WebWasher Remote ARJ Decoder Malformed Archive Handling DoS

According to its version, the version of WebWasher installed on the remote host is affected by a denial of service vulnerability when handling a specially crafted ARJ file. C Tenable Network Security include"compat.inc"; if description scriptid21749; scriptversion"1.12"; scriptcvsdate"Date:...

USN-267-1: mailman vulnerability

A remote Denial of Service vulnerability was discovered in the decoder for multipart messages. Certain parts of type "message/delivery-status" or parts containing only two blank lines triggered an exception. An attacker could exploit this to crash Mailman by sending a specially crafted email to a...

- libtasn1 buffer overflow

Tiny ASN.1 Library libtasn1 before 0.2.18, as used by 1 GnuTLS 1.2.x before 1.2.10 and 1.3.x before 1.3.4, and 2 GNU Shishi, allows attackers to crash the DER decoder and possibly execute arbitrary code via "out-of-bounds access" caused by invalid input, as demonstrated by the ProtoVer SSL test...

CVE-2006-0645

Tiny ASN.1 Library libtasn1 before 0.2.18, as used by 1 GnuTLS 1.2.x before 1.2.10 and 1.3.x before 1.3.4, and 2 GNU Shishi, allows attackers to crash the DER decoder and possibly execute arbitrary code via "out-of-bounds access" caused by invalid input, as demonstrated by the ProtoVer SSL test...

Design/Logic Flaw

Tiny ASN.1 Library libtasn1 before 0.2.18, as used by 1 GnuTLS 1.2.x before 1.2.10 and 1.3.x before 1.3.4, and 2 GNU Shishi, allows attackers to crash the DER decoder and possibly execute arbitrary code via "out-of-bounds access" caused by invalid input, as demonstrated by the ProtoVer SSL test...

CVE-2006-0645

Tiny ASN.1 Library libtasn1 before 0.2.18, as used by 1 GnuTLS 1.2.x before 1.2.10 and 1.3.x before 1.3.4, and 2 GNU Shishi, allows attackers to crash the DER decoder and possibly execute arbitrary code via "out-of-bounds access" caused by invalid input, as demonstrated by the ProtoVer SSL test...

CVE-2006-0645

The CVE-2006-0645 entry concerns Tiny ASN.1 Library (libtasn1) before 0.2.18, used by GnuTLS 1.2.x before 1.2.10 and 1.3.x before 1.3.4, and by GNU Shishi. The issue is an out-of-bounds access in the DER decoder caused by invalid input, which can crash the DER decoder and possibly allow arbitrary...

CVE-2006-0645

Tiny ASN.1 Library libtasn1 before 0.2.18, as used by 1 GnuTLS 1.2.x before 1.2.10 and 1.3.x before 1.3.4, and 2 GNU Shishi, allows attackers to crash the DER decoder and possibly execute arbitrary code via "out-of-bounds access" caused by invalid input, as demonstrated by the ProtoVer SSL test...

[gnutls-dev] Libtasn1 0.2.18 - Tiny ASN.1 Library - Security release

All, this release fixes several serious bugs that would make the DER decoder in libtasn1 crash on invalid input. The problems were reported by Evgeny Legerov on the 31th of January. New releases of GnuTLS will follow later today. We invite more detailed analysis of the problem, following our...

Ubuntu 4.10 / 5.04 : imagemagick vulnerabilities (USN-132-1)

Damian Put discovered a buffer overflow in the PNM image decoder. Processing a specially crafted PNM file with a small 'colors' value resulted in a crash of the application that used the ImageMagick library. CAN-2005-1275 Another Denial of Service vulnerability was found in the XWD decoder...

Ubuntu 5.04 : kdelibs vulnerability (USN-114-1)

Bruno Rohee discovered a buffer overflow in the PCX decoder of kimgio. If an attacker tricked a user into loading a malicious PCX image with a KDE application, he could exploit this to execute arbitrary code with the privileges of the user opening the image. Note that Tenable Network Security has...

Ubuntu 5.04 : kdelibs fixed packages (USN-114-2)

USN-114-1 fixed a vulnerability in the PCX decoder of kimgio. Unfortunately it was discovered that the original patches were faulty and caused regressions. This update now has the correct patches. This update also fixes the disappearing KDE settings which were caused by the accidental removal of...

Ubuntu 4.10 : exim4 vulnerabilities (USN-56-1)

A flaw has been found in the hostaton function, which can overflow a buffer if it is presented with an illegal IPv6 address that has more than 8 components. When supplying certain command line parameters, the input was not checked, so that a local attacker could possibly exploit the buffer overfl...

PPC LongXOR Encoder

This encoder is ghandi's PPC dword xor encoder but uses a tag-based terminator rather than a length. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'PPC LongXOR Encoder', 'Description' = %q Thi...

Single-byte XOR Countdown Encoder

This encoder uses the length of the payload as a position-dependent encoder key to produce a small decoder stub. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Single-byte XOR Countdown...

CVE-2005-2308

The CVE-2005-2308 entry affects Microsoft Internet Explorer's JPEG decoding component. The provided documents describe a denial-of-service condition (CPU consumption or crash) and the possibility of arbitrary code execution triggered by specially crafted JPEG images (examples: mov_fencepost.jpg, ...

CVE-2005-2308

The JPEG decoder in Microsoft Internet Explorer allows remote attackers to cause a denial of service CPU consumption or crash and possibly execute arbitrary code via certain crafted JPEG images, as demonstrated using 1 movfencepost.jpg, 2 cmpfencepost.jpg, 3 oomdos.jpg, or 4 random.jpg...

CVE-2005-2308

The JPEG decoder in Microsoft Internet Explorer allows remote attackers to cause a denial of service CPU consumption or crash and possibly execute arbitrary code via certain crafted JPEG images, as demonstrated using 1 movfencepost.jpg, 2 cmpfencepost.jpg, 3 oomdos.jpg, or 4 random.jpg...

FreeBSD : tiff -- RLE decoder heap overflows (f6680c03-0bd8-11d9-8a8a-000c41e2cdad)

Chris Evans discovered several heap buffer overflows in libtiff's RLE decoder. These overflows could be triggered by a specially crafted TIFF image file, resulting in an application crash and possibly arbitrary code execution. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...

FreeBSD : mozilla -- BMP decoder vulnerabilities (ab9c559e-115a-11d9-bc4a-000c41e2cdad)

Gael Delalleau discovered several integer overflows in Mozilla's BMP decoder that can result in denial-of-service or arbitrary code execution. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database...