CVE-2007-3922

CVE-2007-3922 describes an unspecified vulnerability in the Sun JDK/JRE applet class loader that allows a remote attacker to violate the applet’s outbound connection restrictions by connecting to localhost services on the host that loaded the applet. Affected products/versions include Sun JDK/JRE...

Microsoft .NET Framework PE加载器远程溢出漏洞（MS07-040）

BUGTRAQ ID: 24778 CVECAN ID: CVE-2007-0041 Microsoft .NET Framework是一个流行的软件开发工具包。 .NET Framework PE加载器处理包含畸形数据的PE文件时存在缓冲区溢出漏洞，本地攻击者可能利用此漏洞提升自己的权限。 .NET Framework...

MS07-040: Vulnerabilities in .NET Framework Could Allow Remote Code Execution (931212) (uncredentialed check)

The remote web server is running a version of the ASP.NET framework that contains multiple vulnerabilities : - A PE Loader vulnerability could allow an attacker to execute arbitrary code with the privilege of the logged-on user. - A ASP.NET NULL byte termination vulnerability could allow an...

Buffer overflow

The PE Loader service in Microsoft .NET Framework 1.0, 1.1, and 2.0 for Windows 2000, XP, Server 2003, and Vista allows remote attackers to execute arbitrary code via unspecified vectors involving an "unchecked buffer" and unvalidated message lengths, probably a buffer overflow...

CVE-2007-0041

The PE Loader service in Microsoft .NET Framework 1.0, 1.1, and 2.0 for Windows 2000, XP, Server 2003, and Vista allows remote attackers to execute arbitrary code via unspecified vectors involving an "unchecked buffer" and unvalidated message lengths, probably a buffer overflow...

CVE-2007-0041

The PE Loader service in Microsoft .NET Framework 1.0, 1.1, and 2.0 for Windows 2000, XP, Server 2003, and Vista allows remote attackers to execute arbitrary code via unspecified vectors involving an "unchecked buffer" and unvalidated message lengths, probably a buffer overflow...

CVE-2007-0041

CVE-2007-0041 is the PE Loader vulnerability in Microsoft .NET Framework (versions 1.0, 1.1 and 2.0) on Windows 2000/XP/Server 2003/Vista. The root cause is an unchecked buffer/unvalidated message lengths in the PE Loader service, leading to a potential remote code execution (buffer overflow) whe...

CVE-2006-4519

Multiple integer overflows in the image loader plug-ins in GIMP before 2.2.16 allow user-assisted remote attackers to execute arbitrary code via crafted length values in 1 DICOM, 2 PNM, 3 PSD, 4 PSP, 5 Sun RAS, 6 XBM, and 7 XWD files...

CVE-2006-4519

Multiple integer overflows in the image loader plug-ins in GIMP before 2.2.16 allow user-assisted remote attackers to execute arbitrary code via crafted length values in 1 DICOM, 2 PNM, 3 PSD, 4 PSP, 5 Sun RAS, 6 XBM, and 7 XWD files...

CVE-2006-4519

CVE-2006-4519 affects GIMP up to version 2.2.15 (pre-2.2.16); multiple integer overflows in the image loader plug-ins allow user-assisted remote attackers to execute arbitrary code via crafted length values in DICOM, PNM, PSD, PSP, Sun RAS, XBM, and XWD image files. Connected advisories reference...

CVE-2006-4519

Multiple integer overflows in the image loader plug-ins in GIMP before 2.2.16 allow user-assisted remote attackers to execute arbitrary code via crafted length values in 1 DICOM, 2 PNM, 3 PSD, 4 PSP, 5 Sun RAS, 6 XBM, and 7 XWD files...

CVE-2006-4519

Multiple integer overflows in the image loader plug-ins in GIMP before 2.2.16 allow user-assisted remote attackers to execute arbitrary code via crafted length values in 1 DICOM, 2 PNM, 3 PSD, 4 PSP, 5 Sun RAS, 6 XBM, and 7 XWD files...

MS07-040: Vulnerabilities in .NET Framework Could Allow Remote Code Execution (931212)

The remote host is running a version of the ASP.NET framework that contains multiple vulnerabilities : - A PE Loader vulnerability could allow an attacker to execute arbitrary code with the privileges of the logged-on user. - An ASP.NET NULL byte termination vulnerability could allow an attacker ...

GNU GLibC LD.SO Mask动态装载器整数溢出漏洞

Glibc是一款提供系统调用和基本函数的C库。 Glibc包含的动态装载器ld.so存在整数溢出，本地攻击者可以利用漏洞提升特权执行任意指令。 在动态装载器ld.so处理硬件'capabilities mask'时存在缺陷，如果'mask'被指定为一个高计数值，在分配内存时可导致整数溢出，可能以高特权执行任意指令。 GNU glibc 2.3.10 + Debian Linux 2.2 GNU glibc 2.3.4 GNU glibc 2.3.3 + MandrakeSoft apcupsd 2006.0 + MandrakeSoft Linux Mandrake 10.1 x8664...

[ GLSA 200707-04 ] GNU C Library: Integer overflow

Gentoo Linux Security Advisory GLSA 200707-04 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...

GLSA-200707-04 : GNU C Library: Integer overflow

The remote host is affected by the vulnerability described in GLSA-200707-04 GNU C Library: Integer overflow Tavis Ormandy of the Gentoo Linux Security Team discovered a flaw in the handling of the hardware capabilities mask by the dynamic loader. If a mask is specified with a high population...

GNU C integer overflow

Integer overflow in ld.so dynamic loader...

GNU C Library: Integer overflow

Background The GNU C library is the standard C library used by Gentoo Linux systems. It provides programs with basic facilities and interfaces to system calls. ld.so is the dynamic linker which prepares dynamically linked programs for execution by resolving runtime dependencies and related...

RHEL 4 / 5 : gimp (RHSA-2007:0343)

The remote Redhat Enterprise Linux 4 / 5 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2007:0343 advisory. The GIMP GNU Image Manipulation Program is an image composition and editing program. Marsu discovered a stack overflow bug in The GIMP RAS file...

CentOS 3 / 4 / 5 : gimp (CESA-2007:0343)

Updated gimp packages that fix a security issue are now available for Red Hat Enterprise Linux. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The GIMP GNU Image Manipulation Program is an image composition and editing program. Marsu discovere...