25 matches found
Editran editcp 4.1 R7 Remote Buffer Overflow
=============================== - Advisory - =============================== Tittle: Editran editcp V4.1 R7 - Remote buffer overflow Risk: High Date: 25.Jun.2010 Author: Pedro Andujar .: INTRO :. EDItran Communications Platform: this is the market standard for the Spanish financial sector in the...
University of Washington IMAP 'tmail'和'dmail'本地缓冲区溢出漏洞
BUGTRAQ ID: 32072 CNCAN ID:CNCAN-2008110404 University of Washington IMAP是一款IMAP协议实现。 University of Washington IMAP包含的'tmail'和'dmail'存在缓冲区溢出,本地攻击者可以利用漏洞以应用程序权限执行任意指令。 'tmail'和'dmail'应用程序在从命令行中处理文件夹扩展参数时缺少正确的边界检查,通过提交超长文件夹名可触发基于栈的缓冲区溢出。tmail可允许以root用户权限执行任意指令。 有问题代码如下: tmail.cchar getusername char...
OpenOffice WMF和EMF文件处理堆缓冲区溢出漏洞
BUGTRAQ ID: 31962 CVE ID:CVE-2008-2237 CVE-2008-2238 CNCVE ID:CNCVE-20082237 CNCVE-20082238 OpenOffice是一款开放源代码的文字处理程序。 OpenOffice处理WMF和EMF文件存在缓冲区溢出,远程攻击者可以利用漏洞以应用程序权限执行任意指令。 目前没有详细的漏洞细节提供。构建特殊的WMF和EMF文件可触发基于堆的溢出。 OpenOffice OpenOffice 2.4.1 OpenOffice OpenOffice 2.3.1 OpenOffice OpenOffice 2.3...
Moderate: Red Hat Security Advisory: tcltk security update
Updated tcltk packages that fix a security issue are now available for Red Hat Enterprise Linux 2.1, and 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Tcl is a scripting language designed for embedding into other applications and for use...
SquirrelMail GPGP Encryption Plugin 2.02.1 - Access Validation Input Validation
SquirrelMail GPGP Encryption Plugin 2.02.1 - Access Validation Input Validation source: https://www.securityfocus.com/bid/26788/info The G/PGP encryption plugin for SquirrelMail is prone to an input-validation vulnerability and an access-validation vulnerability. Attackers can exploit these issue...