 does not properly flush the OpenSSL error queue when a packet can not be decrypted by the server, which allows remote authenticated attackers to cause a denial of service (client disconnection) via a large number of packets that can not be decrypted.
Buffer overflow in LeapFTP allows remote attack
attackers
|
arbitrary
|
overflow
|
execute
|
LeapFTP
|
Buffer
|
string
|
remote
|
allows
|
Queue
|
Site
|
Host
|
code
|
long
|
via
|
Buffer overflow in LeapFTP allows remote attackers to execute arbitrary code via a long Host string in a Site Queue (.lsq) file.
BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1
attackers
|
service
|
allows
|
remote
|
denial
|
926-P1
|
before
|
932-P1
|
cause
|
BIND
|
93x
|
BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via a flood of recursive queries, which cause an INSIST failure when the response is received after the recursion queue is empty.
Apple Mac OS X kernel allows local users to cau
register
|
service
|
process
|
kernel
|
denial
|
kevent
|
parent
|
allows
|
Apple
|
event
|
queue
|
child
|
users
|
cause
|
local
|
fork
|
same
|
uses
|
then
|
via
|
Mac
|
Apple Mac OS X kernel allows local users to cause a denial of service via a process that uses kevent to register a queue and an event, then fork a child process that uses kevent to register an event for the same queue as the parent.
The dev_queue_xmit function in Linux kernel 2.6
local_bh_disable
|
dev_queue_xmit
|
corruption
|
function
|
lockups"
|
calling
|
kernel
|
before
|
"node
|
Linux
|
could
|
which
|
fail
|
lead
|
data
|
can
|
The dev_queue_xmit function in Linux kernel 2.6 can fail before calling the local_bh_disable function, which could lead to data corruption and "node lockups." NOTE: it is not clear whether this issue is exploitable.
The aclMatchExternal function in Squid before 2
aclMatchExternal
|
attackers
|
26STABLE7
|
function
|
service
|
denial
|
remote
|
before
|
allows
|
Squid
|
cause
|
The aclMatchExternal function in Squid before 2.6.STABLE7 allows remote attackers to cause a denial of service (crash) by causing an external_acl queue overload, which triggers an infinite loop.
Software vulnerabilities results 1 to 20 of 32
Page:
1
2
►