what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files Date: 2001-02-24

RHSA-2001:017-03.analog

Posted Feb 24, 2001

Site redhat.com

Red Hat Security Advisory RHSA-2001:017-03 - The Red Hat Secure Web Server 2.0 contains a vulnerability in Analog which can allow a malicious user to use the ALIAS command to construct very long strings which were not checked for length.

tags | web

systems | linux, redhat

SHA-256 | 937c98584adb80c8c76e1a4ead91999c86c9013777778032594796c4f8feb7bf

Download | Favorite | View

imapd_exploit.c

Posted Feb 24, 2001

Authored by Felipe Cerqueira

A remotely exploitable stack overflow has been discovered in Imapd v12.264 and below in the handling of the lsub command. Since an account is required, mail only users will be able to get shell access. Tested against Slackware 7.0, 7.1, Redhat 6.2, and Conectiva Linux 6.0. Fix available here.

tags | exploit, overflow, shell

systems | linux, redhat, slackware

SHA-256 | 2410c7335840d45d8cc28af5b2e3ca6d01c8dd7c5959b1f0099e67233e56f150

Download | Favorite | View

freeze_my_ie.htm.txt

Posted Feb 24, 2001

Authored by Melih Sarica

Passing a long value to a password text box in Internet Explorer causes it to freeze.

tags | denial of service

SHA-256 | 2bca69dcf2346db1f6da3fa3559006b46075f6de3d3854008908ab748240a7f1

Download | Favorite | View