Microsoft Windows Media Player Bitmap File Processing Overflow (911565) (deprecated)

Binary data 3430.prm...

Ubuntu 4.10 : sharutils vulnerabilities (USN-102-1)

Shaun Colley discovered a buffer overflow in 'shar' that was triggered by output files specified with -o with names longer than 49 characters. This could be exploited to run arbitrary attacker specified code on systems that automatically process uploaded files with shar. Ulf Harnhammar discovered...

ClamAV < 0.88.0 UPX File Processing Overflow (deprecated)

Binary data 3362.prm...

Blender BlenLoader 2.x - File Processing Integer Overflow

source: https://www.securityfocus.com/bid/15981/info Blender is susceptible to an integer-overflow vulnerability. This issue is due to the application's failure to properly sanitize user-supplied input before using it in a memory allocation and copy operation. This issue allows attackers to execu...

bmv integer overflow

Integer overflow on PostScript PS files processing...

Critical: Red Hat Security Advisory: HelixPlayer security update

An updated HelixPlayer package that fixes a buffer overflow issue is now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. HelixPlayer is a media player. A buffer overflow bug was found in the way HelixPlayer processes SMIL files. An...

bzip2 security update

CentOS Errata and Security Advisory CESA-2005:474-01 Updated bzip2 packages that fix multiple issues are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. Updated 13 February 2006 Replacement bzip2 packages for Red Hat Enterprise Linux ...

CVE-2005-0063

The document processing application used by the Windows Shell in Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code by modifying the CLSID stored in a file so that it is processed by HTML Application Host MSHTA, as demonstrated using a...

Oracle Database 8i9i - Multiple Directory Traversal Vulnerabilities

Oracle Database 8i9i - Multiple Directory Traversal Vulnerabilities source: https://www.securityfocus.com/bid/12749/info Oracle Database server is reported prone to multiple directory traversal vulnerabilities that may allow a remote attacker to read, write, or rename arbitrary files with the...

Outlook Express .wab File Processing Overflow

Binary data 3510.prm...

gdk-pixbuf DoS

Bug during BMP files processing...

CVE-2002-1759

The upload function in PHProjekt 2.0 through 3.1 does not properly verify certain variables related to uploaded data, which allows remote attackers to cause PHProjekt to process arbitrary files...

Buffer overflow in Windows XP Shell

Buffer overflow on audio file processing...

RealPlayer/RealOne buffer overflows

Buffer overflows during URL and files processing...

R7-0004: Multiple Vendor Long ZIP Entry Filename Processing

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Rapid 7, Inc. Security Advisory Visit http://www.rapid7.com/ to download NeXposetm, our advanced vulnerability scanner. Linux and Windows 2000 versions are available now! Rapid 7 Advisory R7-0004 Multiple Vendor Long ZIP Entry Filename Processing Issu...

RealONE Player Gold / RealJukebox2 multiple bugs

Buffer overflow and local zone scripting during skin file processing...

Apache.Win32.txt

Vulnerability in Apache for Win32 batch file processing - Remote command execution = Author: Ory Segal, Sanctum inc. http://www.sanctuminc.com = Release date: March, 21st 2002 Vendor was notified at: Feb. 13th 2002 = Vendor: Apache group = Product: Apache web server Win32 - Running DOS batch file...

Серьезная дырка в ncurses

Классическое переполнение буфера при обработке пользовательского файла .terminfo...

Microsoft Internet Information Server (IIS) discloses contents of files via crafted request for .htr file

Overview A vulnerability exists in Microsoft Internet Information Server IIS which could disclose sensitive information contained in CGI-type files. Typically a CGI/script file on a web server should only be executable and not readable by remote users. Sensitive information contained in such a fi...

BSD lpr 0.54 -4 - Arbitrary Command Execution

BSD lpr 0.54 -4 - Arbitrary Command Execution source: https://www.securityfocus.com/bid/1834/info lpr is a set of printing tools for unix systems. The lpr package that ships with RedHat Linux 6.2 and possibly earlier versions contains a vulnerability that will allow an attacker to execute arbitra...