|
|
Colapse all |
Post message
SECURITY.NNOV: Windows NT 4.0/2000 cmd.exe long path buffer overflow/DoS 2003-02-11 3APA3A (3APA3A SECURITY NNOV RU) [SECURITY] [DSA 249-1] New w3mmee packages fix cookie information leak 2003-02-11 joey infodrom org (Martin Schulze) Field Notice - IOS Accepts ICMP Redirects in Non-default Configuration Settings 2003-02-11 Damir Rajnovic (gaus cisco com) [SECURITY] [DSA 248-1] New hypermail packages fix arbitrary code execution 2003-01-31 joey infodrom org (Martin Schulze) Followup: breakpoint the stack buffer overflow from executing maliciouscode like SQL Slammer worm 2003-02-11 Peter Huang (yinrong rogers com) Andrew McGill emailed me with the following comments: > This is a nice technique - however it is quite probable that a > jmp esp instruction can be found which is preceeded by an > innocuous instruction ( add bx,si ; jmp esp ... ) ... "quite > probable" in the above means I haven't actually looked. [ more ] [ reply ] Ericsson HM220dp ADSL modem Insecure Web Administration Vulnerability 2003-02-11 Davide Del Vecchio (dante alighieri org) Ericsson HM220dp ADSL modem Insecure Web Administration Vulnerability Discussion: Ericsson HM220dp is a small office enviroment ADSL modem, distributed by many Carriers such as Telecom Italia to thousand users. It may be administered remotely through a number of mechanisms, including a web based [ more ] [ reply ] RE: Astaro Security Linux Firewall - HTTP Proxy vulnerability 2003-02-10 Markus Hennig (mhennig astaro com) Bugtraq: Astaro Security Linux Firewall - HTTP Proxy vulnerability Vulnerability description: ------------------------- The HTTP proxy can be used to connect to any TCP port and not only to certain 'safe' ports. The vulnerability only takes effect for clients that have allowed access to the proxy [ more ] [ reply ] iDEFENSE Security Advisory 02.10.03: Buffer Overflow In NOD32 Antivirus Software for Unix 2003-02-10 iDEFENSE Labs (labs idefense com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDEFENSE Security Advisory 02.10.03: http://www.idefense.com/advisory/02.10.03.txt Buffer Overflow In NOD32 Antivirus Software for Unix February 10, 2003 I. BACKGROUND Eset Software's NOD32 Antivirus System is a cross-platform anti-virus application. [ more ] [ reply ] Java-Applet crashes Opera 6.05 and 7.01 2003-02-10 Marc Schoenefeld (schonef uni-muenster de) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Security Advisory Beauchamp Security: Java-Applet crashes Opera 6.05 and 7.01 Applet crashes Opera 6.05 and 7.01 =================================================== Vendor: Opera Versions affected: Opera 6.05 / 7.01 Date: 3rd February 2003 Type of Vuln [ more ] [ reply ] Opera Username Buffer Overflow Vulnerability 2003-02-09 nesumin (nesumin softhome net) Hello all. We release the information about the vulnerability of Opera, here. And we wish that this vulnerability is fixed by Vendor, immediately. ___________________________________________________ -------------------------------------------------------------- Synopsis: Opera Username Bu [ more ] [ reply ] RTS CryptoBuddy Multiple Encryption Implementation Vulnerabilities 2003-02-10 Mike (at) www.securityfocus (dot) com [email concealed], W (at) www.securityfocus (dot) com [email concealed],CISSP (mwcissp yahoo com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 RTS CryptoBuddy Multiple Encryption Implementation Vulnerabilities ________________________________________________________________________ __ Advisory Information ________________________________________________________________________ __ S [ more ] [ reply ] Domestic Security Enhancement Act of 2003 2003-02-09 Jason Coombs (jasonc science org) (1 replies) Domestic Security Enhancement Act of 2003, A.K.A. Patriot Act II, is circulating in "discussion draft" form. It includes a requirement for companies that use potentially dangerous chemicals to produce a "worst case scenario" report which would be "obfuscated" to provide everyone with increased secur [ more ] [ reply ] #!ICadv-02.09.03: nethack 3.4.0 local buffer overflow 2003-02-09 tsao_4sh0 hushmail com (1 replies) -----BEGIN PGP SIGNED MESSAGE----- ################################################### /usr/games/lib/nethackdir/nethack - LOCALLY EXPLOITABLE BUFFER try th1s: nethack -s `perl -e "print 'A' x 1000"` nethack.RPM package for redhat 8 is installed SETUID GAMES!@)~* ther pre compiled b1nz for co [ more ] [ reply ] Re: #!ICadv-02.09.03: nethack 3.4.0 local buffer overflow 2003-02-11 Peter Pentchev (roam ringlet net) Eggdrop arbitrary connection vulnerability 2003-02-09 Paul Starzetz (paul starzetz de) (2 replies) Hi, there is a serious security problem in the popular eggdrop IRCbot. The hole allows a regular user with enough 'power' (at least power to add new bot records) to use any linked instance of the bot on the botnet as an instant 'proxy'. The following session demonstrates the problem with an out [ more ] [ reply ] Re: Eggdrop arbitrary connection vulnerability 2003-02-11 Matthew S. Hallacy (poptix techmonkeys org) Re: Eggdrop arbitrary connection vulnerability 2003-02-10 D.C. van Moolenbroek (dc van moolenbroek chello nl) breakpoint the stack buffer overflow from executing malicious code like SQL Slammer worm 2003-02-09 Peter Huang (yinrong rogers com) Hi, David and others: For the past few days, I have done a few experiments and some research on ways to prevent the buffer overflow exploitation. I believe the following compiler option (if implemented and used) should make the exploitation of stack buffer overflow by "jmp esp" method impossible (a [ more ] [ reply ] Gallery 1.3.3 2003-02-10 error (error lostinthenoise net) (1 replies) Vulnerable: gallery version 1.3.3 (other versions not tested) Url: gallery.sf.net Local exploit. Gallery has a security hole where any other user on the same webserver can create, modify or destroy photos in a given album directory. Also Gallery requires that you turn off safe mode. Each gallery [ more ] [ reply ] Bug in Netgear FM114P Wireless Router firmware 2003-02-09 Björn Stickler (stickler rbg informatik tu-darmstadt de) hi, i found out that the netgear FM114P wireless router has a directory-traversal like bug in the web-configuration interface. documents/files can be accessed without authentication by using escaped directory traversal from the accessible /upnp/service directory. this results f.ex. in the ability [ more ] [ reply ] Buffer OverFlow in SQLBase 8.1.0 - NII Advisory 2003-02-10 Arjun Pednekar (arjunp nii co in) BUFFER OVERFLOW IN SQLBASE 8.1.0 =================================================== Advisory: Password Disclosure in Cryptainer Vendor: Gupta Technologies LLC http://www.guptaworldwide.com Versions affected: SQLBase 8.1.0 Date: 10th February 2003 Type of Vulnerability: Remotely Exploitable Buffer O [ more ] [ reply ] [RHSA-2003:056-08] Updated kernel-utils packages fix setuid vulnerability 2003-02-07 bugzilla redhat com |
|
Privacy Statement |
Title: Buffer overflow/DoS against cmd.exe
for Windows NT 4.0/2000
Affected: Microsoft Windows NT 4.0 (buffer overflow)
Microsoft Windows 2000 (DoS)
Vendor: Microsoft
Risk: Average for W
[ more ] [ reply ]