2589 matches found
DSA-1273-1 nas - several vulnerabilities
Bulletin has no description...
Command injection
Array index error in Network Audio System NAS before 1.8a SVN 237 allows remote attackers to cause a denial of service crash via 1 large numaction values in the ProcAuSetElements function in server/dia/audispatch.c or 2 a large inputNum parameter to the compileInputs function in server/dia/auutil...
CVE-2007-1546
Array index error in Network Audio System NAS before 1.8a SVN 237 allows remote attackers to cause a denial of service crash via 1 large numaction values in the ProcAuSetElements function in server/dia/audispatch.c or 2 a large inputNum parameter to the compileInputs function in server/dia/auutil...
CVE-2007-1546
Array index error in Network Audio System NAS before 1.8a SVN 237 allows remote attackers to cause a denial of service crash via 1 large numaction values in the ProcAuSetElements function in server/dia/audispatch.c or 2 a large inputNum parameter to the compileInputs function in server/dia/auutil...
CVE-2007-1546
Array index error in Network Audio System NAS before 1.8a SVN 237 allows remote attackers to cause a denial of service crash via 1 large numaction values in the ProcAuSetElements function in server/dia/audispatch.c or 2 a large inputNum parameter to the compileInputs function in server/dia/auutil...
CVE-2007-1546
CVE-2007-1546 affects the Network Audio System (NAS) prior to 1.8a SVN 237. The vulnerability is an array index error in NAS code paths: ProcAuSetElements (server/dia/audispatch.c) and compileInputs (server/dia/auutil.c). A remote attacker can trigger a denial of service (crash) by sending large ...
Sql injection
Multiple SQL injection vulnerabilities in WebMplayer before 0.6.1-Alpha allow remote attackers to execute arbitrary SQL commands via the 1 strid parameter to index.php and the 2 id0 or other id array index parameter to filecheck.php...
Mandrake Linux Security Advisory : libneon0.26 (MDKSA-2007:013)
An array index error in the URI parser in neon 0.26.0 to 0.26.2 could possibly allow remote malicious servers to cause a crash via a URI with non-ASCII characters. This vulnerability may only exist on 64bit systems. Updated packages are patched to address this issue. %NASLMINLEVEL 70300 C Tenable...
Type confusion
Array index error in the urilookup function in the URI parser for neon 0.26.0 to 0.26.2, possibly only on 64-bit platforms, allows remote malicious servers to cause a denial of service crash via a URI with non-ASCII characters, which triggers a buffer under-read due to a type conversion error tha...
CVE-2007-0157
CVE-2007-0157 affects neon 0.26.0–0.26.2, with a root cause of an array index/buffer under-read in the URI parser when handling non-ASCII characters, potentially on 64-bit platforms. This could allow a remote attacker via a URI to cause a crash (denial of service). Public advisories from openSUSE...
CVE-2007-0157
Array index error in the urilookup function in the URI parser for neon 0.26.0 to 0.26.2, possibly only on 64-bit platforms, allows remote malicious servers to cause a denial of service crash via a URI with non-ASCII characters, which triggers a buffer under-read due to a type conversion error tha...
CVE-2006-6309
Multiple array index errors in IBM Tivoli Storage Manager TSM before 5.2.9 and 5.3.x before 5.3.4 allow remote attackers to read arbitrary memory locations and cause a denial of service crash via a large index value in unspecified messages, a different issue than CVE-2006-5855...
CVE-2006-6309
Multiple array index errors in IBM Tivoli Storage Manager TSM before 5.2.9 and 5.3.x before 5.3.4 allow remote attackers to read arbitrary memory locations and cause a denial of service crash via a large index value in unspecified messages, a different issue than CVE-2006-5855...
CVE-2006-6309
CVE-2006-6309 describes multiple array/index errors in IBM Tivoli Storage Manager (TSM) before 5.2.9 and 5.3.x before 5.3.4. A remote attacker could read arbitrary memory locations and trigger a denial of service (crash) via a large index value in unspecified messages. This vulnerability is disti...
Microsoft Internet Explorer array index overflow
Index array overflow on large number of e.g. "OnClick" HTML tag event handlers...
Macromedia Flash Player数组索引内存访问漏洞(MS06-020)
Macromedia Flash Player是一款非常流行的FLASH播放器。 Macromedia Flash Player用于播放SWF文件的Flash.ocx代码中存在漏洞,成功利用这个漏洞的攻击者可以远程执行任意代码。 其中的一个函数栈维护有256个元素的函数指针表,没有强制数组边界便将从SWF文件读取的帧类型标识符用作了数组索引。以下反汇编描述了受影响的代码: .text:1002714F mov eax, esi+0CA4h ; type number .text:10027155 mov ecx, esi+94h ; base of table .text:1002715...
DEBIAN-CVE-2006-4335
Array index error in the maketable function in unlzh.c in the LZH decompression component in gzip 1.3.5, when running on certain platforms, allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted GZIP archive that triggers an...
CVE-2006-4335
Array index error in the maketable function in unlzh.c in the LZH decompression component in gzip 1.3.5, when running on certain platforms, allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted GZIP archive that triggers an...
CVE-2006-4335
The CVE-2006-4335 issue affects gzip 1.3.5, specifically the LZH decompression code (unlzh.c make_table), where an array index/out-of-bounds handling on certain platforms can cause a crash or arbitrary code execution via a crafted GZIP archive. Public advisories describe a stack modification/boun...
CVE-2006-4335
Array index error in the maketable function in unlzh.c in the LZH decompression component in gzip 1.3.5, when running on certain platforms, allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted GZIP archive that triggers an...