5941 matches found
Debian DSA-2025-1 : icedove - several vulnerabilities
Several remote vulnerabilities have been discovered in the Icedove mail client, an unbranded version of the Thunderbird mail client. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-2408 Dan Kaminsky and Moxie Marlinspike discovered that icedove does...
DSA-2025-1 icedove - several vulnerabilities
Bulletin has no description...
eDisplay Personal FTP Server 1.0.0 - (Authenticated) Multiple Stack Buffer Overflows (2)
eDisplay Personal FTP Server 1.0.0 - Authenticated Multiple Stack Buffer Overflows 2 Exploit Title : eDisplay Personal FTP server 1.0.0 Multiple Post-Authentication Stack BOF Type of sploit: Remote Code Execution Bug found by : loneferret march 19, 2010 Reference :...
eDisplay Personal FTP server 1.0.0 Multiple Post-Authentication Stack BOF
Exploit for windows platform in category remote exploits ========================================================================= eDisplay Personal FTP server 1.0.0 Multiple Post-Authentication Stack BOF ========================================================================= Exploit Title :...
Mozilla Firefox 3.6 WOFF解码器整数溢出漏洞
BUGTRAQ ID: 38298 CVE ID: CVE-2010-1028 Firefox是一款流行的开源WEB浏览器。 Firefox中所使用的Web开放字体格式(WOFF)解码器在解析字体文件中所指定的表格大小时存在最终可导致堆溢出的整数溢出漏洞。如果用户所访问网页中所嵌入的WOFF字体包含有超长的origLen字段的话,就可以触发这个溢出,导致执行任意代码。 Mozilla Firefox 3.6 临时解决方法: 禁止下载远程字体,在浏览器的地址栏中输入about:config并将以下值设置为false: gfx.downloadablefonts.enabled 厂商补丁:...
Mozilla Fast-Tracks Fix For Critical Firefox Flaw
Mozilla has fast-tracked a patch for a critical vulnerability affecting its flagship Firefox browser. The patch, which was originally slated for release on March 30, fixes a vulnerability that could allow remote code execution attacks. The flaw was originally released into the VulnDisco exploit...
Mozilla WOFF decoder integer overflow
Overview An integer overflow in the Mozilla Web Open Fonts Format WOFF decoder may allow a remote attacker to execute code on an affected system. Description The Web Open Fonts Format WOFF is a simple compressed file format for fonts. Mozilla introduced support for WOFF in the 1.9.2 branch of the...
Firefox 3.6.x < 3.6.2 Multiple Vulnerabilities
The installed version of Firefox 3.6.x is earlier than 3.6.2. Such versions are potentially affected by multiple security issues : - The WOFF decoder contains an integer overflow in a font decompression routine. MFSA 2010-08 - Deleted image frames are reused when handling...
Ubuntu Update for thunderbird vulnerabilities USN-915-1
Ubuntu Update for Linux kernel vulnerabilities USN-915-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN9151.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for thunderbird vulnerabilities USN-915-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...
Kenward zipper v1.4 0day Stack Buffer Overflow PoC exploit
Exploit for windows platform in category local exploits ========================================================== Kenward zipper v1.4 0day Stack Buffer Overflow PoC exploit ========================================================== !/usr/bin/python Exploit Title : Kenward zipper v1.4 0day Stack...
Integer overflow
Integer overflow in the decompression functionality in the Web Open Fonts Format WOFF decoder in Mozilla Firefox 3.6 before 3.6.2 and 3.7 before 3.7 alpha 3 allows remote attackers to execute arbitrary code via a crafted WOFF file that triggers a buffer overflow, as demonstrated by the vdff modul...
CVE-2010-1028
Integer overflow in the decompression functionality in the Web Open Fonts Format WOFF decoder in Mozilla Firefox 3.6 before 3.6.2 and 3.7 before 3.7 alpha 3 allows remote attackers to execute arbitrary code via a crafted WOFF file that triggers a buffer overflow, as demonstrated by the vdff modul...
CVE-2010-1028
Integer overflow in the decompression functionality in the Web Open Fonts Format WOFF decoder in Mozilla Firefox 3.6 before 3.6.2 and 3.7 before 3.7 alpha 3 allows remote attackers to execute arbitrary code via a crafted WOFF file that triggers a buffer overflow, as demonstrated by the vdff modul...
DEBIAN-CVE-2010-1028
Integer overflow in the decompression functionality in the Web Open Fonts Format WOFF decoder in Mozilla Firefox 3.6 before 3.6.2 and 3.7 before 3.7 alpha 3 allows remote attackers to execute arbitrary code via a crafted WOFF file that triggers a buffer overflow, as demonstrated by the vdff modul...
CVE-2010-1028
Integer overflow in the decompression functionality in the Web Open Fonts Format WOFF decoder in Mozilla Firefox 3.6 before 3.6.2 and 3.7 before 3.7 alpha 3 allows remote attackers to execute arbitrary code via a crafted WOFF file that triggers a buffer overflow, as demonstrated by the vdff modul...
EUVD-2010-1060
Integer overflow in the decompression functionality in the Web Open Fonts Format WOFF decoder in Mozilla Firefox 3.6 before 3.6.2 and 3.7 before 3.7 alpha 3 allows remote attackers to execute arbitrary code via a crafted WOFF file that triggers a buffer overflow, as demonstrated by the vdff modul...
CVE-2010-1028
Integer overflow in the decompression functionality in the Web Open Fonts Format WOFF decoder in Mozilla Firefox 3.6 before 3.6.2 and 3.7 before 3.7 alpha 3 allows remote attackers to execute arbitrary code via a crafted WOFF file that triggers a buffer overflow, as demonstrated by the vdff modul...
Firefox 3.5.3 3.0.14 browser engine crashes
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.0.14 and 3.5.x before 3.5.3, Thunderbird before 2.0.0.24, and SeaMonkey before 1.1.19 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary co...
Firefox 3.5.3 3.0.14 browser engine crashes
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.0.14 and 3.5.x before 3.5.3, Thunderbird before 2.0.0.24, and SeaMonkey before 1.1.19 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary co...
Mandriva Update for poppler MDVSA-2010:055 (poppler)
Check for the Version of poppler OpenVAS Vulnerability Test Mandriva Update for poppler MDVSA-2010:055 poppler Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...