Section: .. / advisories / defcom /
| /// File Name: |
def-2001-30.txt |
Description:
|
Defcom Labs Advisory def-2001-30 - Release 2.0.0.1.0 and below of Oracle9iAS Web Cache contains buffer overflow allowing remote code execution or denial of service. Four tcp ports are affected - 1100, 4000, 4001, and 4002.
| | Author: | Defcom Labs | | Homepage: | http://www.defcom.com | | File Size: | 3260 | | Last Modified: | Oct 25 05:36:09 2001 |
| MD5 Checksum: | 18e7a790a063759516d550cd3aaa50cb |
|
| /// File Name: |
defcom.bea-weblogic.txt |
Description:
|
Defcom Labs Advisory def-2000-04 - Bea WebLogic Server for Windows NT prior to V5.1.0 (sp7) has a remotely exploitable buffer overflow in the handling of URL's which start with two dots. Arbitrary code can be executed as LocalSystem. Fix available here.
| | Author: | Defcom Labs | | Homepage: | http://www.defcom.com | | File Size: | 1751 | | Last Modified: | Dec 22 06:45:58 2000 |
| MD5 Checksum: | 072e09acb4bddddac2dbf12224b823ba |
|
| /// File Name: |
defcom.catalyst.txt |
Description:
|
Defcom Labs Advisory def-2000-02 - The Cisco Catalyst 2900XL and 3500XL series switches web configuration interface lets any user execute any command on the system without supplying any authentication credentials if no enable password is set.
| | Author: | Defcom Labs | | Homepage: | http://www.defcom.com | | File Size: | 2810 | | Last Modified: | Nov 16 08:40:53 2000 |
| MD5 Checksum: | a9345e789f8598a0e4ea92d9333c8082 |
|
| /// File Name: |
defcom.cyberscheduler.txt |
Description:
|
Defcom Labs Advisory def-2001-18 - Cyberscheduler for Linux, Windows, and Solaris lacks bounds checking on the timezone variable, allowing remote root compromise. Patch available here. Includes proof of concept exploit x-cybershcehd.c and a shell script to brute force the offset. Vulnerable systems include Mandrake, RedHat, Slackware, Caldera, Suse, Debian, Windows NT, 2000 (IIS 4.0 and 5.0), and Solaris 2.5, 2.6, 7, and 8.
| | Author: | Enrique A. Sanchez Montellano | | Homepage: | http://www.defcom.com | | File Size: | 8746 | | Last Modified: | Apr 20 00:03:02 2001 |
| MD5 Checksum: | 5254eb4ea3dff1b9ea37088cde68f2e3 |
|
| /// File Name: |
defcom.innfeed.txt |
Description:
|
Defcom Labs Advisory def-2001-19 - Innfeed has local stack overflow vulnerabilities in the logOrPrint() function which can be exploited to give uid=news. Tested on Slackware 7.1, Mandrake 7.0, and RedHat 7.2. Includes a patch, proof of concept exploit x-startinnfeed.c, and a shell script to brute force the offset.
| | Author: | Alex Hernandez, Enrique A. Sanchez Montellano | | Homepage: | http://www.defcom.com | | File Size: | 6497 | | Last Modified: | Apr 19 23:57:26 2001 |
| MD5 Checksum: | 2eaa69329d2485b2cb87080a96b37137 |
|
| /// File Name: |
defcom.mdaemon.txt |
Description:
|
Defcom Labs Advisory def-2000-03 - MDaemon 3.5.0 for Windows NT and 2000 contains a remote denial of service vulnerability due to some problems handling buffers within the IMAP and webconfig services.
| | Author: | Defcom Labs | | Homepage: | http://www.defcom.com | | File Size: | 1997 | | Last Modified: | Dec 22 06:41:53 2000 |
| MD5 Checksum: | a26fc859cc07ddc92b80700d8640b113 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
