Proof of concept exploit that causes a denial of service condition in RSniff.
27dd90162b626e64cea457d09acb5e09e8e34397206f3274120e96764781b96f
RSniff, the packet sniffer for Linux, is susceptible to a denial of service attack.
63e855d919cd019e79d1bb3e8434abfd0ecbdb2f5a5c18f5366896725207f863
Gentoo Linux Security Advisory GLSA 200404-12 - Scorched 3D (build 36.2 and before) does not properly check the text entered in the Chat box (T key). Using format string characters, you can generate a heap overflow. This and several other unchecked buffers have been corrected in the build 37 release.
7cc0f27c7cfcf31aba5925849d764bba47c7530c06c0e539c47af1455f98b1a1
Gentoo Linux Security Advisory GLSA 200404-11 - Multiple vulnerabilities have been found in the implementation of protocol H.323 contained in pwlib. Most of the vulnerabilities are in the parsing of ASN.1 elements which would allow an attacker to use a maliciously crafted ASN.1 element to cause unpredictable behavior in pwlib. Versions affected are 1.5.2-r2 and below.
658918b474c937ad91678732957c057690adb54ec7abe93ce910c34aef5c29d9
Crackalaka version 1.0.8 is susceptible to a denial of service attack when it attempts to manage an unallocated sector of memory.
9dde802d0a2e809557045796e6a9e20512b83f9e5adb65b97c9b9917b77689ab
Monit versions 4.1 and below remote denial of service exploit. Tested on Mandrake 9.1.
fd0e0cb327f08cd59490c5fa7b8eb5cdf849d936a4d69a4b1ac7526e864adcdd
CERT Advisory TA04-099A - A cross-domain scripting vulnerability in Microsoft Internet Explorer (IE) could allow an attacker to execute arbitrary code with the privileges of the user running IE. The attacker could also read and manipulate data on web sites in other domains or zones.
45b5d0160e0525654903fd7af4653ab79ae3fdd6b7c8b72ed954e36b0b24feba
Remote exploit that makes use of overflows in versions 0.4.4 and below of LCDproc's daemon.
88025a702af48e6df6a33abdefbf654f1a43d47098fb37126af799e9e62b42d0
Priv8 Security Research Advisory #2004-002 - Versions 0.4.1 and below of LCDproc are vulnerable to multiple bugs that allow for arbitrary code execution.
82092cf612491eeb7dec6e405e05b133230a3034908b558a3d4ebed584972c09
Priv8 Security Research Advisory #2004-001 - All versions of LCDproc are vulnerable to a remotely exploitable buffer overflow that allows attackers to execute arbitrary code. The problem appears in function parse_all_client_messages() of parse.c file where a loop does not check if MAXARGUMENTS were reached, causing the program to crash when lots of arguments are passed to the function.
e6a3e47f9d3eb96f5fee396fb74b7e9a707654dae6aef17892ce43f2ff5ebf5c
PHRACK 62 - CALL FOR PAPERS: The deadline is July 1st, 2004. Please submit your work as soon as possible. Hard cover copies will be made and released at Ruxcon in Australia this year.
4773daf98c38ae3068e3d054d9e7d43d17b8378fc00c71b058d7f29e4bc46db9
InAccess Networks Security Advisory - A heap overflow vulnerability exists in Oracle 9iAS / 10g Application Server Web Cache that allows for arbitrary code execution.
4e378c70e2ef00bc393079279435003c09bf5895c7e3812c496bd01f0d2d04f9
tcpick is a textmode sniffer that can track TCP streams and saves the data captured in files or displays them in the terminal. It is useful for picking files in a passive way. It can store all connections in different files, or it can display all the stream on the terminal with colors.
db19142fd2ca6218ead04fb3144b1640e2ad5a1c784a4e790c8816a37a79ac2e