Section: .. / advisories / eeye /
| /// File Name: |
AD20010501.txt |
Description:
|
Eeye Security Advisory - Windows 2000 IIS 5.0 Remote buffer overflow vulnerability (Remote SYSTEM Level Access). Affects Microsoft Windows 2000 Internet Information Services 5.0 + Service Pack 1. The vulnerability arises when a buffer of aprox. 420 bytes is sent within the HTTP Host: header for a .printer ISAPI request. Successful attacks are not logged in the IIS access logs.
| | Homepage: | http://www.eeye.com | | File Size: | 8166 | | Last Modified: | May 3 04:22:30 2001 |
| MD5 Checksum: | ae90cf7e855b551b48ca2f993f313ef4 |
|
| /// File Name: |
eEye-MSN-CHAT-OCX.txt |
Description:
|
A buffer overflow vulnerability has been found by eEye in the parameter handling of the MSN Messenger OCX and can allow remote code execution on affected systems.
| | Author: | Drew Copley, eEye Digital Security | | Homepage: | http://www.eEye.com | | File Size: | 3461 | | Last Modified: | May 13 03:34:09 2002 |
| MD5 Checksum: | dab68a66eea534a0ee7170655c80810b |
|
| /// File Name: |
eeye.98-10-01.ie4_custom_folders |
Description:
|
eeye.98-10-01.ie4_custom_folders
| | File Size: | 2722 | | Last Modified: | Sep 23 06:01:51 1999 |
| MD5 Checksum: | 1415ebcb4147bdd4c8b0fb87d74023dc |
|
| /// File Name: |
eeye.99-01-24.iis.ftp.dos |
Description:
|
eeye.99-01-24.iis.ftp.dos
| | File Size: | 6580 | | Last Modified: | Sep 23 06:01:51 1999 |
| MD5 Checksum: | acfeda35ad23cdacd558946fac9f46f3 |
|
| /// File Name: |
eeye.99-02-02.ws_ftp |
Description:
|
eeye.99-02-02.ws_ftp
| | File Size: | 6507 | | Last Modified: | Sep 23 06:01:51 1999 |
| MD5 Checksum: | e64a9f5c2615f24cc70089b83e3d01a3 |
|
| /// File Name: |
eeye.99-02-04.slmail |
Description:
|
eeye.99-02-04.slmail
| | File Size: | 3378 | | Last Modified: | Sep 23 06:01:51 1999 |
| MD5 Checksum: | 4db5130c85257288764a5327dd9e7ec8 |
|
| /// File Name: |
eeye.99-02-20.mdaemon_dos |
Description:
|
eeye.99-02-20.mdaemon_dos
| | File Size: | 1983 | | Last Modified: | Sep 23 06:01:51 1999 |
| MD5 Checksum: | 9e818090081d9cc17fe347470bd0e8d9 |
|
| /// File Name: |
eeye.99-02-21.mercur_mail |
Description:
|
eeye.99-02-21.mercur_mail
| | File Size: | 2573 | | Last Modified: | Sep 23 06:01:51 1999 |
| MD5 Checksum: | 5013a8cc335a8029f3feb6251c95921f |
|
| /// File Name: |
eeye.99-02-22.wingate |
Description:
|
eeye.99-02-22.wingate
| | File Size: | 4488 | | Last Modified: | Sep 23 06:01:51 1999 |
| MD5 Checksum: | ca0a59f19e16a49971833f0b3d1504f2 |
|
| /// File Name: |
eeye.99-03-01.imail |
Description:
|
eeye.99-03-01.imail
| | File Size: | 3457 | | Last Modified: | Sep 23 06:01:51 1999 |
| MD5 Checksum: | bd7908a2d9e26ff9feea37423cc24e8e |
|
| /// File Name: |
eeye.99-05-26.mult_web_interface |
Description:
|
eeye.99-05-26.mult_web_interface
| | File Size: | 2986 | | Last Modified: | Sep 23 06:01:51 1999 |
| MD5 Checksum: | b95e8a5447bf2528ebc3e21e9db98c51 |
|
| /// File Name: |
eeye.99-06-08.iis_remote |
Description:
|
eeye.99-06-08.iis_remote
| | File Size: | 9726 | | Last Modified: | Sep 23 06:01:51 1999 |
| MD5 Checksum: | 24e45cff48869c9cc8d3b747983e0687 |
|
| /// File Name: |
eeye.flash.txt |
Description:
|
Eeye Advisory - All versions of Macromedia Shockwave Flash for Windows and Unix contains remotely exploitable overflows in the handling of SWF files. Since this is a browser based bug, it makes it trivial to bypass firewalls and attack the user at his desktop. Also, application browser bugs allow you to target users based on the websites they visit, the newsgroups they read, or the mailing lists they frequent.
| | Author: | Marc Maiffret | | Homepage: | http://www.eEye.com | | File Size: | 3703 | | Last Modified: | Aug 9 03:09:13 2002 |
| MD5 Checksum: | af33f52e07dc5c95dbd4080da3918e89 |
|
| /// File Name: |
eeye.htr2.txt |
Description:
|
Eeye Advisory - IIS 4.0 and 5.0 for Windows NT and 2000 contain a remotely exploitable heap overflow which allows remote code execution. The bug is in transfer chunking in combination with the processing of HTR request sessions.
| | Author: | eEye Security | | Homepage: | http://www.eEye.com | | File Size: | 4076 | | Last Modified: | Jun 13 04:57:25 2002 |
| MD5 Checksum: | ea8f14baaf628a0cd4ada641dee287e5 |
|
| /// File Name: |
eeye.iishack-1.5.txt |
Description:
|
A buffer overflow has been discovered in the IIS 4.0 and 5.0 .asp file parsing mechanism. When IIS reads a malformed .asp file, code can be executed to take control of the local server as system. This can be exploited remotely by combining with the unicode bug or by paying for a web hosting account. Exploit available here.
| | Author: | eEye Digital Security | | Homepage: | http://www.eEye.com | | File Size: | 7581 | | Last Modified: | Nov 5 08:44:06 2000 |
| MD5 Checksum: | d2a02a73dd955eb0972499805b4f0632 |
|
| /// File Name: |
eeye.iplanet.txt |
Description:
|
Eeye Security Advisory - iPlanet Web Server 4.1 and 6.0 contains a remotely exploitable heap overflow in the transfer chunking which allows remote code execution as SYSTEM/root on all platforms.
| | Author: | Riley Hassell | | Homepage: | http://www.eEye.com | | File Size: | 3125 | | Last Modified: | Aug 9 07:31:41 2002 |
| MD5 Checksum: | feeb456c7bf3b188ab42fe1ea8d631d8 |
|
| /// File Name: |
eeye.macromedia.txt |
Description:
|
Eeye Advisory - Both Macromedia Coldfusion 6.0 and Macromedia JRun 4.0 along with their prior versions are vulnerable to various heap overflows when handling URI filenames larger than 4096 bytes..
| | Author: | Riley Hassell | | Homepage: | http://www.eEye.com | | File Size: | 2593 | | Last Modified: | Nov 13 20:37:26 2002 |
| MD5 Checksum: | 96c49895bf1c59575ac05118b0c5a19a |
|
| /// File Name: |
eeye.pgp.txt |
Description:
|
Eeye Advisory - The NAI PGP Outlook plug-in in NAI PGP Freeware 7.0.3, PGP Personal Security 7.0.3, and PGP Desktop Security 7.0.4 contains a remotely exploitable heap overflow which can lead to code execution. NAI patch available here.
| | Author: | Marc Maiffret | | Homepage: | http://www.eEye.com | | File Size: | 4243 | | Last Modified: | Jul 11 06:48:25 2002 |
| MD5 Checksum: | d8fde3c414e5e9014e6948ac46ea8627 |
|
| /// File Name: |
eeye.sql-worm.txt |
Description:
|
Eeye Advisory - The "SQL Sapphire" worm is spreading quickly among unpatched Microsoft SQL Server 2000 pre SP 2 systems on the internet with are accessible over port 1434 udp. Includes a detailed analysis of the worms payload.
| | Author: | Riley Hassell | | Homepage: | http://www.eEye.com | | File Size: | 9342 | | Last Modified: | Jan 25 19:15:34 2003 |
| MD5 Checksum: | f427e8b507867589bbb319c87afdaf10 |
|
| /// File Name: |
flash.overflow.txt |
Description:
|
Macromedia Flash ActiveX Buffer overflow - Flash ActiveX Ocx Version 6, revision 23 and below contains a remotely exploitable buffer overflow which leads to the execution of attacker supplied code via email, web or any other avenue in which Internet Explorer is used to display html that an attacker can supply. All users of Internet Explorer are potentially vulnerable.
| | Author: | eEye Digital Security | | Homepage: | http://www.eEye.com | | File Size: | 5338 | | Last Modified: | May 5 07:01:42 2002 |
| MD5 Checksum: | c83384ba183e2468cf217f2727105e1f |
|
| /// File Name: |
LibnetNT |
Description:
|
Libnet for Unix is used in many popular security programs because of how easy it is to implement low level packet functionality into a program. Now that same ease of use is available for Windows NT platforms. LibnetNT has the exact same functionality and abilities as Libnet except LibnetNT can be used to develop low level packet injection programs under Windows NT4.0 and Windows NT5.0. LibnetNT has been encapsulated in a dll file so you can call the Libnet functions from almost any Windows NT programming language. For example, you could write a program that sends spoofed datagrams in Visual Basic.
| | Author: | Eeye Digital Security | | Homepage: | http://www.eeye.com/html/Databases/Software/libnetnt.html | | File Size: | 0 | | Last Modified: | Jun 2 20:19:49 2000 |
| MD5 Checksum: | d41d8cd98f00b204e9800998ecf8427e |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
