CVE-2003-0093

The CVE-2003-0093 entry concerns tcpdump 3.6.2 and earlier, where the RADIUS packet decoder can crash the process by processing an invalid RADIUS packet with a header length field of 0. This condition causes tcpdump to enter an infinite loop, yielding a denial of service. Connected documents (e.g...

CVE-2003-0093

The RADIUS decoder in tcpdump 3.6.2 and earlier allows remote attackers to cause a denial of service crash via an invalid RADIUS packet with a header length field of 0, which causes tcpdump to generate data within an infinite loop...

CVE-2002-0036

Integer signedness error in MIT Kerberos V5 ASN.1 decoder before krb5 1.2.5 allows remote attackers to cause a denial of service via a large unsigned data element length, which is later used as a negative value...

CVE-2002-0036

Summary: CVE-2002-0036 is a signedness bug in MIT Kerberos V5 ASN.1 decoder prior to krb5 1.2.5, allowing a remote attacker to trigger a denial of service by sending a large unsigned data element length that is later treated as negative. Impact: DoS of Kerberos services (notably KDC/servers) as d...

MITKRB5-SA-2004-003: ASN.1 decoder denial-of-service

-----BEGIN PGP SIGNED MESSAGE----- MIT krb5 Security Advisory 2004-003 Original release: 2004-08-31 Topic: ASN.1 decoder denial of service Severity: serious SUMMARY ======= The ASN.1 decoder library in the MIT Kerberos 5 distribution is vulnerable to a denial-of-service attack causing an infinite...

FreeBSD : krb5 -- ASN.1 decoder denial-of-service vulnerability (86)

The following package needs to be updated: krb5 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkgbd60922bfb8d11d8a13e000a95bc6fae.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright 2003-200...

security flaw

Double free vulnerabilities in the error handling code for ASN.1 decoders in the 1 Key Distribution Center KDC library and 2 client library for MIT Kerberos 5 krb5 1.3.4 and earlier may allow remote attackers to execute arbitrary code...

security flaw

The asn1bufskiptail function in the ASN.1 decoder library for MIT Kerberos 5 krb5 1.2.2 through 1.3.4 allows remote attackers to cause a denial of service infinite loop via a certain BER encoding...

FreeBSD : imlib2 -- BMP decoder buffer overflow (74)

The following package needs to be updated: imlib2 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkgba005226fb5b11d89837000c41e2cdad.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright...

FreeBSD : ImageMagick -- BMP decoder buffer overflow (b6cad7f3-fb59-11d8-9837-000c41e2cdad)

Marcus Meissner discovered that ImageMagick's BMP decoder would crash when loading the test BMP file created by Chris Evans for testing the previous Qt vulnerability. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML...

FreeBSD : imlib -- BMP decoder heap buffer overflow (75)

The following package needs to be updated: imlib %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkg00644f03fb5811d89837000c41e2cdad.nasl. Disabled on 2011/10/01. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright 2003-20...

imlib2 -- BMP decoder buffer overflow

Marcus Meissner discovered that imlib2's BMP decoder would crash when loading the test BMP file created by Chris Evans for testing the previous Qt vulnerability. There appears to be both a stack-based and a heap-based buffer overflow that are believed to be exploitable for arbitrary code executio...

imlib -- BMP decoder heap buffer overflow

Marcus Meissner discovered that imlib's BMP decoder would crash when loading the test BMP file created by Chris Evans for testing the previous Qt vulnerability. It is believed that this bug could be exploited for arbitrary code execution...

ImageMagick -- BMP decoder buffer overflow

Marcus Meissner discovered that ImageMagick's BMP decoder would crash when loading the test BMP file created by Chris Evans for testing the previous Qt vulnerability...

Fedora Core 2 : qt-3.3.3-0.1 (2004-271)

During a security audit, Chris Evans discovered a heap overflow in the BMP image decoder in Qt versions prior to 3.3.3. An attacker could create a carefully crafted BMP file in such a way that it would cause an application linked with Qt to crash or possibly execute arbitrary code when the file w...

Fedora Core 1 : qt-3.1.2-14.2 (2004-270)

During a security audit, Chris Evans discovered a heap overflow in the BMP image decoder in Qt versions prior to 3.3.3. An attacker could create a carefully crafted BMP file in such a way that it would cause an application linked with Qt to crash or possibly execute arbitrary code when the file w...

RHEL 2.1 / 3 : qt (RHSA-2004:414)

Updated qt packages that fix security issues in several of the image decoders are now available. Qt is a software toolkit that simplifies the task of writing and maintaining GUI Graphical User Interface applications for the X Window System. During a security audit, Chris Evans discovered a heap...

RHEL 2.1 : glibc (RHSA-2002:167)

Updated glibc packages are available which fix a buffer overflow in the XDR decoder and two vulnerabilities in the resolver functions. updated 8 aug 2002 Updated packages have been made available, as the original errata introduced a bug which could cause calloc to crash on 32-bit platforms when...

RHEL 2.1 : krb5 (RHSA-2002:173)

Updated Kerberos 5 packages are now available for Red Hat LInux Advanced Server. These updates fix a buffer overflow in the XDR decoder. Sun RPC is a remote procedure call framework which allows clients to invoke procedures in a server process over a network. XDR is a mechanism for encoding data...

RHEL 2.1 : glibc (RHSA-2003:090)

Updated glibc packages are available to fix an integer overflow in the XDR decoder. The glibc package contains standard libraries which are used by multiple programs on the system. Sun RPC is a remote procedure call framework which allows clients to invoke procedures in a server process over a...