813 matches found
Orbital Viewer File Processing Buffer Overflow Vulnerabilities
Orbital Viewer is prone to buffer overflow vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Orbital Viewer File Processing Buffer Overflow Vulnerabilities
This host has Orbital Viewer installed and is prone to buffer overflow vulnerabilities. Vulnerabilities Insight: The flaw is due to error within the processing of '.orb' and '.ov' files, which can be exploited to cause a stack-based buffer overflow when a user is tricked into opening a specially...
UltraISO CUE File Parsing Buffer Overflow
This module exploits a stack-based buffer overflow in EZB Systems, Inc's UltraISO. When processing .CUE files, data is read from file into a fixed-size stack buffer. Since no bounds checking is done, a buffer overflow can occur. Attackers can execute arbitrary code by convincing their victim to...
IS Decisions RemoteExec '.rec' Remote Buffer Overflow
The remote host is running IS Decisions RemoteExec, a computer- management application. The installed version is earlier than 4.0.5. Such versions are potentially affected by a buffer overflow vulnerability when processing specially crafted '.rec' files. An attacker, exploiting this flaw, could...
Microsoft Excel Set Font Handling Code Execution (MS07-023; CVE-2007-1203)
Microsoft Excel is a popular spreadsheet application that is usually released as part of the Microsoft Office suite. The application can create complex spreadsheets with multiple workbooks, formulae, and various data sources. The proprietary file format used for storing Microsoft Excel documents ...
Sun OpenOffice.org < 3.2 Multiple Vulnerabilities
The version of Sun Microsystems OpenOffice.org installed on the remote host is prior to version 3.2. It is, therefore, affected by several issues : - Signatures may not be handled properly due to a vulnerability in the libxml2 library. CVE-2006-4339 - There is an HMAC truncation authentication...
Oracle Database Server SQL Query Directory Traversal (CVE-2005-0701)
The Oracle UTLFILE package is a set of PL/SQL procedures that allow a database user to manipulate files on the server. Supported operations include: read, write, rename, and remove. The files that are available to users are restricted to directories that have been specified in the utlfiledir...
Microsoft GDI+ PNG File Processing Remote Code Execution Vulnerability
Description Microsoft GDI+ is prone to a remote code-execution vulnerability because the vector graphics link library improperly processes PNG image files. An attacker could exploit this issue to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts m...
XEmacs Multiple Buffer Overflow Vulnerabilities (Windows)
The host is installed with XEmacs and is prone to multiple Buffer Overflow vulnerabilities. OpenVAS Vulnerability Test $Id: gbxemacsmultbofvulnwin.nasl 4970 2017-01-09 15:00:59Z teissa $ XEmacs Multiple Buffer Overflow Vulnerabilities Windows Authors: Nikita MR Copyright: Copyright c 2009 Greenbo...
openSUSE Security Update : enscript (enscript-274)
This update of enscript fixes buffer overflows in the setfilename CVE-2008-3863, processfile and readspecialescape function that can be exploited during file processing. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...
ICQ 6.5 File Processing
g f44.104: Access violation - code c0000005 !!! second chance !!! eax=02100068 ebx=772a23c1 ecx=0210cefa edx=00000823 esi=00610061 edi=00000000 eip=772a533f esp=0210cec0 ebp=0210cec4 iopl=0 nv up ei pl nz na po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00010202 SHLWAPI!Ordinal400+0x2...
GLSA-200904-14 : F-PROT Antivirus: Multiple Denial of Service vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200904-14 F-PROT Antivirus: Multiple Denial of Service vulnerabilities The following vulnerabilities were found: Multiple errors when processing UPX, ASPack or Microsoft Office files CVE-2008-3243. Infinite Sergio Alvarez of n.run...
CVE-2009-0520
Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 does not properly remove references to destroyed objects during Shockwave Flash file processing, which allows remote attackers to execute arbitrary code via a crafted file, related to a "buffer overflow issue."...
Audio File Library 0.2.6 - libaudiofile 'msadpcm.c .WAV' File Processing Buffer Overflow
source: https://www.securityfocus.com/bid/33066/info Audio File Library 'libaudiofile' is prone to a heap-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data. An attacker can exploit this issue to execute arbitrary machine code in the context of...
openSUSE 10 Security Update : enscript (enscript-5719)
This update of enscript fixes buffer overflows in the setfilename CVE-2008-3863, processfile and readspecialescape function that can be exploited during file processing. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...
Critical: Red Hat Security Advisory: java-1.5.0-ibm security update
Updated java-1.5.0-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 4 Extras and 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team. The IBM 1.5.0 Java release includes the IBM Java 2...
Microsoft Color Management System Path Name Buffer Overflow (MS08-046; CVE-2008-2245)
Image Color Management ICM is a color management system that parses and uses data in International Color Consortium ICC profiles to perform color translation operations. A remote code execution vulnerability was reported in the Microsoft Color Management System. The vulnerability is due to a flaw...
[SECURITY] Fedora 9 Update: ruby-1.8.6.230-1.fc9
Ruby is the interpreted scripting language for quick and easy object-oriented programming. It has many features to process text files and to do system management tasks as in Perl. It is simple, straight-forward, and extensible...
Critical: Red Hat Security Advisory: java-1.5.0-sun security update
Updated java-1.5.0-sun packages that correct several security issues are now available for Red Hat Enterprise Linux 4 Extras and 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team. The Java Runtime Environment JRE contains the...
[SECURITY] Fedora 9 Update: ruby-1.8.6.230-1.fc9
Ruby is the interpreted scripting language for quick and easy object-oriented programming. It has many features to process text files and to do system management tasks as in Perl. It is simple, straight-forward, and extensible...