167 matches found
Orb 2.0.01.0049 < 2.54.0018 - DirectShow Denial of Service
When Orb is first installed it registers several Direct Show filters with the system. When registered these filters are then called whenever a file which has a dependency on such a required filter is accessed. By specially crafting specific headers embedded into an mp3 file we can create a direct...
Orb Networks 2.54.18 - Orb Direct Show Filter .MP3 File Divide-by-Zero Denial of Service
Orb Networks 2.54.18 - Orb Direct Show Filter .MP3 File Divide-by-Zero Denial of Service source: https://www.securityfocus.com/bid/38549/info Orb Networks Orb is prone to a denial-of-service vulnerability when handling malformed '.mp3' files. Successfully exploiting this issue allows remote...
Orb Networks 2.54.18 - Orb Direct Show Filter '.MP3' File Divide-by-Zero Denial of Service
source: https://www.securityfocus.com/bid/38549/info Orb Networks Orb is prone to a denial-of-service vulnerability when handling malformed '.mp3' files. Successfully exploiting this issue allows remote attackers to deny service to legitimate users...
Orbitals.com Orbital Viewer .orb Stack Buffer Overflow (CVE-2010-0688)
Orbital Viewer is a picture viewer and a drawing tool. A stack buffer overflow vulnerability has been reported in Orbital Viewer. The vulnerability is due to a boundary error when processing malformed .orb files. A remote attacker can exploit this vulnerability by enticing a target user to open a...
CVE-2008-5645
Directory traversal vulnerability in the media server in Orb Networks Orb before 2.01.0022 allows remote attackers to read arbitrary files via directory traversal sequences in an HTTP GET request...
Directory traversal
Directory traversal vulnerability in the media server in Orb Networks Orb before 2.01.0022 allows remote attackers to read arbitrary files via directory traversal sequences in an HTTP GET request...
CVE-2008-5645
Directory traversal vulnerability in the media server in Orb Networks Orb before 2.01.0022 allows remote attackers to read arbitrary files via directory traversal sequences in an HTTP GET request...
CVE-2008-5645
CVE-2008-5645 affects Orb Networks Orb media server prior to 2.01.0022. The vulnerability is a directory traversal in the HTTP GET handling that allows remote attackers to read arbitrary files on the server (impact: read local files). Affected versions include 2.01.0021 and earlier. Some connecte...
KLA10285 RLF vulnerability in Orb
A directory traversal vulnerability was found in Orb. By exploiting this vulnerability malicious users can read arbitrary files. This vulnerability can be exploited remotely via a specially designed GET request. Original advisories - Related products Orb CVE list CVE-2008-5645 high Solution Updat...
Design/Logic Flaw
Unspecified vulnerability in the media server in Orb Networks Orb before 2.01.0025 allows remote attackers to cause a denial of service daemon crash via a malformed HTTP request...
CVE-2008-5564
Unspecified vulnerability in the media server in Orb Networks Orb before 2.01.0025 allows remote attackers to cause a denial of service daemon crash via a malformed HTTP request...
CVE-2008-5564
The vulnerability (CVE-2008-5564) affects Orb Networks Orb media server prior to version 2.01.0025. An attacker can trigger a denial of service by sending a malformed HTTP request, causing the media server daemon to crash. The documents do not specify an official fix version or detailed exploitat...
CVE-2008-5564
Unspecified vulnerability in the media server in Orb Networks Orb before 2.01.0025 allows remote attackers to cause a denial of service daemon crash via a malformed HTTP request...
Orb media server DoS
Crash on HTTP request parsing...
DDIVRT-2008-18 Orb Denial of Service
Title ----- DDIVRT-2008-18 Orb Denial of Service Severity -------- Medium Date Discovered --------------- October 21st 2008 Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: Steven James and r@b13$ Vulnerability Description ------------------------- Orb Network...
Integer overflow
Integer overflow in Orb Networks Orb 2.00.1014 and Winamp Remote BETA allows remote attackers to execute arbitrary code via an RPC request that specifies a large number of array dimensions, which triggers a heap-based buffer overflow...
CVE-2008-0070
Integer overflow in Orb Networks Orb 2.00.1014 and Winamp Remote BETA allows remote attackers to execute arbitrary code via an RPC request that specifies a large number of array dimensions, which triggers a heap-based buffer overflow...
CVE-2008-0070
CVE-2008-0070 affects Orb Networks Orb 2.00.1014 and Winamp Remote BETA. Root cause: integer overflow causing a heap-based buffer overflow when an RPC request specifies a very large number of array dimensions. Impact: remote code execution potential. Exploitation details are not provided in the d...
CVE-2008-0070
Integer overflow in Orb Networks Orb 2.00.1014 and Winamp Remote BETA allows remote attackers to execute arbitrary code via an RPC request that specifies a large number of array dimensions, which triggers a heap-based buffer overflow...
Orb Networks Orb RPC请求远程整数溢出漏洞
BUGTRAQ ID: 28431 CVECAN ID: CVE-2008-0070 Orb是用于提供MyCast功能的应用,MyCasting允许用户通过PC或其他internet连接设备访问相片、音乐、视频等数字内容。 Orb在处理RPC请求中所接收到的变量类型数组中维度数时存在整数溢出漏洞,如果用户在提交的请求中执行了超大的数组维度的话,就可能触发堆溢出,导致执行任意指令。 Orb Networks Orb 2.00.1014 Orb Networks ------------ 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...