Searching reply to software vulnerabilities

Directory traversal vulnerability in Matt Wrigh

FormHandlercgi | vulnerability | attackers | arbitrary | Directory | traversal | remote | allows | Wright | script | files | Matt | read | via |

Directory traversal vulnerability in Matt Wright FormHandler.cgi script allows remote attackers to read arbitrary files via (1) a .. (dot dot) in the reply_message_attach attachment parameter, or (2) by specifying the filename as a template.


Majordomo 1.94.3 and earlier allows remote atta

Majordomo |

Majordomo 1.94.3 and earlier allows remote attackers to execute arbitrary commands when the advertise or noadvertise directive is used in a configuration file, via shell metacharacters in the Reply-To header.


Slackware Linux 3.4 pkgtool allows local attack

arbitrary | Slackware | attacker | symlink | pkgtool | allows | attack | reply | files | Linux | local | write | file | read | via |

Slackware Linux 3.4 pkgtool allows local attacker to read and write to arbitrary files via a symlink attack on the reply file.


Microsoft Outlook and Outlook Express allow rem

Return-Path | attackers | Microsoft | messages | Reply-To | service | sending | Express | Outlook | fields | denial | remote | blank | cause | email | allow | such | BCC |

Microsoft Outlook and Outlook Express allow remote attackers to cause a denial of service by sending email messages with blank fields such as BCC, Reply-To, Return-Path, or From.


Format string vulnerability in Infodrom cfinger

vulnerability | Infodrom | cfingerd | string | Format |

Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain additional privileges via a malformed ident reply that is passed to the syslog function.


Buffer overflow in CodeBlue 4 and earlier, and

arbitrary | attackers | possibly | versions | overflow | CodeBlue | execute | earlier | string | Buffer | allows | remote | reply | other | SMTP | code | long | via |

Buffer overflow in CodeBlue 4 and earlier, and possibly other versions, allows remote attackers to execute arbitrary code via a long string in an SMTP reply.


Telindus 1100 series ADSL router allows remote

Telindus |

Telindus 1100 series ADSL router allows remote attackers to gain privileges to the device via a certain packet to UDP port 9833, which generates a reply that includes the router's password and other sensitive information in cleartext.


Buffer overflow in BrowseFTP 1.62 client allows

BrowseFTP | overflow | Buffer |

Buffer overflow in BrowseFTP 1.62 client allows remote FTP servers to execute arbitrary code via a long FTP "220" message reply.


index.php in Tritanium Bulletin Board 1.2.3 all

Tritanium | Bulletin | indexphp | Board |

index.php in Tritanium Bulletin Board 1.2.3 allows remote attackers to read and reply to arbitrary messages by modifying the thread_id, forum_id, and sid parameters.


Stack-based buffer overflow in the reply_nttran

vulnerability | reply_nttrans | CVE-2003-0201 | Stack-based | attackers | arbitrary | different | function | overflow | crafted | request | execute | earlier | allows | buffer | remote | Samba | than | 227a | code | via |

Stack-based buffer overflow in the reply_nttrans function in Samba 2.2.7a and earlier allows remote attackers to execute arbitrary code via a crafted request, a different vulnerability than CVE-2003-0201.


Battlefield 1942 1.6.19 and earlier, and Battle

Battlefield |

Battlefield 1942 1.6.19 and earlier, and Battlefield Vietnam 1.2 and earlier, allows a remote master server to cause a denial of service (client crash) via a server reply that contains a large numplayers value, which triggers a null dereference.


Buffer overflow in the strexpand function in st

strexpand | function | LinPopUp | overflow | stringc | Buffer |

Buffer overflow in the strexpand function in string.c for LinPopUp 1.2.0 allows remote attackers to execute arbitrary code via a crafted message that is not properly handled during a Reply operation.


FormMail.php 5.0, and possibly other versions,

FormMailphp | attackers | arbitrary | possibly | pathname | versions | ar_file | allows | remote | files | other | read | full | via |

FormMail.php 5.0, and possibly other versions, allows remote attackers to read arbitrary files via a full pathname in the ar_file (auto-reply) parameter.


Halo: Combat Evolved 1.05 and earlier allows re


Halo: Combat Evolved 1.05 and earlier allows remote game servers to cause a denial of service (client crash) via a long value in a game server reply, which triggers a NULL dereference.


Cross-site scripting (XSS) vulnerability in pos

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in post.php in Moodle before 1.3 allows remote attackers to inject arbitrary web script or HTML via the reply parameter.


Buffer overflow in the slc_add_reply function i

slc_add_reply | suboptions | BSD-based | attackers | arbitrary | Character | LINEMODE | overflow | handling | function | execute | various | clients | number | Buffer | Telnet | remote | allows | Local | large | reply | code | via | Set |

Buffer overflow in the slc_add_reply function in various BSD-based Telnet clients, when handling LINEMODE suboptions, allows remote attackers to execute arbitrary code via a reply with a large number of Set Local Character (SLC) commands.


Format string vulnerability in simpleproxy befo

vulnerability | simpleproxy | specifiers | malicious | arbitrary | proxies | execute | allows | string | Format | before | remote | reply | HTTP | code | via |

Format string vulnerability in simpleproxy before 3.4 allows remote malicious HTTP proxies to execute arbitrary code via format string specifiers in a reply.


Memory leak in the icmp_push_reply function in

icmp_push_reply | function | before | Memory | Linux | leak |

Memory leak in the icmp_push_reply function in Linux 2.6 before 2.6.12.6 and 2.6.13 allows remote attackers to cause a denial of service (memory consumption) via a large number of crafted packets that cause the ip_append_data function to fail, aka "DST leak in icmp_push_reply."


Buffer overflow in the USB Gadget RNDIS impleme

implementation | overflow | kernel | Gadget | Buffer | before | Linux | RNDIS | USB |

Buffer overflow in the USB Gadget RNDIS implementation in the Linux kernel before 2.6.16 allows remote attackers to cause a denial of service (kmalloc'd memory corruption) via a remote NDIS response to OID_GEN_SUPPORTED_LIST, which causes memory to be allocated for the reply data but not the reply structure.


Dnsmasq 2.29 allows remote attackers to cause a

Dnsmasq |

Dnsmasq 2.29 allows remote attackers to cause a denial of service (application crash) via a DHCP client broadcast reply request.


Software vulnerabilities results 1 to 20 of 53     
Page: 123