2589 matches found
CVE-2007-3476
Array index error in gdgifin.c in the GD Graphics Library libgd before 2.0.35 allows user-assisted remote attackers to cause a denial of service crash and heap corruption via large color index values in crafted image data, which results in a segmentation fault...
Mandrake Linux Security Advisory : madwifi-source (MDKSA-2007:132)
The 802.11 network stack in MadWifi prior to 0.9.3.1 would alloa remote attackers to cause a denial of service system hang via a crafted length field in nested 802.3 Ethernet frames in Fast Frame packets, which results in a NULL pointer dereference CVE-2007-2829. The athbeaconconfig function in...
evolution malicious server arbitrary code execution
Camel camel-imap-folder.c in the mailer component for Evolution Data Server 1.11 allows remote IMAP servers to execute arbitrary code via a negative SEQUENCE value in GData, which is used as an array index...
MadWifi multiple security vulnerabilities
DoS on different frames parsing, local array index overflow...
Design/Logic Flaw
Multiple array index errors in the 1 getintrablock, 2 getinterblockh263, and 3 getinterblockmpeg functions in src/bitstream/mbcoding.c in Xvid 1.1.2 allow remote attackers to execute arbitrary code via a crafted a Avi, b H.263, or c MPEG file...
CVE-2007-3329
Multiple array index errors in the 1 getintrablock, 2 getinterblockh263, and 3 getinterblockmpeg functions in src/bitstream/mbcoding.c in Xvid 1.1.2 allow remote attackers to execute arbitrary code via a crafted a Avi, b H.263, or c MPEG file...
CVE-2007-3329
Multiple array index errors in the 1 getintrablock, 2 getinterblockh263, and 3 getinterblockmpeg functions in src/bitstream/mbcoding.c in Xvid 1.1.2 allow remote attackers to execute arbitrary code via a crafted a Avi, b H.263, or c MPEG file...
CVE-2007-3329
Multiple array index errors in the 1 getintrablock, 2 getinterblockh263, and 3 getinterblockmpeg functions in src/bitstream/mbcoding.c in Xvid 1.1.2 allow remote attackers to execute arbitrary code via a crafted a Avi, b H.263, or c MPEG file...
CVE-2007-3329
Xvid 1.1.2 has array indexing vulnerabilities in mbcoding.c (get_intra_block, get_inter_block_h263, get_inter_block_mpeg) that allow remote code execution via crafted AVI/H.263/MPEG files; Gentoo GLSA 200708-02 recommends upgrading to >= xvid-1.1.3 as remediation. No exploitable details beyond...
CVE-2007-3257
Camel camel-imap-folder.c in the mailer component for Evolution Data Server 1.11 allows remote IMAP servers to execute arbitrary code via a negative SEQUENCE value in GData, which is used as an array index...
Code injection
Camel camel-imap-folder.c in the mailer component for Evolution Data Server 1.11 allows remote IMAP servers to execute arbitrary code via a negative SEQUENCE value in GData, which is used as an array index...
CVE-2007-3257
Camel camel-imap-folder.c in the mailer component for Evolution Data Server 1.11 allows remote IMAP servers to execute arbitrary code via a negative SEQUENCE value in GData, which is used as an array index...
CVE-2007-3257
Camel camel-imap-folder.c in the mailer component for Evolution Data Server 1.11 allows remote IMAP servers to execute arbitrary code via a negative SEQUENCE value in GData, which is used as an array index...
CVE-2007-3257
Concretely affected: Evolution Data Server (imap-folder.c in the mailer component). The flaw arises from handling a negative SEQUENCE value used as an array index in GData, enabling remote IMAP servers to potentially execute arbitrary code. This is evidenced in CVE-2007-3257 with public advisorie...
CVE-2007-2831
Array index error in the 1 ieee80211ioctlgetwmmparams and 2 ieee80211ioctlsetwmmparams functions in net80211/ieee80211wireless.c in MadWifi before 0.9.3.1 allows local users to cause a denial of service system crash, possibly obtain kernel memory contents, and possibly execute arbitrary code via ...
Code injection
Array index error in the 1 ieee80211ioctlgetwmmparams and 2 ieee80211ioctlsetwmmparams functions in net80211/ieee80211wireless.c in MadWifi before 0.9.3.1 allows local users to cause a denial of service system crash, possibly obtain kernel memory contents, and possibly execute arbitrary code via ...
CVE-2007-2831
Array index error in the 1 ieee80211ioctlgetwmmparams and 2 ieee80211ioctlsetwmmparams functions in net80211/ieee80211wireless.c in MadWifi before 0.9.3.1 allows local users to cause a denial of service system crash, possibly obtain kernel memory contents, and possibly execute arbitrary code via ...
CVE-2007-2831
Array index error in the 1 ieee80211ioctlgetwmmparams and 2 ieee80211ioctlsetwmmparams functions in net80211/ieee80211wireless.c in MadWifi before 0.9.3.1 allows local users to cause a denial of service system crash, possibly obtain kernel memory contents, and possibly execute arbitrary code via ...
CVE-2007-2831
CVE-2007-2831 affects the MadWifi driver prior to 0.9.3.1. Affected code paths are the net80211/ieee80211_wireless.c functions ieee80211_ioctl_getwmmparams and ieee80211_ioctl_setwmmparams, where an oversized negative array index can cause a system crash, potentially expose kernel memory contents...
Debian DSA-1273-1 : nas - several vulnerabilities
Several vulnerabilities have been discovered in nas, the Network Audio System. - CVE-2007-1543 A stack-based buffer overflow in the acceptattlocal function in server/os/connection.c in nas allows remote attackers to execute arbitrary code via a long path slave name in a USL socket connection. -...