A denial of service vulnerability exists in httpdx v1.5.4 due to improper handling of wildcards in HTTP requests. An attacker can send a specially crafted HTTP request with a large number of wildcards to cause a denial of service condition. This vulnerability can be exploited remotely without authentication.
A vulnerability in ptunnel <= 0.72 allows a remote attacker to crash the ICMP tunnel by sending a specially crafted packet with a specific value in the 'state' field. This causes the tunnel to crash and the service to become unavailable.
Oxide Webserver v2.0.4 is prone to a remote Denial of Service vulnerability as it fails to handle crafted requests from the client properly.
An SQL Injection Vulnerability is present in NetArt Media iBoutique as it fails to sanitise user-supplied input. Input passed via the 'key' parameter to '/index.php' page is not properly verified before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. This may allow an unauthenticated attacker to launch further attacks.
A SQL injection vulnerability exists in the PHP-Nuke module(SPChat) which allows an attacker to pull out user details from the database. The vulnerability is triggered when a malicious user sends a specially crafted HTTP request to the vulnerable module. The vulnerable parameter is ‘youruid’ which is located in the URL ‘modules.php?op=modload&name=SPChat&file=chooser&youruid=[SQL Injection]’. An attacker can exploit this vulnerability by sending a malicious SQL query to the vulnerable parameter. For example, ‘http://www.example.com/modules.php?op=modload&name=SPChat&file=chooser&youruid=0+UNION+SELECT+pwd,2,3,4,5,6,7,8+FROM+nuke_authors+LIMIT+0,1’. Note that the attacker needs to be a regular user to exploit this vulnerability.
A local buffer overflow vulnerability exists in PHP 6.0 when using the openssl_verify() function. This vulnerability can be exploited by an attacker to execute arbitrary code on the vulnerable system. The vulnerability is triggered when a specially crafted string is passed to the openssl_verify() function. This can lead to a crash of the application or potentially allow an attacker to execute arbitrary code.
An error in the JP2 stream filter (vsjp2.dll) when copying the Quantization Default (QCD) marker segment can be exploited to cause a heap-based buffer overflow via a specially crafted JPEG2000 (JP2) file.
An error in the LWPAPIN.DLL module when processing Lotus WordPro documents can be exploited to cause a stack-based buffer overflow via a specially crafted file.
An error in the FPX graphic import filter (ibfpx2.flt) when processing FPX images can be exploited to cause a heap-based buffer overflow via a specially crafted file.
This module exploits a remote buffer overflow in the ZENworks Configuration Management. The vulnerability exists in the Preboot service and can be triggered by sending a specially crafted packet with the opcode 0x4c (PROXY_CMD_PREBOOT_TASK_INFO2) to port 998/TCP. The module has been successfully tested on Novell ZENworks Configuration Management 10 SP2 / SP3 and Windows Server 2003 SP2 (DEP bypass).
Services By CQR