HTMLDOC -- buffer overflow issues when reading AFM files and parsing page sizes

Michael Sweet reports: HTMLDOC 1.8.28 fixes some known security issues and formatting bugs. Changes include: SECURITY: Fixed three buffer overflow issues when reading AFM files and parsing page sizes...

HTMLDOC 1.9.x-r1629 (Windows x86) - .html Local Buffer Overflow

HTMLDOC 1.9.x-r1629 Windows x86 - .html Local Buffer Overflow /HTMLDOC 1.9.x-r1629 local .html buffer overflowwin32 exploit download: http://www.htmldoc.org/software.php?VERSION=1.9.x-r1629&FILE=htmldoc/snapshots/htmldoc-1.9.x-r1629.tar.bz2 header 19 bytes junk 268 bytes EIP register 4 bytes NOP...

HTMLDOC 1.9.x-r1629 local .html buffer overflow(win32) exploit

Exploit for unknown platform in category local exploits ============================================================== HTMLDOC 1.9.x-r1629 local .html buffer overflowwin32 exploit ============================================================== /HTMLDOC 1.9.x-r1629 local .html buffer overflowwin32...

HTMLDOC 1.9.x-r1629 (Windows x86) - '.html' Local Buffer Overflow

/HTMLDOC 1.9.x-r1629 local .html buffer overflowwin32 exploit download: http://www.htmldoc.org/software.php?VERSION=1.9.x-r1629&FILE=htmldoc/snapshots/htmldoc-1.9.x-r1629.tar.bz2 header 19 bytes junk 268 bytes EIP register 4 bytes NOP SLEED 15 bytes calc.exe shellcode 338 bytes PLEASE READ: 1.Run...

openSUSE Security Update : htmldoc (htmldoc-1682)

Specially crafted files could cause a buffer overflow in htmldoc CVE-2009-3050. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update htmldoc-1682. The text description of this plugin is C SUSE LLC...

openSUSE Security Update : htmldoc (htmldoc-1682)

Specially crafted files could cause a buffer overflow in htmldoc CVE-2009-3050. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update htmldoc-1682. The text description of this plugin is C SUSE LLC...

openSUSE Security Update : htmldoc (htmldoc-1682)

Specially crafted files could cause a buffer overflow in htmldoc CVE-2009-3050. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update htmldoc-1682. The text description of this plugin is C SUSE LLC...

Mandriva Security Advisory MDVSA-2009:231-1 (htmldoc)

The remote host is missing an update to htmldoc announced via advisory MDVSA-2009:231-1. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

Mandrake Security Advisory MDVSA-2009:231 (htmldoc)

The remote host is missing an update to htmldoc announced via advisory MDVSA-2009:231. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

Mandrake Security Advisory MDVSA-2009:231 (htmldoc)

The remote host is missing an update to htmldoc announced via advisory MDVSA-2009:231. OpenVAS Vulnerability Test $Id: mdksa2009231.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:231 htmldoc Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

Gentoo Security Advisory GLSA 200909-12 (htmldoc)

The remote host is missing updates announced in advisory GLSA 200909-12. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200909-12 (htmldoc)

The remote host is missing updates announced in advisory GLSA 200909-12. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

GLSA-200909-12 : HTMLDOC: User-assisted execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-200909-12 HTMLDOC: User-assisted execution of arbitrary code ANTHRAX666 reported an insecure call to the sscanf function in the setpagesize function in htmldoc/util.cxx. Nico Golde of the Debian Security Team found two more insecu...

Mandriva Linux Security Advisory : htmldoc (MDVSA-2009:231-1)

A security vulnerability has been identified and fixed in htmldoc : Buffer overflow in the setpagesize function in util.cxx in HTMLDOC 1.8.27 and earlier allows context-dependent attackers to execute arbitrary code via a long MEDIA SIZE comment. NOTE: it was later reported that there were...

[ MDVSA-2009:231 ] htmldoc

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2009:231 http://www.mandriva.com/security/ Package : htmldoc Date : September 11, 2009 Affected: 2009.0, 2009.1, Corporate 4.0 Problem Description: A security vulnerability has been identified and fixed in htmldo...

htmldoc buffer overflow

Buffer overflow on oversized MEDIA SIZE comment...

HTMLDOC: User-assisted execution of arbitrary code

Background HTMLDOC is a HTML indexer and HTML to PS and PDF converter. Description ANTHRAX666 reported an insecure call to the sscanf function in the setpagesize function in htmldoc/util.cxx. Nico Golde of the Debian Security Team found two more insecure calls in the writetype1 function in...

HTMLDOC 1.8.27 Buffer Overflow

/ HTMLDOC 'html' File Handling Remote Stack Buffer Overflow Exploit Linux Reference: http://www.securityfocus.com/bid/35727 Tested on HTMLDOC 1.8.27 on Debian 5.0 +ASLR Credit: ANTHRAX666 for finding the vulnerability Coded by Pankaj Kohli http://www.pank4j.com pankaj@zion:/test/htmldoc$ cat...

HTMLDOC 1.8.27 - '.html' File Handling Stack Buffer Overflow

/ HTMLDOC 'html' File Handling Remote Stack Buffer Overflow Exploit Linux Reference: https://www.securityfocus.com/bid/35727 Tested on HTMLDOC 1.8.27 on Debian 5.0 +ASLR Credit: ANTHRAX666 for finding the vulnerability Coded by Pankaj Kohli http://www.pank4j.com pankaj@zion:/test/htmldoc$ cat...

HTMLDOC 1.8.27 - .html File Handling Stack Buffer Overflow

HTMLDOC 1.8.27 - .html File Handling Stack Buffer Overflow / HTMLDOC 'html' File Handling Remote Stack Buffer Overflow Exploit Linux Reference: https://www.securityfocus.com/bid/35727 Tested on HTMLDOC 1.8.27 on Debian 5.0 +ASLR Credit: ANTHRAX666 for finding the vulnerability Coded by Pankaj Koh...