Mandrake Security Advisory MDVSA-2009:231 (htmldoc)

The remote host is missing an update to htmldoc announced via advisory MDVSA-2009:231. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

Gentoo Security Advisory GLSA 200909-12 (htmldoc)

The remote host is missing updates announced in advisory GLSA 200909-12. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

htmldoc buffer overflow

Buffer overflow on oversized MEDIA SIZE comment...

[ MDVSA-2009:231 ] htmldoc

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2009:231 http://www.mandriva.com/security/ Package : htmldoc Date : September 11, 2009 Affected: 2009.0, 2009.1, Corporate 4.0 Problem Description: A security vulnerability has been identified and fixed in htmldo...

Mandriva Linux Security Advisory : htmldoc (MDVSA-2009:231-1)

A security vulnerability has been identified and fixed in htmldoc : Buffer overflow in the setpagesize function in util.cxx in HTMLDOC 1.8.27 and earlier allows context-dependent attackers to execute arbitrary code via a long MEDIA SIZE comment. NOTE: it was later reported that there were...

GLSA-200909-12 : HTMLDOC: User-assisted execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-200909-12 HTMLDOC: User-assisted execution of arbitrary code ANTHRAX666 reported an insecure call to the sscanf function in the setpagesize function in htmldoc/util.cxx. Nico Golde of the Debian Security Team found two more insecu...

HTMLDOC: User-assisted execution of arbitrary code

Background HTMLDOC is a HTML indexer and HTML to PS and PDF converter. Description ANTHRAX666 reported an insecure call to the sscanf function in the setpagesize function in htmldoc/util.cxx. Nico Golde of the Debian Security Team found two more insecure calls in the writetype1 function in...

HTMLDOC 1.8.27 Buffer Overflow

/ HTMLDOC 'html' File Handling Remote Stack Buffer Overflow Exploit Linux Reference: http://www.securityfocus.com/bid/35727 Tested on HTMLDOC 1.8.27 on Debian 5.0 +ASLR Credit: ANTHRAX666 for finding the vulnerability Coded by Pankaj Kohli http://www.pank4j.com pankaj@zion:/test/htmldoc$ cat...

HTMLDOC 1.8.27 - .html File Handling Stack Buffer Overflow

HTMLDOC 1.8.27 - .html File Handling Stack Buffer Overflow / HTMLDOC 'html' File Handling Remote Stack Buffer Overflow Exploit Linux Reference: https://www.securityfocus.com/bid/35727 Tested on HTMLDOC 1.8.27 on Debian 5.0 +ASLR Credit: ANTHRAX666 for finding the vulnerability Coded by Pankaj Koh...

HTMLDOC 1.8.27 (html File Handling) Stack Buffer Overflow Exploit

Exploit for linux platform in category local exploits ================================================================= HTMLDOC 1.8.27 html File Handling Stack Buffer Overflow Exploit ================================================================= / HTMLDOC 'html' File Handling Remote Stack...

HTMLDOC 1.8.27 - '.html' File Handling Stack Buffer Overflow

/ HTMLDOC 'html' File Handling Remote Stack Buffer Overflow Exploit Linux Reference: https://www.securityfocus.com/bid/35727 Tested on HTMLDOC 1.8.27 on Debian 5.0 +ASLR Credit: ANTHRAX666 for finding the vulnerability Coded by Pankaj Kohli http://www.pank4j.com pankaj@zion:/test/htmldoc$ cat...

DEBIAN-CVE-2009-3050

Buffer overflow in the setpagesize function in util.cxx in HTMLDOC 1.8.27 and earlier allows context-dependent attackers to execute arbitrary code via a long MEDIA SIZE comment. NOTE: it was later reported that there were additional vectors in htmllib.cxx and ps-pdf.cxx using an AFM font file wit...

CVE-2009-3050

Buffer overflow in the setpagesize function in util.cxx in HTMLDOC 1.8.27 and earlier allows context-dependent attackers to execute arbitrary code via a long MEDIA SIZE comment. NOTE: it was later reported that there were additional vectors in htmllib.cxx and ps-pdf.cxx using an AFM font file wit...

CVE-2009-3050

Buffer overflow in the setpagesize function in util.cxx in HTMLDOC 1.8.27 and earlier allows context-dependent attackers to execute arbitrary code via a long MEDIA SIZE comment. NOTE: it was later reported that there were additional vectors in htmllib.cxx and ps-pdf.cxx using an AFM font file wit...

Buffer overflow

Buffer overflow in the setpagesize function in util.cxx in HTMLDOC 1.8.27 and earlier allows context-dependent attackers to execute arbitrary code via a long MEDIA SIZE comment. NOTE: it was later reported that there were additional vectors in htmllib.cxx and ps-pdf.cxx using an AFM font file wit...

CVE-2009-3050

Buffer overflow in the setpagesize function in util.cxx in HTMLDOC 1.8.27 and earlier allows context-dependent attackers to execute arbitrary code via a long MEDIA SIZE comment. NOTE: it was later reported that there were additional vectors in htmllib.cxx and ps-pdf.cxx using an AFM font file wit...

CVE-2009-3050

Buffer overflow in the setpagesize function in util.cxx in HTMLDOC 1.8.27 and earlier allows context-dependent attackers to execute arbitrary code via a long MEDIA SIZE comment. NOTE: it was later reported that there were additional vectors in htmllib.cxx and ps-pdf.cxx using an AFM font file wit...

CVE-2009-3050

CVE-2009-3050 is a buffer overflow in HTMLDOC. The primary vector is set_page_size in util.cxx for HTMLDOC 1.8.27 and earlier via a long MEDIA SIZE comment, allowing context-dependent arbitrary code execution. Additional vectors in htmllib.cxx and ps-pdf.cxx using a long AFM font glyph name exist...

CVE-2009-3050

Buffer overflow in the setpagesize function in util.cxx in HTMLDOC 1.8.27 and earlier allows context-dependent attackers to execute arbitrary code via a long MEDIA SIZE comment. NOTE: it was later reported that there were additional vectors in htmllib.cxx and ps-pdf.cxx using an AFM font file wit...

Fedora Core 11 FEDORA-2009-8611 (htmldoc)

The remote host is missing an update to htmldoc announced via advisory FEDORA-2009-8611. OpenVAS Vulnerability Test $Id: fcore20098611.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-8611 htmldoc Authors: Thomas Reinke Copyright: Copyright c 2009...