glibc reserves 2048 bytes in the stack through alloca() for the DNS answer at _nss_dns_gethostbyname4_r() for hosting responses to a DNS query. Later on, at send_dg() and send_vc(), if the response is larger than 2048 bytes, a new buffer is allocated from the heap and all the information (buffer pointer, new buffer size and response […]
JMX2 Email Tester – (save_email.php) Web Shell Upload
Tags:
0day,
remote exploit
Redaxo CMS 5.0.0 – Multiple Vulnerabilities
Tags:
0day,
remote exploit
Texmaker versions 4.5 and below suffer from a DLL hijacking vulnerability.
Gold Movies version 1.0.2 suffers from a remote SQL injection vulnerability.
Algobox versions 0.9 and below suffer from a DLL hijacking vulnerability.
Tiny Tiny RSS suffers from a remote blind SQL injection vulnerability.
JMX2 Email Tester suffers from a remote shell upload vulnerability.
Xymon 4.3.x versions suffers from buffer overflow, information disclosure, code execution, cross site scripting, and various other vulnerabilities.
ManageEngine OPutils 8.0 – Multiple Vulnerabilities
Tags:
0day,
remote exploit