CVE-2006-2087

The CVE-2006-2087 entry concerns Hitachi Groupmax’s Gmax Mail client prior to 20060426. The vulnerability arises from processing an attachment with an MS-DOS device filename, which can cause a denial of service (application hang or erroneous behavior). Documented affected component: the Gmax Mail...

CVE-2006-2085

Multiple buffer overflows in 1 CxAce60.dll and 2 CxAce60u.dll in SpeedProject Squeez 5.10 Build 4460, and SpeedCommander 10.52 Build 4450 and 11.01 Build 4450, allow user-assisted remote attackers to execute arbitrary code via an ACE archive that contains a file with a long filename...

CVE-2006-2087

The Gmax Mail client in Hitachi Groupmax before 20060426 allows remote attackers to cause a denial of service application hang or erroneous behavior via an attachment with an MS-DOS device filename...

Design/Logic Flaw

Argument injection vulnerability in Mozilla Firefox 1.0.6 allows user-assisted remote attackers to modify command line arguments to an invoked mail client via " double quote characters in a mailto: scheme handler, as demonstrated by launching Microsoft Outlook with an arbitrary filename as an...

CVE-2006-2060

Directory traversal vulnerability in actionadmin/paysubscriptions.php in Invision Power Board IPB 2.1.x and 2.0.x before 20060425 allows remote authenticated administrators to include and execute arbitrary local PHP files via a .. dot dot in the name parameter, preceded by enough backspace %08...

CVE-2006-2058

Argument injection vulnerability in Avant Browser 10.1 Build 17 allows user-assisted remote attackers to modify command line arguments to an invoked mail client via " double quote characters in a mailto: scheme handler, as demonstrated by launching Microsoft Outlook with an arbitrary filename as ...

CVE-2006-2055

Argument injection vulnerability in Microsoft Outlook 2003 SP1 allows user-assisted remote attackers to modify command line arguments to an invoked mail client via " double quote characters in a mailto: scheme handler, as demonstrated by launching Microsoft Outlook with an arbitrary filename as a...

CVE-2006-2058

Argument injection vulnerability in Avant Browser 10.1 Build 17 allows user-assisted remote attackers to modify command line arguments to an invoked mail client via " double quote characters in a mailto: scheme handler, as demonstrated by launching Microsoft Outlook with an arbitrary filename as ...

CVE-2006-2056

Argument injection vulnerability in Internet Explorer 6 for Windows XP SP2 allows user-assisted remote attackers to modify command line arguments to an invoked mail client via " double quote characters in a mailto: scheme handler, as demonstrated by launching Microsoft Outlook with an arbitrary...

CVE-2006-1905

Multiple format string vulnerabilities in xiTK xitk/main.c in xine 0.99.3 allow remote attackers to execute arbitrary code via format string specifiers in a long filename on an EXTINFO line in a playlist file...

CVE-2006-1905

Multiple format string vulnerabilities in xiTK xitk/main.c in xine 0.99.3 allow remote attackers to execute arbitrary code via format string specifiers in a long filename on an EXTINFO line in a playlist file...

CVE-2005-4786

Buffer overflow in the archive decompression library vrAZMain.dll 5.8.22.137, as used in HAURI anti-virus products including 1 ViRobot Expert 4.0, 2 ViRobot Advanced Server, and 3 HAURI LiveCall, allows user-assisted attackers to execute arbitrary code via an ALZ archive containing a file with a...

CVE-2006-1668

newimage.php in Eric Gerdes Crafty Syntax Image Gallery CSIG aka PHP thumbnail Photo Gallery 3.1g and earlier allows remote authenticated users to upload and execute arbitrary PHP code via a multipart/form-data POST with a .jpg filename in the fullimage parameter and the ext parameter set to .php...

lighttpd on Windows < 1.4.10a Crafted Filename Request Script Source Disclosure

According to its banner, the version of lighttpd running on the remote Windows host is prior to 1.4.10a. It is, therefore, affected by an information disclosure vulnerability due to a failure to properly validate filename extensions in URLs. A remote attacker can exploit this issue, via specially...

NetworkActiv Web Server Crafted Filename Request Script Source Disclosure

The remote host is running NetworkActiv Web Server, a freeware web server for Windows. According to its banner, the installed version of NetworkActiv Web Server does not properly validate the extension of filenames before deciding how to serve them. By including a forward-slash character, a remot...

Update Protection against Tftpd32 Request Error Message Format String Vulnerability

Tftpd32 is a freeware TFTP server designed for Microsoft Windows operating systems. A vulnerability has been identified in Tftpd32, specifically in the processing of Get requests containing a malformed filename. An attacker capable of sending a specially crafted filename can cause a vulnerable...

Orion < 2.0.7 Crafted Filename Extension Source Code Disclosure

Binary data 3486.prm...

CVE-2006-1298

Format string vulnerability in the Job Engine service bengine.exe in the Media Server in Veritas Backup Exec 10d 10.1 for Windows Servers rev. 5629, Backup Exec 10.0 for Windows Servers rev. 5520, Backup Exec 10.0 for Windows Servers rev. 5484, and Backup Exec 9.1 for Windows Servers rev. 4691,...

CVE-2006-1269

Buffer overflow in the parse function in parse.c in zoo 2.10 might allow local users to execute arbitrary code via long filename command line arguments, which are not properly handled during archive creation. NOTE: since this issue is local and not setuid, the set of attack scenarios is limited,...

CVE-2006-1269

CVE-2006-1269 affects zoo 2.10 where a buffer overflow in parse.c (parse function) may allow a local user to execute arbitrary code via long filename command-line arguments during archive creation. Root cause: improper handling of long filenames. Impact: local code execution with the Zoo user’s p...