Lucene search
K

7754 matches found

securityvulns
securityvulns
added 2009/07/05 12:0 a.m.33 views

xscreensaver local arbitrary file disclosure | symlink attack

xscreensaver local arbitrary file disclosure | symlink attack The "xscreensaver" program distributed normally with Xorg can be abused to disclose local files owned by other users also of the root account. Xscreensaver has the setuid bit on by default Example: Opensolaris The xscreensaver program...

2.2AI score
Exploits0
OpenVAS
OpenVAS
added 2009/06/01 12:0 a.m.21 views

F-PROT AntiVirus Security Bypass Vulnerability - Windows

F-PROT AntiVirus is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

10CVSS6.9AI score0.03436EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2009/05/29 12:0 a.m.19 views

AVG AntiVirus Engine Malware Detection Bypass Vulnerability - Windows

AVG AntiVirus Product Suite for Windows is prone to a malware detection bypass vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only C...

10CVSS6.7AI score0.03407EPSS
Exploits0References3
myhack58
myhack58
added 2009/04/28 12:0 a.m.14 views

Internet Download Manager language file parsing stack overflow vulnerability-vulnerability warning-the black bar safety net

Affects versions: Tonec Inc Internet Download Manager 5.15 Build 3 Test method: PoC Internet Download Manager v. 5. 1 5 Build 3 4 In December Works on Vista HellCode Labs || TCC Group || http://tcc.hellcode.net The Bug was found by "musashi" aka karak0rsan [email protected] thanx to murderkey...

1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/04/21 12:0 a.m.26 views

010 Editor 3.0.4 - File Parsing Multiple Buffer Overflow Vulnerabilities

source: https://www.securityfocus.com/bid/34662/info 010 Editor is prone to multiple buffer-overflow vulnerabilities because it fails to perform adequate boundary checks on user-supplied input. Successfully exploiting these issues may allow remote attackers to execute arbitrary code in the contex...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2009/04/07 12:0 a.m.31 views

Microsoft PowerPoint File Parsing Remote Code Execution Vulnerability (967340)

This host is missing a critical security update according to Microsoft Bulletin MS09-017. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS5.3AI score0.67539EPSS
Exploits27References20
Symantec
Symantec
added 2009/04/02 12:0 a.m.11 views

Microsoft PowerPoint File Parsing 'OutlineTextRefAtom' Remote Code Execution Vulnerability

Description Microsoft PowerPoint is prone to a remote code-execution vulnerability. An attacker could exploit this issue by enticing a victim to open a malicious PowerPoint file. Successfully exploiting this issue would allow the attacker to execute arbitrary code in the context of the currently...

8AI score
Exploits0References2Affected Software2
Saint
Saint
added 2009/02/17 12:0 a.m.16 views

Free Download Manager torrent file parsing buffer overflow

Added: 02/17/2009 CVE: CVE-2009-0184 BID: 33555 Background Free Download Manager is a download accelerator and manager for Windows systems. Problem A buffer overflow vulnerability allows command execution when a user opens a torrent file containing a long file name. Resolution Upgrade to version...

9.3CVSS6.9AI score0.27803EPSS
Exploits12
seebug.org
seebug.org
added 2009/02/11 12:0 a.m.29 views

OpenCORE pvmp3_huffman_parsing.cpp MP3文件解析整数下溢漏洞

BUGTRAQ ID: 33673 CVECAN ID: CVE-2009-0475 OpenCORE是开放源码的多媒体解码子系统。 OpenCORE的pvmp3huffmanparsing.cpp文件在Huffman解码期间存在整数下溢,导致在写入到堆分配缓冲区时出现错误的边界检查。如果用户受骗打开了恶意的mp3文件,就可以触发这个溢出,导致播放器崩溃或执行任意代码。 Android Open Source Project OpenCORE = 2.0 厂商补丁: Android Open Source Project ---------------------------...

6.8CVSS6.4AI score0.02195EPSS
Exploits1
seebug.org
seebug.org
added 2009/01/15 12:0 a.m.22 views

Winamp MP3和AIFF文件解析堆溢出漏洞

BUGTRAQ ID: 33226 Winamp是一款流行的媒体播放器,支持多种文件格式。 Winamp在解析畸形MP3和AIFF文件头时存在堆溢出漏洞,用户受骗打开了恶意媒体文件就可能导致执行任意代码。 Nullsoft Winamp 5.541 厂商补丁: Nullsoft -------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.winamp.com/ Winamp = 5.541 multiples Denial of Services MP3/AIFF Winamp MP3 file parsing...

6.9AI score
Exploits0
Exploit DB
Exploit DB
added 2009/01/12 12:0 a.m.27 views

Winamp 5.541 - '.mp3'/'.aiff' File Multiple Denial of Service Vulnerabilities

Winamp !/usr/bin/perl use strict; my $mp3 = "\x49\x44\x33\x00\x00\x00\x00\x00\x09\x07\x54\x49\x54\x32\x00\x00\x00\x08\x00\x00\x00". "\x50\x69\x73\x74\x65\x20\x35\x54\x50\x45\x31\x00\x00\x00\x05\x00\x00\x00\x41\x6e". "\x69\x73\x54\x41\x4c\x42\x00\x00\x00\x0d\x00\x00\x00\x62\x6c\x61\x62\x6c\x61\x20...

7AI score
Exploits0
securityvulns
securityvulns
added 2009/01/06 12:0 a.m.24 views

Coolplayer buffer overflow

Buffer overflow on skin file parsing...

4.6AI score
Exploits0Affected Software1
Exploit DB
Exploit DB
added 2008/12/29 12:0 a.m.22 views

Microsoft Windows Media Player 9/10/11 - '.WAV' File Parsing Code Execution

// source: https://www.securityfocus.com/bid/33042/info Microsoft Windows Media Player is prone to a code-execution vulnerability. An attacker can exploit this issue by tricking an unsuspecting victim into opening a malicious file with the vulnerable application. A successful exploit will allow...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2008/12/10 12:0 a.m.33 views

Capilano DesignWorks buffer overflow

Buffer overflow on .CCT file parsing...

4.8AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2008/11/03 12:0 a.m.69 views

Adobe Pagemaker buffer overflow

Buffer overflow on .PMD files parsing...

9.3CVSS5AI score0.08402EPSS
Exploits5References2Affected Software1
seebug.org
seebug.org
added 2008/09/11 12:0 a.m.44 views

Microsoft GDI+ GIF文件远程代码执行漏洞(MS08-052)

BUGTRAQ ID: 31020 CVE ID:CVE-2008-3013 CNCVE ID:CNCVE-20083013 Microsoft Windows是一款微软开发的操作系统。 Microsoft Windows GDI+子系统解析特殊构建的GIF文件存在问题,远程攻击者可以利用漏洞进行内存破坏,可导致以登录用户进程权限执行任意代码。 提供畸形的图形扩展扩展可触发可利用的内存破坏条件,构建特殊的GIF文件,诱使用户访问,可触发此漏洞。 Microsoft Works 8.0 Microsoft Windows XP Professional x64 Edition SP2...

9.3CVSS7.3AI score0.52065EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2008/09/09 12:0 a.m.35 views

Microsoft Windows GDI+ BMP File Parsing Integer Overflow (MS08-052; CVE-2004-0904; CVE-2008-3015)

Bitmap BMP is an image file format used to store bitmap digital images. A remote code execution vulnerability has been discovered in the way GDI+ handles integer calculations for BMP files. The vulnerability is due to a buffer overflow when GDI+ fails to properly processes a malformed header in a...

10CVSS7.7AI score0.39272EPSS
Exploits1
Symantec
Symantec
added 2008/09/09 12:0 a.m.20 views

Microsoft GDI+ GIF File Parsing Remote Code Execution Vulnerability

Description Microsoft GDI+ is prone to a remote code-execution vulnerability because the vector graphics link library improperly parses GIF image files. An attacker could exploit this issue to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts may...

Exploits0References1Affected Software32
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.19 views

mplayer -- DMO File Parsing Buffer Overflow Vulnerability

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

7.6CVSS6.5AI score0.05694EPSS
Exploits0References2
seebug.org
seebug.org
added 2008/08/17 12:0 a.m.25 views

VLC 0.8.6i tta File Parsing Heap Overflow PoC

No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - Orange Bat advisory - Name : VLC 0.8.6i Class : Heap overflow Published : 2008-08-16 Credit : g g orange-bat com - - Details - \modules\demux\tta.c define TTAFRAMETIME 1.04489795918367346939 . . . int...

7.1AI score
Exploits0
Rows per page
Query Builder