CVE-2012-4176

Array index error in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors...

Code injection

Array index error in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors...

CVE-2012-4176

Array index error in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors...

CVE-2012-4176

CVE-2012-4176 affects Adobe Shockwave Player prior to 11.6.8.638. An array index error in the plugin can allow remote arbitrary code execution. The vulnerability is triggered by processing a crafted Shockwave file, with no user interaction required in the referenced descriptions. The patched vers...

[SECURITY] [DSA 2552-1] tiff security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2552-1 [email protected] http://www.debian.org/security/ Luciano Bello September 26, 2012 http://www.debian.org/security/faq -...

DSA-2552-1 tiff - several

Bulletin has no description...

CVE-2012-4405

Multiple integer underflows in the icmLutallocate function in International Color Consortium ICC Format library icclib, as used in Ghostscript 9.06 and Argyll Color Management System, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted 1...

Integer overflow

Multiple integer underflows in the icmLutallocate function in International Color Consortium ICC Format library icclib, as used in Ghostscript 9.06 and Argyll Color Management System, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted 1...

CVE-2012-4405

Multiple integer underflows in the icmLutallocate function in International Color Consortium ICC Format library icclib, as used in Ghostscript 9.06 and Argyll Color Management System, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted 1...

RHEL 5 / 6 : ghostscript (RHSA-2012:1256)

The remote Redhat Enterprise Linux 5 / 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2012:1256 advisory. - ghostscript, argyllcms: Array index error leading to heap-based bufer OOB write CVE-2012-4405 Note that Nessus has not tested for this issue bu...

argyllcms: Array index error leading to heap-based bufer OOB write

Multiple integer underflows in the icmLutallocate function in International Color Consortium ICC Format library icclib, as used in Ghostscript 9.06 and Argyll Color Management System, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted 1...

glibc security update

2.12-1.80.el63.5 - Fix integer overflow leading to buffer overflow in strto and related out of bounds array index 847931...

Moderate: Red Hat Security Advisory: tetex security update

Updated tetex packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

CVE-2012-4357

Array index error in Sielco Sistemi Winlog Pro SCADA before 2.07.17 and Winlog Lite SCADA before 2.07.17 might allow remote attackers to execute arbitrary code by referencing, within a port-46824 TCP packet, an invalid file-pointer index that leads to execution of an EnterCriticalSection code blo...

CVE-2012-4357

Array index error in Sielco Sistemi Winlog Pro SCADA before 2.07.17 and Winlog Lite SCADA before 2.07.17 might allow remote attackers to execute arbitrary code by referencing, within a port-46824 TCP packet, an invalid file-pointer index that leads to execution of an EnterCriticalSection code blo...

CVE-2012-4295

Array index error in the channelisedfillsdhg707format function in epan/dissectors/packet-erf.c in the ERF dissector in Wireshark 1.8.x before 1.8.2 might allow remote attackers to cause a denial of service application crash via a crafted speed aka rate value...

DEBIAN-CVE-2012-4295

Array index error in the channelisedfillsdhg707format function in epan/dissectors/packet-erf.c in the ERF dissector in Wireshark 1.8.x before 1.8.2 might allow remote attackers to cause a denial of service application crash via a crafted speed aka rate value...

Code injection

Array index error in the channelisedfillsdhg707format function in epan/dissectors/packet-erf.c in the ERF dissector in Wireshark 1.8.x before 1.8.2 might allow remote attackers to cause a denial of service application crash via a crafted speed aka rate value...

CVE-2012-4295

Array index error in the channelisedfillsdhg707format function in epan/dissectors/packet-erf.c in the ERF dissector in Wireshark 1.8.x before 1.8.2 might allow remote attackers to cause a denial of service application crash via a crafted speed aka rate value...

CVE-2012-4295

CVE-2012-4295: In the ERF dissector (Wireshark 1.8.x before 1.8.2), an array index error in channelised_fill_sdh_g707_format can be triggered by a crafted speed (rate) value, leading to an application crash (DoS). Affected software is Wireshark 1.8.x prior to 1.8.2; remediation per public advisor...