813 matches found
libxslt XSL 1.1.23 - File Processing Buffer Overflow
source: https://www.securityfocus.com/bid/29312/info The 'libxslt' library is prone to a buffer-overflow vulnerability because the software fails to perform adequate boundary checks on user-supplied data. An attacker may exploit this issue to execute arbitrary code with the privileges of the user...
Microsoft Malware Protection Engine File Processing Remote Denial Of Service Vulnerability
Description Microsoft Malware Protection Engine is prone to a remote denial-of-service vulnerability because it fails to properly validate user-supplied input when parsing specially crafted files. Attackers can exploit this issue to cause an affected computer to stop responding or to restart...
Microsoft Jet Engine stack buffer overflow
Overview The Microsoft Jet Engine contains a stack buffer overflow, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Microsoft Jet, or Joint Engine Technology, is a database engine that is used by several Microsoft products, includin...
RealPlayer RA Field Size File Processing Heap Overflow Vulnerability
This vulnerability allows remote attackers to execute code on vulnerable installations of RealPlayer. User interaction is required in that a user must open a malicious .ra/.ram file or visit a malicious web site. The specific flaw exists during the parsing of files with improperly defined size...
CVE-2007-4787
CVE-2007-4787 affects Sophos Anti-Virus (prior to 2.49.0) where the virus detection engine fails to properly process malformed CAB, LZH, and RAR archives with modified headers, potentially allowing remote attackers to bypass malware detection. The vulnerability resides in the archive-processing l...
Important: Red Hat Security Advisory: gpdf security update
Updated kdegraphics packages that fix a security issue in PDF handling are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. gpdf is a GNOME based viewer for Portable Document Format PDF files. Maury...
File: Denial of service
Background file is a utility that identifies a file format by scanning binary data for patterns. Description Conor Edberg discovered an error in the way file processes a specific regular expression. Impact A remote attacker could entice a user to open a specially crafted file, using excessive CPU...
Corel WordPerfect buffer overflow
Buffer overflow on .PRS file processing...
AdPlug: Multiple vulnerabilities
Background AdPlug is a free, cross-platform, and hardware-independent AdLib sound player library. Description AdPlug is vulnerable to buffer and heap overflows when processing the following types of files: CFF, MTK, DMO, U6M, DTM, and S3M. Impact By enticing a user to load a specially crafted fil...
openoffice.org -- multiple vulnerabilities
OpenOffice.org Security Team reports: Fixed in OpenOffice.org 3.2 CVE-2006-4339: Potential vulnerability from 3rd party libxml2 libraries CVE-2009-0217: Potential vulnerability from 3rd party libxmlsec libraries CVE-2009-2493: OpenOffice.org 3 for Windows bundles a vulnerable version of MSVC...
Microsoft Windows Media Player Bitmap File Processing Overflow (911565) (deprecated)
Binary data 3430.prm...
Ubuntu 4.10 : sharutils vulnerabilities (USN-102-1)
Shaun Colley discovered a buffer overflow in 'shar' that was triggered by output files specified with -o with names longer than 49 characters. This could be exploited to run arbitrary attacker specified code on systems that automatically process uploaded files with shar. Ulf Harnhammar discovered...
ClamAV < 0.88.0 UPX File Processing Overflow (deprecated)
Binary data 3362.prm...
Blender BlenLoader 2.x - File Processing Integer Overflow
source: https://www.securityfocus.com/bid/15981/info Blender is susceptible to an integer-overflow vulnerability. This issue is due to the application's failure to properly sanitize user-supplied input before using it in a memory allocation and copy operation. This issue allows attackers to execu...
bmv integer overflow
Integer overflow on PostScript PS files processing...
Critical: Red Hat Security Advisory: HelixPlayer security update
An updated HelixPlayer package that fixes a buffer overflow issue is now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. HelixPlayer is a media player. A buffer overflow bug was found in the way HelixPlayer processes SMIL files. An...
bzip2 security update
CentOS Errata and Security Advisory CESA-2005:474-01 Updated bzip2 packages that fix multiple issues are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. Updated 13 February 2006 Replacement bzip2 packages for Red Hat Enterprise Linux ...
CVE-2005-0063
The document processing application used by the Windows Shell in Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code by modifying the CLSID stored in a file so that it is processed by HTML Application Host MSHTA, as demonstrated using a...
Oracle Database 8i9i - Multiple Directory Traversal Vulnerabilities
Oracle Database 8i9i - Multiple Directory Traversal Vulnerabilities source: https://www.securityfocus.com/bid/12749/info Oracle Database server is reported prone to multiple directory traversal vulnerabilities that may allow a remote attacker to read, write, or rename arbitrary files with the...
Outlook Express .wab File Processing Overflow
Binary data 3510.prm...