9059 matches found
CVE-2006-1168
The decompress function in compress42.c in 1 ncompress 4.2.4 and 2 liblzw allows remote attackers to cause a denial of service crash, and possibly execute arbitrary code, via crafted data that leads to a buffer underflow...
DEBIAN-CVE-2006-1168
The decompress function in compress42.c in 1 ncompress 4.2.4 and 2 liblzw allows remote attackers to cause a denial of service crash, and possibly execute arbitrary code, via crafted data that leads to a buffer underflow...
CVE-2006-1168
CVE-2006-1168 is referenced in the MiracleLinux Nessus advisories for BusyBox packages (MiracleLinux 3/4). The initial CVE description states: the decompress function in compress42.c of ncompress 4.2.4 and liblzw can be exploited by crafted data to cause a denial of service (crash) and possibly e...
CVE-2006-1168
The decompress function in compress42.c in 1 ncompress 4.2.4 and 2 liblzw allows remote attackers to cause a denial of service crash, and possibly execute arbitrary code, via crafted data that leads to a buffer underflow...
[SECURITY] [DSA 1149-1] New ncompress packages fix potential code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 1149-1 [email protected] http://www.debian.org/security/ Martin Schulze August 10th, 2006 http://www.debian.org/security/faq -...
[ MDKSA-2006:140 ] - Updated ncompress packages fix vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDKSA-2006:140 http://www.mandriva.com/security/ Package : ncompress Date : August 9, 2006 Affected: 2006.0, Corporate 3.0 Problem Description: Tavis Ormandy, of the Google Security Team, discovered that ncompress, whe...
DSA-1149-1 ncompress - buffer underflow
Bulletin has no description...
CVE-2006-4024
The FESTAHESLoad function in pce/hes.c in Festalon 0.5.0 through 0.5.5 allows user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code via a negative LoadAddr value in a HES file, which is used as an offset in a memcpy operation and leads to a buffer underflo...
CVE-2006-4024
The FESTAHESLoad function in pce/hes.c in Festalon 0.5.0 through 0.5.5 allows user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code via a negative LoadAddr value in a HES file, which is used as an offset in a memcpy operation and leads to a buffer underflo...
CVE-2006-4024
The CVE-2006-4024 vulnerability affects Festalon (versions 0.5.0–0.5.5), where FESTAHES_Load in pce/hes.c accepts a negative LoadAddr in a HES file. This value is used as an offset in a memcpy, enabling a buffer underflow that can crash the process and potentially allow arbitrary code execution b...
php local buffer underflow could lead to arbitary code execution
Affected versions: php 5.1.4 and older, 4.4.3 and possibly older Cause: when php-s sscanf functions format argument contains argument swap and extra arguments are given like. sscanf'foo ','$1s',$bar then it reads an pointer to pointer to zval structure past the end of argument array by one. Php...
security flaw
Heap-based buffer overflow in Mozilla Thunderbird before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to cause a denial of service crash via a VCard attachment with a malformed base64 field, which copies more data than expected due to an integer underflow...
CVE-2006-3768
CVE-2006-3768 affects FileCOPA FTP Server (filecpnt.exe) prior to version 1.01; an integer underflow on long directory arguments to CWD, DELE, MDTM, or MKD triggers a stack-based buffer overflow, enabling arbitrary code execution. CERT reports remote exploitation possible with anonymous access; S...
security flaw
Heap-based buffer overflow in Mozilla Thunderbird before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to cause a denial of service crash via a VCard attachment with a malformed base64 field, which copies more data than expected due to an integer underflow...
CVE-2006-3804
Heap-based buffer overflow in Mozilla Thunderbird before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to cause a denial of service crash via a VCard attachment with a malformed base64 field, which copies more data than expected due to an integer underflow...
CVE-2006-3804
Heap-based buffer overflow in Mozilla Thunderbird before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to cause a denial of service crash via a VCard attachment with a malformed base64 field, which copies more data than expected due to an integer underflow...
CVE-2006-3804
Heap-based buffer overflow in Mozilla Thunderbird before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to cause a denial of service crash via a VCard attachment with a malformed base64 field, which copies more data than expected due to an integer underflow...
CVE-2006-3824
systeminfo.c for Sun Solaris allows local users to read kernel memory via a 0 variable count argument to the sysinfo system call, which causes a -1 argument to be used by the copyout function. NOTE: this issue has been referred to as an integer overflow, but it is probably more like a signedness...
Heap buffer overwrite on malformed VCard — Mozilla
A VCard attachment with a malformed base64 field such as a photo can trigger a heap buffer overwrite. These have proven exploitable in the past, though in this case the overwrite is accompanied by an integer underflow that would attempt to copy more data than the typical machine has, leading to a...
RHEL 2.1 / 3 / 4 : freetype (RHSA-2006:0500)
Updated freetype packages that fix several security flaws are now available for Red Hat Enterprise Linux. This update has been rated as having moderate security impact by the Red Hat Security Response Team. FreeType is a free, high-quality, and portable font engine. Chris Evans discovered several...