1417 matches found
Debian DSA-458-3 : python2.2 - buffer overflow
This security advisory corrects DSA 458-2 which caused a problem in the gethostbyaddr routine. The original advisory said : Sebastian Schmidt discovered a buffer overflow bug in Python's getaddrinfo function, which could allow an IPv6 address, supplied by a remote attacker via DNS, to overwrite...
Debian DSA-411-1 : mpg321 - format string vulnerability
A vulnerability was discovered in mpg321, a command-line mp3 player, whereby user-supplied strings were passed to printf3 unsafely. This vulnerability could be exploited by a remote attacker to overwrite memory, and possibly execute arbitrary code. In order for this vulnerability to be exploited,...
CVE-2003-0969
mpg321 0.2.10 allows remote attackers to overwrite memory and possibly execute arbitrary code via an mp3 file that passes certain strings to the printf function, possibly triggering a format string vulnerability...
CVE-2002-1420
Integer signedness error in select on OpenBSD 3.1 and earlier allows local users to overwrite arbitrary kernel memory via a negative value for the size parameter, which satisfies the boundary check as a signed integer, but is later used as an unsigned integer during a data copying operation...
DSA-458-3 python2.2 - buffer overflow
Bulletin has no description...
XV 3.x BMP Parsing Local Buffer Overflow Exploit
Exploit for linux platform in category remote exploits ======================================== Qt BMP Parsing Bug Heap Overflow Exploit ======================================== / heap overflow exploit for qt bmp parsing bug infamous42md AT hotpop DOT com shouts to mitakeet, MB, and peeps...
CVE-2004-0608
CVE-2004-0608 is a buffer-overflow in the Unreal Engine’s GameSpy secure query over UDP that, when a long secure query value is received, can overwrite memory and allow remote code execution. The impact covers Unreal Engine-based games such as Unreal Tournament 2004 (before 3236) and other titles...
[UNIX] Firebird Database Remote Database Name Overflow
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...
cvs pserver remote heap buffer overflow
Due to a programming error in code used to parse data received from the client, malformed data can cause a heap buffer to overflow, allowing the client to overwrite arbitrary portions of the server's memory. A malicious CVS client can exploit this to run arbitrary code on the server at the...
[Full-Disclosure] [SECURITY] [DSA 458-1] New python2.2 packages fix buffer overflow
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 458-1 [email protected] http://www.debian.org/security/ Matt Zimmerman March 9th, 2004 http://www.debian.org/security/faq -...
[Full-Disclosure] EEYE: RealSecure/BlackICE Server Message Block (SMB) Processing Overflow
RealSecure/BlackICE Server Message Block SMB Processing Overflow Release Date: February 26, 2004 Date Reported: February 18, 2004 Severity: High Remote Code Execution Vendor: Internet Security Systems Software Affected: RealSecure Network 7.0, XPU 20.15 through 22.9 Real Secure Server Sensor 7.0...
[Full-Disclosure] Lame crash in qmail-smtpd and memory overwrite according to gdb, yet still qmail much better than windows
Georgi Guninski security advisory 65, 2004 Lame crash in qmail-smtpd and memory overwrite according to gdb, yet still qmail much better than windows Systems affected: qmail 1.03 on linux, don't know about other OSes. Risk: Unknown. maybe so, maybe no. Date: 15 January 2004 Legal Notice: This...
[SECURITY] [DSA 411-1] New mpg321 packages fix format string vulnerability
-------------------------------------------------------------------------- Debian Security Advisory DSA 411-1 [email protected] http://www.debian.org/security/ Matt Zimmerman January 5th, 2004 http://www.debian.org/security/faq -...
DSA-411 mpg321 - format string vulnerability
Bulletin has no description...
GNU Indent 2.2.9 - Local Heap Overflow
GNU Indent 2.2.9 - Local Heap Overflow source: https://www.securityfocus.com/bid/9297/info It has been reported that GNU Indent may be prone to a local heap overflow vulnerability that can be exploited through a malicious C source input file. It has been reported that indent copies data from the...
GNU Indent 2.2.9 - Local Heap Overflow
source: https://www.securityfocus.com/bid/9297/info It has been reported that GNU Indent may be prone to a local heap overflow vulnerability that can be exploited through a malicious C source input file. It has been reported that indent copies data from the file to a 1000 byte long buffer without...
ezphotoshare.txt
eZphotoshare Multiple Overflow Vulnerabilities Credit: Author : Peter Winter-Smith Software: Package : eZphotoshare Versions : All up to and including the latest verson Vendor : eZnetwork Vendor Url : http://www.ezphotoshare.com/ Vulnerability: Bug Type : Multiple Interesting Overflows Severity :...
eZphotoshare Multiple Overflow Vulnerabilities
eZphotoshare Multiple Overflow Vulnerabilities Credit: Author : Peter Winter-Smith Software: Package : eZphotoshare Versions : All up to and including the latest verson Vendor : eZnetwork Vendor Url : http://www.ezphotoshare.com/ Vulnerability: Bug Type : Multiple Interesting Overflows Severity :...
eZphotoshare Multiple Overflow Vulnerabilities
eZphotoshare Multiple Overflow Vulnerabilities Credit: Author : Peter Winter-Smith Software: Package : eZphotoshare Versions : All up to and including the latest verson Vendor : eZnetwork Vendor Url : http://www.ezphotoshare.com/ Vulnerability: Bug Type : Multiple Interesting Overflows Severity :...
Solaris Runtime Linker (ld.so.1) Buffer Overflow Exploit (SPARC version)
Exploit for solaris platform in category local exploits ======================================================================== Solaris Runtime Linker ld.so.1 Buffer Overflow Exploit SPARC version ======================================================================== / ld.so.1 exploit SPARC...