503 matches found
CVE-2010-20010
CVE-2010-20010 affects Foxit PDF Reader prior to 4.2.0.0928. The flaw is a buffer overflow in the /Title entry of the PDF Info dictionary, caused by not properly bound-checking an overlong Title string, which can corrupt the SEH chain and allow arbitrary code execution in the user context. Public...
CVE-2011-10025
Subtitle Processor 7.7.1 contains a buffer overflow vulnerability in its .m3u file parser. When a crafted playlist file is opened, the application converts input to Unicode and copies it to a fixed-size stack buffer without proper bounds checking. This allows an attacker to overwrite the Structur...
CVE-2011-10022
SPlayer version 3.7 and earlier is vulnerable to a stack-based buffer overflow when processing HTTP responses containing an overly long Content-Type header. The vulnerability occurs due to improper bounds checking on the header value, allowing an attacker to overwrite the Structured Exception...
CVE-2011-10021
Magix Musik Maker 16 is vulnerable to a stack-based buffer overflow due to improper handling of .mmm arrangement files. The vulnerability arises from an unsafe strcpy operation that fails to validate input length, allowing attackers to overwrite the Structured Exception Handler SEH. By crafting a...
CVE-2010-20042
Xion Audio Player versions 1.0.126 and prior are vulnerable to a Unicode-based stack buffer overflow triggered by opening a specially crafted .m3u playlist file. The file contains an overly long string that overwrites the Structured Exception Handler SEH chain, allowing an attacker to hijack...
CVE-2010-10014
Odin Secure FTP = 4.1 is vulnerable to a stack-based buffer overflow when parsing directory listings received in response to an FTP LIST command. A malicious FTP server can send an overly long filename in the directory listing, which overflows a fixed-size stack buffer in the client and overwrite...
CVE-2010-20042 Xion Audio Player ≤ 1.0.126 Unicode Stack Buffer Overflow
Xion Audio Player versions 1.0.126 and prior are vulnerable to a Unicode-based stack buffer overflow triggered by opening a specially crafted .m3u playlist file. The file contains an overly long string that overwrites the Structured Exception Handler SEH chain, allowing an attacker to hijack...
CVE-2010-20042 Xion Audio Player ≤ 1.0.126 Unicode Stack Buffer Overflow
Xion Audio Player versions 1.0.126 and prior are vulnerable to a Unicode-based stack buffer overflow triggered by opening a specially crafted .m3u playlist file. The file contains an overly long string that overwrites the Structured Exception Handler SEH chain, allowing an attacker to hijack...
CVE-2011-10025 Subtitle Processor 7.7.1 .m3u SEH Unicode Buffer Overflow
Subtitle Processor 7.7.1 contains a buffer overflow vulnerability in its .m3u file parser. When a crafted playlist file is opened, the application converts input to Unicode and copies it to a fixed-size stack buffer without proper bounds checking. This allows an attacker to overwrite the Structur...
CVE-2011-10025
Subtitle Processor 7.7.1 contains a buffer overflow vulnerability in its .m3u file parser. When a crafted playlist file is opened, the application converts input to Unicode and copies it to a fixed-size stack buffer without proper bounds checking. This allows an attacker to overwrite the Structur...
CVE-2011-10025
Subtitle Processor 7.7.1 contains a buffer overflow in the .m3u file parser. A crafted playlist triggers Unicode conversion and copies input to a fixed-size stack buffer, allowing overwriting the Structured Exception Handler (SEH) and enabling arbitrary code execution. Root cause: insufficient bo...
CVE-2011-10025 Subtitle Processor 7.7.1 .m3u SEH Unicode Buffer Overflow
Subtitle Processor 7.7.1 contains a buffer overflow vulnerability in its .m3u file parser. When a crafted playlist file is opened, the application converts input to Unicode and copies it to a fixed-size stack buffer without proper bounds checking. This allows an attacker to overwrite the Structur...
CVE-2011-10022 SPlayer 3.7 Content-Type Header Buffer Overflow
SPlayer version 3.7 and earlier is vulnerable to a stack-based buffer overflow when processing HTTP responses containing an overly long Content-Type header. The vulnerability occurs due to improper bounds checking on the header value, allowing an attacker to overwrite the Structured Exception...
CVE-2010-10014
Odin Secure FTP = 4.1 is vulnerable to a stack-based buffer overflow when parsing directory listings received in response to an FTP LIST command. A malicious FTP server can send an overly long filename in the directory listing, which overflows a fixed-size stack buffer in the client and overwrite...
CVE-2010-10014
CVE-2010-10014 affects Odin Secure FTP prior to or equal to 4.1. A stack-based buffer overflow occurs when parsing the LIST response directory listings, where a long filename overflows a fixed-size stack buffer and can overwrite SEH, enabling remote code execution on the client. The vulnerability...
CVE-2011-10021
Magix Musik Maker 16 is affected by a stack-based buffer overflow when processing .mmm files due to an unsafe strcpy() that fails to validate input length, allowing an attacker to overwrite the Structured Exception Handler (SEH). Exploitation is triggered by opening a crafted .mmm file and can le...
CVE-2011-10021 Magix Musik Maker <= v16 .mmm Stack-Based Buffer Overflow
Magix Musik Maker 16 is vulnerable to a stack-based buffer overflow due to improper handling of .mmm arrangement files. The vulnerability arises from an unsafe strcpy operation that fails to validate input length, allowing attackers to overwrite the Structured Exception Handler SEH. By crafting a...
CVE-2011-10021 Magix Musik Maker <= v16 .mmm Stack-Based Buffer Overflow
Magix Musik Maker 16 is vulnerable to a stack-based buffer overflow due to improper handling of .mmm arrangement files. The vulnerability arises from an unsafe strcpy operation that fails to validate input length, allowing attackers to overwrite the Structured Exception Handler SEH. By crafting a...
CVE-2010-20049
LeapFTP 3.1.x contains a stack-based buffer overflow vulnerability in its FTP client parser. When the client receives a directory listing containing a filename longer than 528 bytes, the application fails to properly bound-check the input and overwrites the Structured Exception Handler SEH chain...
CVE-2010-20049
LeapFTP