CVE-2004-1372

Multiple stack-based buffer overflows in IBM DB2 7.x and 8.1 allow local users to execute arbitrary code via 1 a long third argument to the rec2xml function or 2 a long filename argument to the generatedistfile procedure...

GLSA-200408-01 : MPlayer: GUI filename handling overflow

The remote host is affected by the vulnerability described in GLSA-200408-01 MPlayer: GUI filename handling overflow The MPlayer GUI code contains several buffer overflow vulnerabilities, and at least one in the TranslateFilename function is exploitable. Impact : By enticing a user to play a file...

GLSA-200408-14 : acroread: UUDecode filename buffer overflow

The remote host is affected by the vulnerability described in GLSA-200408-14 acroread: UUDecode filename buffer overflow acroread contains two errors in the handling of UUEncoded filenames. First, it fails to check the length of a filename before copying it into a fixed size buffer and, secondly,...

GNU a2ps 4.13 - File Name Command Execution

GNU a2ps 4.13 - File Name Command Execution source: https://www.securityfocus.com/bid/11025/info Reportedly GNU a2ps is affected by a filename command-execution vulnerability. This issue is due to the application's failure to properly sanitize filenames. An attacker might leverage this issue to...

GNU a2ps 4.13 - File Name Command Execution

source: https://www.securityfocus.com/bid/11025/info Reportedly GNU a2ps is affected by a filename command-execution vulnerability. This issue is due to the application's failure to properly sanitize filenames. An attacker might leverage this issue to execute arbitrary shell commands with the...

gaim -- malicious smiley themes

The Gaim Security Issues page documents a problem with installing smiley themes from an untrusted source: To install a new smiley theme, a user can drag a tarball from a graphical file manager, or a hypertext link to one from a web browser. When a tarball is dragged, Gaim executes a shell command...

Qualcomm Eudora Attachment Filename Handling Overflow (deprecated)

Binary data 1324.prm...

Microsoft Outlook 98 / Outlook Express 4.x Long Filename Vulnerability

Binary data 1294.prm...

Opera < 7.11 Filename Extension Handling Overflow

Binary data 1763.prm...

Qualcomm Eudora < 5.2 Long Attachment Filename Handling DoS

Binary data 1283.prm...

AOL Instant Messenger Filename Handling Format String

Binary data 1254.prm...

Yahoo! Messenger Download Feature Long Filename Overflow

Binary data 1271.prm...

acroread: UUDecode filename buffer overflow

Background acroread is Adobe's Acrobat PDF reader for Linux. Description acroread contains two errors in the handling of UUEncoded filenames. First, it fails to check the length of a filename before copying it into a fixed size buffer and, secondly, it fails to check for the backtick shell...

Mandrake Linux Security Advisory : samba (MDKSA-2001:040-1)

A vulnerability found by Marcus Meissner exists in Samba where it was not creating temporary files safely which could allow local users to overwrite files that they may not have access to. This happens when a remote user queried a printer queue and samba would create a temporary file in which the...

Whisper FTP buffer overflow

Buffer overflow on oversized filename...

CVE-2004-0632

Adobe Reader 6.0 does not properly handle null characters when splitting a filename path into components, which allows remote attackers to execute arbitrary code via a file with a long extension that is not normally handled by Reader, triggering a buffer overflow...

CVE-2004-0676

Directory traversal vulnerability in Fastream NETFile FTP/Web Server 6.7.2.1085 and earlier allows remote attackers to create or delete arbitrary files via .. dot dot and // double slash sequences in the filename parameter...

VulnCheck KEV: CVE-2003-1041

Internet Explorer 5.x and 6.0 allows remote attackers to execute arbitrary programs via a modified directory traversal attack using a URL containing ".." dot dot sequences and a filename that ends in "::" which is treated as a .chm file even if it does not have a .chm extension. NOTE: this bug...

Adobe Acrobat Reader buffer overflow

Buffer overflow on filename parsing...

PT-2004-1763 · Fastream · Netfile Ftp/Web Server

Name of the Vulnerable Software and Affected Versions: Fastream NETFile FTP/Web Server versions 6.7.2.1085 and earlier Description: A directory traversal issue allows remote attackers to create or delete arbitrary files by using .. dot dot and // double slash sequences in the filename parameter...