Re: [xfocus-SD-060206]BCB compiler incorrect deal sizeof operator vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 thank Ilja van Sprundel [email protected] testing. he find that newest tiny c compiler tcc-0.9.23 also have this vulnerability . also thank [email protected] and [email protected] : / checkcompilersizeofvulnerability.c Check compiler whether correct de...

[Full-disclosure] [xfocus-SD-060206]BCB compiler incorrect deal sizeof operator vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Title:xfocus-SD-060206BCB compiler incorrect deal sizeof operator vulnerability Affected version : = BCB6+entupd4 Vendor: http://borland.com/ Url: http://www.xfocus.net/releases/200602/a849.html XFOCUS http://www.xfocus.org had already discovered a...

CVE-2004-2645

Unspecified vulnerability in ASN.1 Compiler asn1c before 0.9.7 has unknown impact and attack vectors when processing "CHOICE" types with "indefinite length structures."...

CVE-2004-2644

Unspecified vulnerability in ASN.1 Compiler asn1c before 0.9.7 has unknown impact and attack vectors when processing "ANY" type tags...

CVE-2004-2645

CVE-2004-2645 affects the ASN.1 Compiler (asn1c) prior to 0.9.7. The vulnerability occurs when processing CHOICE types with indefinite-length structures. The available documents do not specify the impact or exploit vectors beyond stating “unknown impact.” There is no explicit remediation detail i...

CVE-2004-2644

Technical details for CVE-2004-2644 are not publicly available in the provided documents; the Connected documents do not add concrete information about affected products, root cause, or remediation. Monitor for updates.

CVE-2004-2644

Unspecified vulnerability in ASN.1 Compiler asn1c before 0.9.7 has unknown impact and attack vectors when processing "ANY" type tags...

CVE-2004-2645

Unspecified vulnerability in ASN.1 Compiler asn1c before 0.9.7 has unknown impact and attack vectors when processing "CHOICE" types with "indefinite length structures."...

DSA-811-2 common-lisp-controller - design error

Bulletin has no description...

Lantronix Secure Console Server (edituser) Local Root Exploit

Exploit for unknown platform in category local exploits ============================================================= Lantronix Secure Console Server edituser Local Root Exploit ============================================================= !/bin/sh Lantronix Secure Console Server edituser root...

CVE-2000-1219

The -ftrapv compiler option in gcc and g++ 3.3.3 and earlier does not handle all types of integer overflows, which may leave applications vulnerable to vulnerabilities related to overflows...

CVE-2000-1219

The CVE-2000-1219 entry documents a flaw in the -ftrapv option of gcc/g++ 3.3.3 and earlier that fails to handle all integer overflow types, potentially leaving applications vulnerable to overflow-related issues. Connected records confirm the affected component and root cause (incomplete handling...

CVE-2004-2645

Unspecified vulnerability in ASN.1 Compiler asn1c before 0.9.7 has unknown impact and attack vectors when processing "CHOICE" types with "indefinite length structures."...

CVE-2004-2644

Unspecified vulnerability in ASN.1 Compiler asn1c before 0.9.7 has unknown impact and attack vectors when processing "ANY" type tags...

ASN.1 compiler multiple bugs

No description provided...

[SA12794] The ASN.1 Compiler Unspecified Security Issues

TITLE: The ASN.1 Compiler Unspecified Security Issues SECUNIA ADVISORY ID: SA12794 VERIFY ADVISORY: http://secunia.com/advisories/12794/ CRITICAL: Moderately critical IMPACT: Unknown WHERE: From remote SOFTWARE: The ASN.1 Compiler 0.x http://secunia.com/product/4038/ DESCRIPTION: Two security...

Debian DSA-115-1 : php - broken boundary check and more

Stefan Esser, who is also a member of the PHP team, found several flawsin the way PHP handles multipart/form-data POST requests as described in RFC1867 known as POST fileuploads. Each of the flaws could allow an attacker to execute arbitrary code on the victim's system. For PHP3 flaws contain a...

Fedora Core 2 : net-tools-1.60-25.1 (2004-154)

Thu Jun 03 2004 Phil Knirsch 1.60-25.1 - Built FC2 security errata version based on rawhide. - Fri May 14 2004 Phil Knirsch 1.60-27 - Fixed compiler warning/error in netplug. - Updated to netplug-1.2.6 for security update and fixes. - Thu May 06 2004 Phil Knirsch 1.60-26 - Updated netplugd to...

CVE-2003-0485

Buffer overflow in Progress 4GL Compiler 9.1D06 and earlier allows attackers to execute arbitrary code via source code containing a long, invalid data type...

CVE-2003-0485

Buffer overflow in Progress 4GL Compiler 9.1D06 and earlier allows attackers to execute arbitrary code via source code containing a long, invalid data type...