642 matches found
Debian Security Advisory DSA 464-1 (gdk-pixbuf)
The remote host is missing an update to gdk-pixbuf announced via advisory DSA 464-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescripti...
Debian Security Advisory DSA 536-1 (libpng)
The remote host is missing an update to libpng announced via advisory DSA 536-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SuSE 10 Security Update : libpng (ZYPP Patch Number 3740)
Applications using libpng can crash if libpng is ask to process a grayscale image with a malformed bad CRC tRNS chunk. CVE-2007-2445 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...
SuSE 10 Security Update : libpng (ZYPP Patch Number 4627)
Speciall crafted png files could crash applications when attempting to open such a file. CVE-2007-5269 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid29509;...
openSUSE 10 Security Update : gtk2 (gtk2-2498)
A bug in gdk-pixbuf could crash applications such as Evolution when trying to display certain images CVE-2007-0010 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update gtk2-2498. The text descripti...
png -- multiple vulnerabilities
A Secunia Advisory reports: Some vulnerabilities have been reported in libpng, which can be exploited by malicious people to cause a DoS Denial of Service. Certain errors within libpng, including a logical NOT instead of a bitwise NOT in pngtrtran.c, an error in the 16bit cheap transparency...
Lighttpd 1.4.15 - Multiple Code Execution / Denial of Service / Information Disclosure Vulnerabilities
source: https://www.securityfocus.com/bid/24967/info Lighttpd is prone to multiple remote denial-of-service vulnerabilities, a code-execution vulnerability, and an information-disclosure vulnerability. An attacker can exploit these issues to execute arbitrary code, access sensitive information, o...
Mandrake Linux Security Advisory : gtk+2.0 (MDKSA-2007:039)
The GdkPixbufLoader function in GIMP ToolKit GTK+ in GTK 2 gtk2 allows context-dependent attackers to cause a denial of service crash via a malformed image file. CVE-2007-0010 The version of libgtk+2.0 shipped with Mandriva Linux 2007 fails various portions of the lsb-test-desktop test suite, par...
Microsoft Windows Media Player 6.4/10.0 - MID Malformed Header Chunk Denial of Service
source: https://www.securityfocus.com/bid/21612/info Multiple applications are prone to a denial-of-service vulnerability. A remote attacker may exploit this vulnerability by presenting malicious 'WMV', 'MID', and 'AVI' files to a victim user. When an affected application processes this image, th...
Windows Media Player ASX PlayList File Heap Overflow Vulnerability
Description Windows Media Player is prone to a heap-overflow issue. Successfully exploiting this issue allows remote attackers to execute arbitrary machine code in the context of the affected user. Failed exploit attempts likely result in application crashes. Technologies Affected Avaya Agent...
Skype emotions DoS
Application crashes on large number of emote icons...
Mandrake Linux Security Advisory : libungif (MDKSA-2005:207)
Several bugs have been discovered in the way libungif decodes GIF images. These allow an attacker to create a carefully crafted GIF image file in such a way that it could cause applications linked with libungif to crash or execute arbitrary code when the file is opened by the user. The updated...
MultiTheftAuto 0.5 - Multiple Vulnerabilities
// source: https://www.securityfocus.com/bid/14941/info MultiTheftAuto is prone to multiple vulnerabilities. The following issues were identified: The first issue can allow an attacker to gain unauthorized access to an administrative file. The second issue can allow an attacker to trigger a crash...
[slackware-security] libtiff
New libtiff packages are available for Slackware 8.1, 9.0, 9.1, 10.1, and -current to fix security issues that could lead to application crashes, or possibly execution of arbitrary code. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database:...
US-CERT Technical Cyber Security Alert TA04-217A -- Multiple Vulnerabilities in libpng
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Multiple Vulnerabilities in libpng Original release date: August 4, 2004 Last revised: -- Source: US-CERT Systems Affected Applications and systems that use the libpng library. Overview Several vulnerabilities exist in the libpng library, the most...
Sun Java Runtime Environment 1.4.x - Font Object Assertion Failure Denial of Service
source: https://www.securityfocus.com/bid/10623/info The Sun Java Runtime Environment Font object is reportedly vulnerable to an assertion failure denial of service vulnerability. This issue is due to a failure of the process to handle exceptional conditions when processing font objects. This iss...
ToCA Race Driver - Multiple Remote Denial of Service Vulnerabilities
source: https://www.securityfocus.com/bid/10492/info ToCA Race Driver is reportedly affected by multiple remote denial of service vulnerabilities. These issues are due to a failure of the application to handle exceptional network traffic. These issues may allow an attacker to cause the affected...
Multiple libuser bugs
Multiple bugs causing linked application to crash...
EMule Web 0.42 Control Panel - Denial of Service
EMule Web 0.42 Control Panel - Denial of Service source: https://www.securityfocus.com/bid/10317/info It has been reported that eMule's Web Control Panel is susceptible to a remote denial of service vulnerability. This issue is reportedly triggered by sending malformed requests to the web...
[Full-Disclosure] DreamFTP Server 1.02 Buffer Overflow
SP Research Labs Advisory x09 -------------------------------------------- DreamFTP 1.02 Buffer Overflow -------------------------------------------- Vendor Home Page: http://www.bolintech.com/ Date Released - 2.6.2004 --------------------------------------------------- Product Description from t...