85 matches found
SUSE-SU-2015:2110-1 Security update for LibVNCServer
The libvncserver package was updated to fix the following security issues: - bsc897031: fix several security issues: CVE-2014-6051: Integer overflow in MallocFrameBuffer on client side. CVE-2014-6052: Lack of malloc return value checking on client side. CVE-2014-6053: Server crash on a very large...
Updated pcre packages fix security vulnerabilities
Updated pcre packages fix security vulnerabilities: The pcre package has been updated to the latest CVS as of September 2, 2015, aka 8.38-RC1, which fixes several bugs, including many buffer, stack, and integer overflows...
MGASA-2015-0343 Updated pcre packages fix security vulnerabilities
Updated pcre packages fix security vulnerabilities: The pcre package has been updated to the latest CVS as of September 2, 2015, aka 8.38-RC1, which fixes several bugs, including many buffer, stack, and integer overflows...
Updated squashfs-tools packages fix security vulnerabilities
Updated squashfs-tools package fixes security vulnerabilities: The unsquashfs command from squashfs-tools is vulnerable to integer CVE-2015-4645 and stack CVE-2015-4646 overflows...
Fedora 22 : testdisk-7.0-2.fc22 (2015-6892)
TestDisk 7.0 fixes several stack overflows. The new photorec is faster. qphotorec is a qt4 version of PhotoRec. Full release notes: http://www.cgsecurity.org/wiki/TestDisk7.0Release Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security...
libvncserver -- multiple security vulnerabilities
Nicolas Ruff reports: Integer overflow in MallocFrameBuffer on client side. Lack of malloc return value checking on client side. Server crash on a very large ClientCutText message. Server crash when scaling factor is set to zero. Multiple stack overflows in File Transfer feature...
WinRAR <= 3.60 beta 6 (SFX Path) Local Stack Overflow Exploit
No description provided by source. WinRAR - Stack Overflows in SelF - eXtracting Archives ====================================================== Tested Versions..: WinRAR 3.60 beta 4 Original Author.............: posidron Shellcode Stuffing .........: muts import os, sys winrar = 'C:\WinRAR.exe'...
SuSE 11.2 / 11.3 Security Update : lcms (SAT Patch Numbers 8424 / 8425)
The lcms userland utilities were updated to fix stack overflows. - Multiple stack-based buffer overflows in LittleCMS allowed remote attackers to cause a denial of service crash via a crafted 1 ICC color profile to the icctrans utility or 2 TIFF image to the tiffdiff utility. CVE-2013-4276...
FreeBSD : libzrtpcpp -- multiple security vulnerabilities (04320e7d-ea66-11e2-a96e-60a44c524f57)
Mark Dowd reports : Vulnerability 1. Remote Heap Overflow: If an attacker sends a packet larger than 1024 bytes that gets stored temporarily which occurs many times - such as when sending a ZRTP Hello packet, a heap overflow will occur, leading to potential arbitrary code execution on the...
libzrtpcpp -- multiple security vulnerabilities
Mark Dowd reports: Vulnerability 1. Remote Heap Overflow: If an attacker sends a packet larger than 1024 bytes that gets stored temporarily which occurs many times - such as when sending a ZRTP Hello packet, a heap overflow will occur, leading to potential arbitrary code execution on the vulnerab...
Fedora 18 : asterisk-11.2.0-1.fc18 (2013-1003)
The Asterisk Development Team has announced the release of Asterisk 11.2.0. This release is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk The release of Asterisk 11.2.0 resolves several issues reported by the community and would have not been possible...
QuickTime < 7.7.2 Multiple Vulnerabilities
Binary data 6489.prm...
CVE-2012-0663
Multiple stack-based buffer overflows in Apple QuickTime before 7.7.2 on Windows allow remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted TeXML file...
Opera < 11.52 Multiple Vulnerabilities
Binary data 800854.prm...
Vulnerabilities in Sunway ForceControl 6.1 sp3 (SCADA)
Luigi Auriemma Application: Sunway ForceControl http://www.sunwayland.com.cn/pro.asp Versions: = 6.1 sp3 with AngelServer and WebServer updated Platforms: Windows Bugs: various stack overflows directory traversals third party ActiveX code execution various Denials of Service Exploitation: remote...
sunway ForceControl 6.1 sp3 - Multiple Vulnerabilities
sunway ForceControl 6.1 sp3 - Multiple Vulnerabilities Luigi Auriemma Application: Sunway ForceControl http://www.sunwayland.com.cn/pro.asp Versions: B9 19000000 MOV ECX,19 004022E6 . 33C0 XOR EAX,EAX 004022E8 . 8D7C24 24 LEA EDI,DWORD PTR SS:ESP+24 004022EC . 83FE 64 CMP ESI,64 ; our value...
Adobe Acrobat < 10.1.1 / 9.4.6 / 8.3.1 Multiple Vulnerabilities (APSB11-21, APSB11-24)
The version of Adobe Acrobat installed on the remote host is earlier than 10.1.1 / 9.4.6 / 8.3.1. It is, therefore, potentially affected by the following vulnerabilities : - An unspecified error exists that can allow an attacker to bypass security leading to code execution. CVE-2011-2431 - Severa...
ChemViewX v1.9.5 ActiveX Control Mutliple Stack Overflows
, , . .' '. ', . , '. , ., , / / / ==/ / / / / / / | Y Y / /| / /||| / / /.-. / /:wq x.0 '=.|w|.=' ='"=. presents.. ChemviewX ActiveX Control Multiple Stack Overflows Versions affected: v1.9.5 +-----------+ |Description| +-----------+ Hyleos ChemviewX is a free ActiveX control used to visualize...
Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : enscript vulnerability (USN-660-1)
Ulf Harnhammar discovered multiple stack overflows in enscript's handling of special escape arguments. If a user or automated system were tricked into processing a malicious file with the '-e' option enabled, a remote attacker could execute arbitrary code or cause enscript to crash, possibly...
Ubuntu: Security Advisory (USN-660-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...