Code injection

Unspecified vulnerability in the SQLNLSUNPADDEDCHARLEN function in the New Compiler aka Starburst derived compiler component in the server in IBM DB2 9.1 before FP6 allows attackers to cause a denial of service segmentation violation and trap via unknown vectors...

Microsoft .Net framework multiple security vulnerabilities

Buffer overflow on PE .Net format parsing, buffer overflow in KIT compiler, remote information leak in ASP.NET with poisoned NULL byte...

4 kinds of the most popular Trojans bundled Controller skills-vulnerability warning-the black bar safety net

A traditional bundle This principle is very simple, is currently the most used one. Is the B. exe attached to A. exe at the end. So when A. exe to be executed when the B. exe also follow the implementation. This bundle of code over the network. My earliest is from jingtao's an article about the...

CVE-2008-2654

Off-by-one error in the readclient function in webhttpd.c in Motion 3.2.10 and earlier might allow remote attackers to execute arbitrary code via a long request to a Motion HTTP Control interface, which triggers a stack-based buffer overflow with some combinations of processor architecture and...

CVE-2008-2654

Off-by-one error in the readclient function in webhttpd.c in Motion 3.2.10 and earlier might allow remote attackers to execute arbitrary code via a long request to a Motion HTTP Control interface, which triggers a stack-based buffer overflow with some combinations of processor architecture and...

.NET JIT Compiler Vulnerability

The remote host is affected by the vulnerabilitys described in CVE-2007-0043 Checking if System.web.dll version is less than 2.0.50727.832 OpenVAS Vulnerability Test $Id: winCVE-2007-0043.nasl 5661 2017-03-21 11:39:13Z cfi $ Description: .NET JIT Compiler Vulnerability Authors: Carsten Koch-Mauth...

Microsoft .NET JIT Compiler Code Execution Vulnerability (ms07-040)

Microsoft .NET JIT Compiler is prone to a code execution vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Kernel doesn't clear DF for signal handlers

gcc 4.3.x does not generate a cld instruction while compiling functions used for string manipulation such as memcpy and memmove on x86 and i386, which can prevent the direction flag DF from being reset in violation of ABI conventions and cause data to be copied in the wrong direction during signa...

CVE-2008-1026

Integer overflow in the PCRE regular expression compiler JavaScriptCore/pcre/pcrecompile.cpp in Apple WebKit, as used in Safari before 3.1.1, allows remote attackers to execute arbitrary code via a regular expression with large, nested repetition counts, which triggers a heap-based buffer overflo...

CVE-2008-1026

Integer overflow in the PCRE regular expression compiler JavaScriptCore/pcre/pcrecompile.cpp in Apple WebKit, as used in Safari before 3.1.1, allows remote attackers to execute arbitrary code via a regular expression with large, nested repetition counts, which triggers a heap-based buffer overflo...

CVE-2008-1026

Removed by vendor...

CVE-2008-1026

Integer overflow in the PCRE regular expression compiler JavaScriptCore/pcre/pcrecompile.cpp in Apple WebKit, as used in Safari before 3.1.1, allows remote attackers to execute arbitrary code via a regular expression with large, nested repetition counts, which triggers a heap-based buffer overflo...

Integer overflow

gcc 4.2.0 through 4.3.0 in GNU Compiler Collection, when casts are not used, considers the sum of a pointer and an int to be greater than or equal to the pointer, which might lead to removal of length testing code that was intended as a protection mechanism against integer overflow and buffer...

CVE-2008-1685

gcc 4.2.0 through 4.3.0 in GNU Compiler Collection, when casts are not used, considers the sum of a pointer and an int to be greater than or equal to the pointer, which might lead to removal of length testing code that was intended as a protection mechanism against integer overflow and buffer...

CVE-2008-1685

gcc 4.2.0 through 4.3.0 in GNU Compiler Collection, when casts are not used, considers the sum of a pointer and an int to be greater than or equal to the pointer, which might lead to removal of length testing code that was intended as a protection mechanism against integer overflow and buffer...

CVE-2008-1685

gcc 4.2.0 through 4.3.0 in GNU Compiler Collection, when casts are not used, considers the sum of a pointer and an int to be greater than or equal to the pointer, which might lead to removal of length testing code that was intended as a protection mechanism against integer overflow and buffer...

CVE-2008-1685

CVE-2008-1685 affects GNU Compiler Collection versions 4.2.0–4.3.0. The issue is that when casts are not used, the sum of a pointer and an int may be considered >= the pointer, which can lead to removal of length-testing code intended as protection against integer overflow and buffer overflow,...

PT-2008-1164 · Gnu · Gnu Compiler Collection

Name of the Vulnerable Software and Affected Versions: GNU Compiler Collection versions 4.2.0 through 4.3.0 Description: The issue is related to the incorrect handling of the sum of a pointer and an integer as greater than or equal to the pointer without using casts. This might lead to the remova...

C compilers may silently discard some wraparound checks

Overview Some C compilers optimize away pointer arithmetic overflow tests that depend on undefined behavior without providing a diagnostic a warning. Applications containing these tests may be vulnerable to buffer overflows if compiled with these compilers. Description In the C language, given th...

DEBIAN-CVE-2008-1367

gcc 4.3.x does not generate a cld instruction while compiling functions used for string manipulation such as memcpy and memmove on x86 and i386, which can prevent the direction flag DF from being reset in violation of ABI conventions and cause data to be copied in the wrong direction during signa...