RHEL 5 : kernel (RHSA-2010:0046)

Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...

CVE-2010-0280

Array index error in Jan Eric Kyprianidis lib3ds 1.x, as used in Google SketchUp 7.x before 7.1 M2, allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via crafted structures in a 3DS file, probably related to mesh.c...

CVE-2010-0280

Array index error in Jan Eric Kyprianidis lib3ds 1.x, as used in Google SketchUp 7.x before 7.1 M2, allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via crafted structures in a 3DS file, probably related to mesh.c...

CVE-2010-0280

Array index error in Jan Eric Kyprianidis lib3ds 1.x, as used in Google SketchUp 7.x before 7.1 M2, allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via crafted structures in a 3DS file, probably related to mesh.c...

CVE-2010-0280

Vulnerability CVE-2010-0280 affects lib3ds (1.x) as used by Google SketchUp 7.x before 7.1 M2. Root cause: an array index error in lib3ds (mesh.c) can be triggered by crafted 3DS files, enabling remote memory corruption and potentially arbitrary code execution or DoS. Affected environments includ...

SuSE Update for kernel SUSE-SA:2010:001

Check for the Version of kernel OpenVAS Vulnerability Test SuSE Update for kernel SUSE-SA:2010:001 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

MATLAB R2009b - dtoa Implementation Memory Corruption

MATLAB R2009b - dtoa Implementation Memory Corruption source: https://www.securityfocus.com/bid/37688/info MATLAB is prone to a memory-corruption vulnerability because the software fails to properly bounds-check data used as an array index. Attackers may exploit this issue to execute arbitrary co...

MATLAB R2009b - 'dtoa' Implementation Memory Corruption

source: https://www.securityfocus.com/bid/37688/info MATLAB is prone to a memory-corruption vulnerability because the software fails to properly bounds-check data used as an array index. Attackers may exploit this issue to execute arbitrary code within the context of affected applications. MATLAB...

Apple Mac OSX 10.x - 'libc/strtod(3)' Memory Corruption

// source: https://www.securityfocus.com/bid/37687/info Mac OS X is prone to a memory-corruption vulnerability because the software fails to properly bounds-check data used as an array index. Attackers may exploit this issue to execute arbitrary code within the context of affected applications. M...

Adobe Shockwave

Allows remote attackers to execute arbitrary code via a crafted web page that triggers memory corruption, related to an “invalid string length vulnerability.” Array index error in Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via crafted Shockwave...

Design/Logic Flaw

Array index error in the gdthreadevent function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request...

CVE-2009-3080

Array index error in the gdthreadevent function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request...

CVE-2009-3080

Array index error in the gdthreadevent function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request...

CVE-2009-3080

CVE-2009-3080 affects the Linux kernel gdth driver (gdth_read_event in drivers/scsi/gdth.c). In kernels before 2.6.32-rc8, a negative event index in an IOCTL can allow local users to cause a denial of service or potentially gain privileges. MiracleLinux advisories cite this CVE as part of affecte...

CVE-2009-3080

Array index error in the gdthreadevent function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request...

Adobe Reader and Acrobat U3D File Invalid Array Index Remote Vulnerability

No description provided by source. Felipe Andres Manzano [email protected] http://twitter/feliam doc=''' Title: U3D CLODProgressiveMeshContinuation Split Position Index arbitrary dereference. Product: Adobe Acrobat Reader Version: =8.1.6, =9.1.3 Product Homepage: www.adobe.com CVE:...

Adobe Reader and Acrobat U3D File Invalid Array Index Remote Vulnerab

Exploit for unknown platform in category local exploits ========================================================================== Adobe Reader and Acrobat U3D File Invalid Array Index Remote Vulnerability ========================================================================== Title: Adobe...

Adobe Reader / Acrobat - '.U3D' File Invalid Array Index Overflow

Felipe Andres Manzano [email protected] http://twitter/feliam doc=''' Title: U3D CLODProgressiveMeshContinuation Split Position Index arbitrary dereference. Product: Adobe Acrobat Reader Version: =8.1.6, =9.1.3 Product Homepage: www.adobe.com CVE: 2009-2990 OSs: WinXPSPx/Linux...

CVE-2009-3463

Array index error in Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via crafted Shockwave content on a web site. NOTE: some of these details are obtained from third party information...

CVE-2009-3463

CVE-2009-3463 affects Adobe Shockwave Player prior to 11.5.2.602, with an array index error that could allow remote code execution via crafted Shockwave content on a web site. The issue is part of APSB09-16 and is accompanied by related CVEs (3464–3466). The documented impact is arbitrary code ex...