3659 matches found
CVE-2006-4183
Heap-based buffer overflow in Microsoft DirectX SDK February 2006 and probably earlier, including 9.0c End User Runtimes, allows context-dependent attackers to execute arbitrary code via a crafted Targa file with a run-length-encoding RLE compression that produces more data than expected when...
Symantec AntiVirus Malformed CAB and RAR Compression Remote Vulnerabilities
Description Symantec AntiVirus products that include the Symantec Decomposer are prone to multiple remote vulnerabilities related to the handling of CAB and RAR archives. These issues include a denial-of-service vulnerability and a buffer-overflow vulnerability. Successfully exploiting these issu...
[SECURITY] Fedora 7 Update: dar-2.3.4-1.fc7
DAR is a command line tool to backup a directory tree and files. DAR is able to make differential backups, split them over a set of disks or files of a given size, use compression, filter files or subtrees to be saved or not saved, directly access and restore given files. DAR is also able to hand...
[SECURITY] Fedora 7 Update: jasper-1.900.1-2.fc7
This package contains an implementation of the image compression standard JPEG-2000, Part 1. It consists of tools for conversion to and from the JP2 and JPC formats...
[SECURITY] Fedora Core 5 Update: lha-1.14i-20
LHA is an archiving and compression utility for LHarc format archives. LHA is mostly used in the DOS world, but can be used under Linux to extract DOS files from LHA archives. Install the lha package if you need to extract DOS files from LHA archives...
Dart Communications PowerTCP ZIP Compression Remote BoF Exploit
No description provided by source. !-- IE 6 / Dart Communications PowerTCP ZIP Compression Control DartZip.dll 1.8.5.3 remote buffer overflow exploit / xp sp2 it by rgod site: retrogod.altervista.org software site: www.dart.com -- html object classid='clsid:42BA826E-F8D8-4D8D-8C05-14ABCE99D4DD'...
Dart Communications PowerTCP - ZIP Compression Remote Buffer Overflow
Dart Communications PowerTCP - ZIP Compression Remote Buffer Overflow 'metasploit one, add a user 'sun' with pass 'tzu' shellcode =...
Dart Communications PowerTCP ZIP Compression Remote BoF Exploit
Exploit for unknown platform in category remote exploits =============================================================== Dart Communications PowerTCP ZIP Compression Remote BoF Exploit =============================================================== 'metasploit one, add a user 'sun' with pass 'tzu...
Dart Communications PowerTCP - ZIP Compression Remote Buffer Overflow
'metasploit one, add a user 'sun' with pass 'tzu' shellcode =...
Buffer overflow
Buffer overflow in the Dart Communications PowerTCP ZIP Compression ActiveX control in DartZip.dll 1.8.5.3, when Internet Explorer 6 is used, allows user-assisted remote attackers to execute arbitrary code via a long first argument to the QuickZip function, a related issue to CVE-2007-2855...
CVE-2007-2855
CVE-2007-2855 involves a buffer overflow in the DartZipLite.dll 1.8.5.3 ActiveX control (Dart ZipLite Compression for ActiveX). The vulnerability arises from a long first argument to the QuickZip function, enabling user‑assisted remote code execution. Affected component is the DartZipLite ActiveX...
CVE-2007-2856
The CVE-2007-2856 entry documents a buffer overflow in the Dart Communications PowerTCP ZIP Compression ActiveX control (DartZip.dll 1.8.5.3). The flaw, triggered when Internet Explorer 6 handles a long first argument to the QuickZip function, allows user‑assisted remote code execution. This is d...
[SECURITY] Fedora Core 6 Update: libpng-1.2.10-9.fc6
The libpng package contains a library of functions for creating and manipulating PNG Portable Network Graphics image format files. PNG is a bit-mapped graphics format similar to the GIF format. PNG was created to replace the GIF format, since GIF uses a patented data compression algorithm. Libpng...
Dart ZipLite Compression 1.8.5.3 - DartZipLite.dll ActiveX Control Buffer Overflow
Dart ZipLite Compression 1.8.5.3 - DartZipLite.dll ActiveX Control Buffer Overflow source: https://www.securityfocus.com/bid/24099/info The Dart ZipLite Compression ActiveX control is prone to a buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before...
Dart ZipLite Compression 1.8.5.3 - 'DartZipLite.dll' ActiveX Control Buffer Overflow
source: https://www.securityfocus.com/bid/24099/info The Dart ZipLite Compression ActiveX control is prone to a buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer. Successfully exploiting this issue...
OPeNDAP BES压缩文件远程命令执行漏洞
OPeNDAP是一款帮助研究者在不同格式中交换数据集的应用软件。 OPeNDAP服务程序的BES守护进程存在安全问题,远程攻击者可以利用漏洞以应用程序进程权限执行任意代码。 攻击者可以发送特殊构建的压缩文件给受影响的服务器程序,导致BES守护程序在过滤压缩文件中的数据时出现问题而执行任意代码。 OPeNDAP Hyrax 1.2 OPeNDAP BES 3.4.2 + OPeNDAP Hyrax 1.2 升级程序: OPeNDAP BES 3.4.2 OPeNDAP bes-3.5.0.tar.gz...
Multiple vendors ZOO file decompression infinite loop DoS
Topic: Multiple vendors ZOO file decompression infinite loop DoS Announced: 2007-05-04 Credits: Jean-Sebastien Guay-Leroux Products: Multiple see section III Impact: DoS 99 CPU utilisation CVE ID: CVE-2007-1669, CVE-2007-1670, CVE-2007-1671, CVE-2007-1672, CVE-2007-1673 I. BACKGROUND Zoo is a...
WinRAR 7z-compressed packet processing overflow analysis and use-vulnerability and early warning-the black bar safety net
This article has been published in the hacker line of Defense of the 2 0 0 7 year 4 monthly. The author and the hacker line of Defense on the retention of copyright, reproduced, please indicate the original source. For the reader: overflow of lovers Pre-knowledge: Assembly language, buffer overfl...
DEBIAN-CVE-2007-2231
Directory traversal vulnerability in index/mbox/mbox-storage.c in Dovecot before 1.0.rc29, when using the zlib plugin, allows remote attackers to read arbitrary gzipped .gz mailboxes mbox files via a .. dot dot sequence in the mailbox name...
Design/Logic Flaw
Kaspersky AntiVirus Engine 6.0.1.411 for Windows and 5.5-10 for Linux allows remote attackers to cause a denial of service CPU consumption via a crafted UPX compressed file with a negative offset, which triggers an infinite loop during decompression...