ZDI-08-048: Microsoft Excel COUNTRY Record Memory Corruption Vulnerability

ZDI-08-048: Microsoft Excel COUNTRY Record Memory Corruption Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-08-048 August 12, 2008 -- CVE ID: CVE-2008-3006 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Office Excel -- TippingPointTM IPS Customer Protection:...

ZDI-08-049: Microsoft Windows Graphics Rendering Engine PICT Heap Corruption

ZDI-08-049: Microsoft Windows Graphics Rendering Engine PICT Heap Corruption http://www.zerodayinitiative.com/advisories/ZDI-08-049 August 12, 2008 -- CVE ID: CVE-2008-3021 -- Affected Vendors: Microsoft -- Affected Products: Microsoft File Format Vulnerability -- TippingPointTM IPS Customer...

Microsoft Office PICT Filter Invalid Length Memory Corruption (MS08-044; CVE-2008-3018)

PICT is a graphics file format that allows the interchange of graphics both bitmapped and vector, and some limited text support, between Mac applications. A remote code execution vulnerability was reported in the way Microsoft Office handles PICT files. The vulnerability is due to a memory...

Microsoft Excel COUNTRY Record Memory Corruption Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Excel. Exploitation requires that the attacker coerce the target into opening a malicious .XLS file. The specific flaw exists within the parsing of the BIFF file format used by...

Ttplayer med File format stack overflow-vulnerability warning-the black bar safety net

author: dummy e-mail: [email protected] date: 2008/02/25 Ttplayer using libmod to the mod class file format processing, this library in ReadMed function, no check File description length, if passed a maliciously constructed value, will result in a heap overflow. Now using the libmod software many...

RHEL 2.1 : freetype (RHSA-2008:0558)

Updated freetype packages that fix various security issues are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having important security impact by the Red Hat Security Response Team. Updated 25th June 2008 The original packages distributed with this errata had a bug...

Important: Red Hat Security Advisory: freetype security update

Updated freetype packages that fix various security issues are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having important security impact by the Red Hat Security Response Team. Updated 25th June 2008 The original packages distributed with this errata had a bug...

ZDI-08-040: Microsoft DirectX SAMI File Format Name Parsing Stack Overflow Vulnerability

ZDI-08-040: Microsoft DirectX SAMI File Format Name Parsing Stack Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-08-040 -- CVE ID: CVE-2008-1444 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Windows 2000 SP4 -- TippingPointTM IPS Customer Protection:...

cdf3 -- Buffer overflow vulnerability

NASA Goddard Space Flight Center reports: The libraries for the scientific data file format, Common Data Format CDF version 3.2 and earlier, have the potential for a buffer overflow vulnerability when reading specially-crafted invalid CDF files. If successful, this could trigger execution of...

CUPS gif_read_lzw()函数GIF文件处理缓冲区溢出漏洞

BUGTRAQ ID: 28544 CVECAN ID: CVE-2008-1373 Common Unix Printing System CUPS是一款通用Unix打印系统，是Unix环境下的跨平台打印解决方案，基于Internet打印协议，提供大多数PostScript和raster打印机服务。 CUPS处理畸形格式的GIF文件时存在漏洞，远程攻击者可能利用此漏洞控制服务器。 CUPS打印系统所使用的GIF解析代码直接从GIF图形中读取了codesize值，且没有经过验证便用于初始化gifreadlzw中的表格数组，这可能导致静态溢出。...

Microsoft Excel BIFF File Format Cell Record Parsing Memory Corruption Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office. Exploitation requires that the attacker coerce the target into opening a malicious .XLS file. The specific flaw exists within the parsing of malformed cell comments. When Excel...

Ttplayer med File format stack overflow-vulnerability warning-the black bar safety net

author: dummy e-mail: [email protected] date: 2008/02/25 Ttplayer using libmod to the mod class file format processing, this library in ReadMed function, no check File description length, if passed a maliciously constructed value, will result in a heap overflow. Now using the libmod software many...

DEBIAN-CVE-2008-0101

Format string vulnerability in the swDebugf function in DuneApp.cpp in WhiteDune 0.29 beta791 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a .WRL file...

Buffer-overflow in Extended Module Player 2.5.1

Luigi Auriemma Application: Extended Module Player XMP http://xmp.sourceforge.net Versions: = 2.5.1 Platforms: Linux, BSD, Solaris, HP-UX, MacOS X, QNX, BeOS, Windows, OS/2 and AmigaOS Bugs: A buffer-overflow in testoxm / decrunchoxm B buffer-overflow in dttload Exploitation: local Date: 27 Dec...

CentOS 4 : libexif (CESA-2007:1166)

Updated libexif packages that fix a security issue are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The libexif packages contain the Exif library. Exif is an image file format specification that...

libexif security update

CentOS Errata and Security Advisory CESA-2007:1165 Updated libexif packages that fix several security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The libexif packages contain the Exif...

Apple QuickTime Uncompressedfile Opcode Stack Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must open a malicious image file. The specific flaw exists in the parsing of the pict file format. If ...

Verity KeyView SDK Multiple File Format Parsing Vulnerabilities

Several vulnerabilities exist in the popular Verity KeyView SDK used in many enterprise applications like IBM Lotus Notes. When parsing several different file formats a standard stack overflow occurs allowing a malicious user to gain complete control of the affected machine under the rights of th...

JVN#32981509 Ichitaro series buffer overflow vulnerability

The "Ichitaro" series word processing software, from JustSystems Corporation, contains a buffer overflow vulnerability. If a user opens a specially crafted jtd file or views it on a web browser, an attacker could execute arbitrary code with the privileges of the user. Impact An attacker could...

CVE-2007-4600 - Mathcad Protect Worksheet Vulnerability

Mathcad Security Vulnerability Briefing - CVE-2007-4600 Synopsis of Vulnerability ========================== The ‘Protect Worksheet’ functionality, used to protect sections Mathcad sheets from alterations, in versions 12 through 14 is easily bypassed allowing access to the protected data due to t...