CVE-2007-0505

Unrestricted file upload vulnerability in the Project issue tracking 4.7.0 through 5.x before 20070123, a module for Drupal, allows remote authenticated users to execute arbitrary code by attaching a file with executable or multiple extensions to a project issue...

CVE-2007-0236

Double free vulnerability in the ATPsndrsp function in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to cause a denial of service kernel panic and possibly execute arbitrary code via a crafted AppleTalk request that triggers a heap-based buffer overflow...

[SECURITY] [DSA 1135-1] New libtunepimp packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1135-1 [email protected] http://www.debian.org/security/ Martin Schulze August 2nd, 2006 http://www.debian.org/security/faq -...

CentOS 3 : elfutils (CESA-2006:0368)

Updated elfutils packages that address a minor security issue and various other issues are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The elfutils packages contain a number of utility programs and libraries related to the creatio...

RHEL 3 : elfutils (RHSA-2006:0368)

Updated elfutils packages that address a minor security issue and various other issues are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The elfutils packages contain a number of utility programs and libraries related to the creatio...

Security Best Practice: Protect Yourself from Directory Traversal

Directory traversal attacks allow hackers to access files and directories that should be out of their reach. This can allow viewing of directory listings, and in many attacks, could lead to running executable code on the web server with one simple URL...

CentOS 3 : binutils (CESA-2005:659)

An updated binutils package that fixes several bugs and minor security issues is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. Binutils is a collection of utilities used for the creation of executable code. A number of bugs were fou...

CVE-2006-0787

wimpytrackplays.php in Plaino Wimpy MP3 Player, possibly 5.2 and earlier, allows remote attackers to insert arbitrary strings into trackme.txt via the 1 trackFile, 2 trackArtist, and 3 trackTitle parameters, which can result in providing false information about songs, occupying excessive disk spa...

CVE-2006-0787

wimpytrackplays.php in Plaino Wimpy MP3 Player, possibly 5.2 and earlier, allows remote attackers to insert arbitrary strings into trackme.txt via the 1 trackFile, 2 trackArtist, and 3 trackTitle parameters, which can result in providing false information about songs, occupying excessive disk spa...

[Full-disclosure] [USN-245-1] KDE library vulnerability

=========================================================== Ubuntu Security Notice USN-245-1 January 20, 2006 kdelibs vulnerability CVE-2006-0019 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 5.04 Hoary Hedgehoga Ubuntu...

Apple QuickTime 6.4/6.5/7.0.x - PictureViewer '.JPEG'/.PICT' File Buffer Overflow

source: https://www.securityfocus.com/bid/16212/info Apple QuickTime is prone to a buffer-overflow vulnerability because the application fails to do proper bounds checking on user-supplied data before copying it to finite-sized process buffers. An attacker may be able to exploit this issue to...

DiscusWare Discus 3.10 - Error Message Cross-Site Scripting

source: https://www.securityfocus.com/bid/16119/info DiscusWare Discus is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting us...

CVE-2005-4422

Unrestricted file upload vulnerability in toendaCMS before 0.6.2 Stable allows remote authenticated administrators to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in data/images/albums...

RHEL 2.1 : binutils (RHSA-2005:763)

An updated binutils package that fixes minor security issues is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. Binutils is a collection of utilities used for the creation of executable code. A number of bugs were found in various...

RHEL 4 : binutils (RHSA-2005:673)

The remote Redhat Enterprise Linux 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2005:673 advisory. Binutils is a collection of utilities used for the creation of executable code. A number of bugs were found in various binutils tools. If a user is...

binutils security update

CentOS Errata and Security Advisory CESA-2005:659 An updated binutils package that fixes several bugs and minor security issues is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. Binutils is a collection of utilities used for the...

Low: Red Hat Security Advisory: binutils security update

An updated binutils package that fixes several bugs and minor security issues is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. Binutils is a collection of utilities used for the creation of executable code. A number of bugs were fou...

Microsoft Windows XP SP2 non-executable memory (DEP) protection bypass

By using small memory regisouns it's possible to place executable code into non-executable memory regions...

DSA-593-1 imagemagick - buffer overflow

Bulletin has no description...

CVE-2003-0330

Buffer overflow in unknown versions of Maelstrom allows local users to execute arbitrary code via a long -player command line argument...