7754 matches found
xscreensaver local arbitrary file disclosure | symlink attack
xscreensaver local arbitrary file disclosure | symlink attack The "xscreensaver" program distributed normally with Xorg can be abused to disclose local files owned by other users also of the root account. Xscreensaver has the setuid bit on by default Example: Opensolaris The xscreensaver program...
F-PROT AntiVirus Security Bypass Vulnerability - Windows
F-PROT AntiVirus is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
AVG AntiVirus Engine Malware Detection Bypass Vulnerability - Windows
AVG AntiVirus Product Suite for Windows is prone to a malware detection bypass vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only C...
Internet Download Manager language file parsing stack overflow vulnerability-vulnerability warning-the black bar safety net
Affects versions: Tonec Inc Internet Download Manager 5.15 Build 3 Test method: PoC Internet Download Manager v. 5. 1 5 Build 3 4 In December Works on Vista HellCode Labs || TCC Group || http://tcc.hellcode.net The Bug was found by "musashi" aka karak0rsan [email protected] thanx to murderkey...
010 Editor 3.0.4 - File Parsing Multiple Buffer Overflow Vulnerabilities
source: https://www.securityfocus.com/bid/34662/info 010 Editor is prone to multiple buffer-overflow vulnerabilities because it fails to perform adequate boundary checks on user-supplied input. Successfully exploiting these issues may allow remote attackers to execute arbitrary code in the contex...
Microsoft PowerPoint File Parsing Remote Code Execution Vulnerability (967340)
This host is missing a critical security update according to Microsoft Bulletin MS09-017. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Microsoft PowerPoint File Parsing 'OutlineTextRefAtom' Remote Code Execution Vulnerability
Description Microsoft PowerPoint is prone to a remote code-execution vulnerability. An attacker could exploit this issue by enticing a victim to open a malicious PowerPoint file. Successfully exploiting this issue would allow the attacker to execute arbitrary code in the context of the currently...
Free Download Manager torrent file parsing buffer overflow
Added: 02/17/2009 CVE: CVE-2009-0184 BID: 33555 Background Free Download Manager is a download accelerator and manager for Windows systems. Problem A buffer overflow vulnerability allows command execution when a user opens a torrent file containing a long file name. Resolution Upgrade to version...
OpenCORE pvmp3_huffman_parsing.cpp MP3文件解析整数下溢漏洞
BUGTRAQ ID: 33673 CVECAN ID: CVE-2009-0475 OpenCORE是开放源码的多媒体解码子系统。 OpenCORE的pvmp3huffmanparsing.cpp文件在Huffman解码期间存在整数下溢,导致在写入到堆分配缓冲区时出现错误的边界检查。如果用户受骗打开了恶意的mp3文件,就可以触发这个溢出,导致播放器崩溃或执行任意代码。 Android Open Source Project OpenCORE = 2.0 厂商补丁: Android Open Source Project ---------------------------...
Winamp MP3和AIFF文件解析堆溢出漏洞
BUGTRAQ ID: 33226 Winamp是一款流行的媒体播放器,支持多种文件格式。 Winamp在解析畸形MP3和AIFF文件头时存在堆溢出漏洞,用户受骗打开了恶意媒体文件就可能导致执行任意代码。 Nullsoft Winamp 5.541 厂商补丁: Nullsoft -------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.winamp.com/ Winamp = 5.541 multiples Denial of Services MP3/AIFF Winamp MP3 file parsing...
Winamp 5.541 - '.mp3'/'.aiff' File Multiple Denial of Service Vulnerabilities
Winamp !/usr/bin/perl use strict; my $mp3 = "\x49\x44\x33\x00\x00\x00\x00\x00\x09\x07\x54\x49\x54\x32\x00\x00\x00\x08\x00\x00\x00". "\x50\x69\x73\x74\x65\x20\x35\x54\x50\x45\x31\x00\x00\x00\x05\x00\x00\x00\x41\x6e". "\x69\x73\x54\x41\x4c\x42\x00\x00\x00\x0d\x00\x00\x00\x62\x6c\x61\x62\x6c\x61\x20...
Coolplayer buffer overflow
Buffer overflow on skin file parsing...
Microsoft Windows Media Player 9/10/11 - '.WAV' File Parsing Code Execution
// source: https://www.securityfocus.com/bid/33042/info Microsoft Windows Media Player is prone to a code-execution vulnerability. An attacker can exploit this issue by tricking an unsuspecting victim into opening a malicious file with the vulnerable application. A successful exploit will allow...
Capilano DesignWorks buffer overflow
Buffer overflow on .CCT file parsing...
Adobe Pagemaker buffer overflow
Buffer overflow on .PMD files parsing...
Microsoft GDI+ GIF文件远程代码执行漏洞(MS08-052)
BUGTRAQ ID: 31020 CVE ID:CVE-2008-3013 CNCVE ID:CNCVE-20083013 Microsoft Windows是一款微软开发的操作系统。 Microsoft Windows GDI+子系统解析特殊构建的GIF文件存在问题,远程攻击者可以利用漏洞进行内存破坏,可导致以登录用户进程权限执行任意代码。 提供畸形的图形扩展扩展可触发可利用的内存破坏条件,构建特殊的GIF文件,诱使用户访问,可触发此漏洞。 Microsoft Works 8.0 Microsoft Windows XP Professional x64 Edition SP2...
Microsoft Windows GDI+ BMP File Parsing Integer Overflow (MS08-052; CVE-2004-0904; CVE-2008-3015)
Bitmap BMP is an image file format used to store bitmap digital images. A remote code execution vulnerability has been discovered in the way GDI+ handles integer calculations for BMP files. The vulnerability is due to a buffer overflow when GDI+ fails to properly processes a malformed header in a...
Microsoft GDI+ GIF File Parsing Remote Code Execution Vulnerability
Description Microsoft GDI+ is prone to a remote code-execution vulnerability because the vector graphics link library improperly parses GIF image files. An attacker could exploit this issue to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts may...
mplayer -- DMO File Parsing Buffer Overflow Vulnerability
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
VLC 0.8.6i tta File Parsing Heap Overflow PoC
No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - Orange Bat advisory - Name : VLC 0.8.6i Class : Heap overflow Published : 2008-08-16 Credit : g g orange-bat com - - Details - \modules\demux\tta.c define TTAFRAMETIME 1.04489795918367346939 . . . int...