Vulnerability Spotlight: TALOS-2018-0635/0636 - Sophos HitmanPro.Alert memory disclosure and code execution vulnerabilities

Marcin Noga of Cisco Talos discovered this vulnerability. Overview Cisco Talos is disclosing two vulnerabilities in Sophos HitmanPro.Alert, a malware detection and protection tool. Both vulnerabilities lie in the input/output control IOCTL message handler. One could allow an attacker to read kern...

libvncserver: Improper input sanitization in rfbProcessClientNormalMessage in rfbserver.c

An issue was discovered in LibVNCServer through 0.9.11. rfbProcessClientNormalMessage in rfbserver.c does not sanitize msg.cct.length, leading to access to uninitialized and potentially sensitive data or possibly unspecified other impact e.g., an integer overflow via specially crafted VNC packets...

Microsoft IIS WebDAV XML Message Handler Denial of Service (MS04-030; CVE-2003-0718)

The WebDAV protocol Web-based Distributed Authoring and Versioning is an extension to HTTP/1.1 that provides a capability for web page authoring over HTTP. The Microsoft WebDAV component is provided with Microsoft Internet Information Services Server IIS in order to provide support for WebDAV. Th...

DEBIAN-CVE-2005-3487

Multiple buffer overflows in Scorched 3D 39.1 bf and earlier allow remote attackers to execute arbitrary code via various 1 GLConsole::addLine, 2 ServerCommon::sendString, 3 ServerCommon::serverLog functions, 4 a long command that is not properly handled in ComsMessageHandler.cpp when generating ...

WM_TIMER Message Handler Privilege Elevation (Q328310)

A security issue has been identified in WMTIMER that could allow an attacker to compromise a computer running Microsoft Windows and gain complete control over it. Recommendation: Users using any of the affected products should install the patch immediately. Maximum Severity Rating: Critical...

CVE-2003-0718

The WebDAV Message Handler for Internet Information Services IIS 5.0, 5.1, and 6.0 allows remote attackers to cause a denial of service memory and CPU exhaustion, application crash via a PROPFIND request with an XML message containing XML elements with a large number of attributes...

Fedora Core 1 : libpng10-1.0.13-11 (2004-106)

Mon Apr 19 2004 Matthias Clasen - fix a possible out-of-bounds read in the error message handler. 121229 - Tue Mar 02 2004 Elliot Lee - rebuilt - Fri Feb 13 2004 Elliot Lee - rebuilt Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security...

Fedora Core 1 : libpng-1.2.2-20 (2004-105)

Mon Apr 19 2004 Matthias Clasen - fix a possible out-of-bounds read in the error message handler. 121229 - Tue Mar 02 2004 Elliot Lee - rebuilt - Fri Feb 27 2004 Mark McLoughlin 2:1.2.2-19 - rebuild with changed bits/setjmp.h on ppc - Fri Feb 13 2004 Elliot Lee - rebuilt Note that Tenable Network...

[Hat-Squad] Remote buffer overflow in Mdaemon Raw message Handler

Hat-Squad Security Team Advisory http://www.hat-squad.com Product: Alt-N Technologies Mdaemon Mail Server Version: MDaemon 6.85 and Below to 6.52 Vulnerability: Remote buffer overflow in Raw Message Handler Release Date: 12/29/2003 Vendor Status: Informed on 29 Dec 2003 Quick response on 29 Dec...