GKrellMd has been reported prone to a remote buffer overflow vulnerability, arbitrary code execution is possible. The issue presents itself due to a lack of sufficient bounds checking performed on network-based data. If data exceeding the maximum reserved memory buffer size is received arbitrary memory may be corrupted. A remote attacker may ultimately exploit this issue remotely to seize control of the affected daemon and execute arbitrary code. This vulnerability has been reported to affect Gkrellm 2.1.13.
Compaq Web-Based Management Agent is vulnerable to a remote file verification vulnerability. An attacker can exploit this vulnerability by sending a specially crafted URL to the vulnerable system. The URL contains a parameter that points to a file on the system, and if the file exists, the server will return a 200 OK response.
VisNetic WebMail is prone to an information disclosure vulnerability. By appending a dot '.' character to the end of a URI request to WebMail, the source code of PHP files may be returned in the web browser.
A buffer overflow vulnerability exists in Tibco RendezOVous version <=7.4.11, which can be exploited by sending a specially crafted POST request to the affected daemons. This can allow an attacker to execute arbitrary code on the vulnerable system.
Armida Databased Web Server is reportedly prone to a remote denial of service when process malicious GET requests. The problem occurs when processing requests containing excessive data. Exploitation of this vulnerability would result in the remote service crashing. Although unconfirmed, due to the nature of this vulnerability it may be possible to supply and execute arbitrary code.
Microsoft Windows platforms are prone to a boundary condition error in the HTML converter. If the 'Align' attribute of the 'HR' tag is given an excessively large value, an internal buffer will be overrun. This issue can be exploited via applications which use the HTML converter (such as Internet Explorer) and will permit arbitrary code to be executed on a vulnerable system.
Compaq Web-Based Management Agent is prone to a remote denial of service vulnerability when handling malformed GET requests. The resulting error reports an access violation, effectively causing the service to crash. A remote attacker could exploit this issue to deny agent services to legitimate users.
Compaq Web-Based Management Agent has been reported prone to a remote denial of service vulnerability. The problem occurs when making malformed requests to the service. The resulting error reports a stack overflow, however it has not been confirmed whether this issue is exploitable to corrupt memory. The problem may in fact be the result of a NULL pointer dereference.
XMB Forum has been reported prone to multiple cross-site scripting and HTML-injection vulnerabilities because the application fails to sanitize user-supplied data. An attacker may exploit any one of these vulnerabilities to execute arbitrary script code in the browser of an unsuspecting user.
Tutos is vulnerable to an arbitrary file upload vulnerability due to improper handling of input to the file_new script. An attacker can exploit this vulnerability by sending a specially crafted request to the file_new script, which will allow them to upload arbitrary files to the vulnerable site.
Services By CQR