111 matches found
Session fixation
The pciregisteriommuregion function in arch/sparc/kernel/pcicommon.c in the Linux kernel before 2.6.29 on the sparc64 platform allows local users to cause a denial of service system crash by reading the /proc/iomem file, related to uninitialized pointers and the requestresource function...
CVE-2009-1914
The pciregisteriommuregion function in arch/sparc/kernel/pcicommon.c in the Linux kernel before 2.6.29 on the sparc64 platform allows local users to cause a denial of service system crash by reading the /proc/iomem file, related to uninitialized pointers and the requestresource function...
CVE-2009-1914
The pciregisteriommuregion function in arch/sparc/kernel/pcicommon.c in the Linux kernel before 2.6.29 on the sparc64 platform allows local users to cause a denial of service system crash by reading the /proc/iomem file, related to uninitialized pointers and the requestresource function...
CVE-2009-0219
The PDF distiller in the Attachment Service in Research in Motion RIM BlackBerry Enterprise Server BES 4.1.3 through 4.1.6, BlackBerry Professional Software 4.1.4, and BlackBerry Unite! before 1.0.3 bundle 28 performs delete operations on uninitialized pointers, which allows user-assisted remote...
CVE-2009-0219
The PDF distiller in the Attachment Service in Research in Motion RIM BlackBerry Enterprise Server BES 4.1.3 through 4.1.6, BlackBerry Professional Software 4.1.4, and BlackBerry Unite! before 1.0.3 bundle 28 performs delete operations on uninitialized pointers, which allows user-assisted remote...
Poppler 0.8.4 - libpoppler Uninitialized pointer Code Execution
Felipe Andres Manzano [email protected] updates in http://felipe.andres.manzano.googlepages.com/home ''' Sumary: ======= The libpoppler pdf rendering library, can free uninitialized pointers, leading to arbitrary code execution. This vulnerability results from memory management bugs in th...
poppler -- uninitialized pointer
Felipe Andres Manzano reports: The libpoppler pdf rendering library, can free uninitialized pointers, leading to arbitrary code execution. This vulnerability results from memory management bugs in the Page class constructor/destructor...
krb5: uninitialized pointer use in krb5kdc
KDC in MIT Kerberos 5 krb5kdc does not set a global variable for some krb4 message types, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via crafted messages that trigger a NULL pointer dereference or double-free...
VLC Player ActiveX code exectuion
Few uninitialized pointers references...
SUSE-SA:2007:004: krb5
The remote host is missing the patch for the advisory SUSE-SA:2007:004 krb5. Various bugs in the Kerberos5 libraries and tools were fixed which could be used by remote attackers to crash and potentially execute code in kadmind. - CVE-2006-6144 / MITKRB5-SA-2006-002: the RPC library could call an...
CVE-2006-6144
The "mechglue" abstraction interface of the GSS-API library for Kerberos 5 1.5 through 1.5.1, as used in Kerberos administration daemon kadmind and other products that use this library, allows remote attackers to cause a denial of service crash via unspecified vectors that cause mechglue to free...