|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  SecurityAlert Database |
||||
SecurityAlert : 2675 CVE : CVE-2007-2487 SecurityRisk : High  (About) Remote Exploit : No Local Exploit : Yes Exploit Available : Yes Credit : preth00nker Published : 12.05.2007
Advisory Content : ##################################################### ### ### << Buffer OverFlow >> ### A T O M I X M P 3 ### ### Preth00nker [at] gmail [dot] com ### BY PRETH00NKER ### http://mexhackteam.org ### ### an spetial dedication to my friends Shaka & 1tachi ### ###################################################### [ Introduction ] (*)Buffer Overflow or B0F: it is caused by a saturation on the stack at the momento when a strcpy() function is called and the string is LONGER than hoped. (*)AtomixMP3, it is an MP3 DJ mix software, was developed to make the technical aspect of djing literally as simple as clicking a mouse. [ Explanation ] When Atomix.exe load the MP3 available in the computer realize an strcpy function for allocate the route of the file, the risk comes when the name's file exceed the buffer located previously, it cause an overflow leaving the posibility for execute arbitrary code into the machine. [ Exploit ] http://www.mexhackteam.org/prethoonker/descargas/Atomixb0f.zip  Feedback : If you have additional information or notice any errors regarding this security advisory, please use contact form or email us at info()securityreason()com. |
||||
| Alert | ||
libc:fts_*() Multiple Denial of Service
The fts functions are provided for traversing UNIX file hierarchies... |
||
| Apache |  |
|
» Apache Tomcat 6.0.20 and |
||
» Apache Tomcat 6.0.20 and |
||
» Apache Tomcat 6.0.20 and |
||
| PHP | |
|
» PHP 5.2.12/5.3.1 |
||
- 2009-10-02| Copyright © SecurityReason.com. All Rights Reserved. |