CVE-2012-5512

CVE-2012-5512 affects Xen 4.1 via an array index error in the HVMOP_set_mem_access handler, enabling local HVM guests admins to crash the host or leak information. The provided documents confirm the vulnerability and impact but do not specify a fixed version or patch in these sources. No exploita...

CVE-2012-5512

Array index error in the HVMOPsetmemaccess handler in Xen 4.1 allows local HVM guest OS administrators to cause a denial of service crash or obtain sensitive information via unspecified vectors...

CVE-2012-5512

Array index error in the HVMOPsetmemaccess handler in Xen 4.1 allows local HVM guest OS administrators to cause a denial of service crash or obtain sensitive information via unspecified vectors...

Fedora 17 : net-snmp-5.7.1-5.fc17 (2012-16662)

This update fixes : - Array index error, leading to out-of heap-based buffer read CVE-2012-2141 - Size values in hrStorageTable and hrFSTable. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

CVE-2012-4176

Array index error in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors...

Code injection

Array index error in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors...

CVE-2012-4176

CVE-2012-4176 affects Adobe Shockwave Player prior to 11.6.8.638. An array index error in the plugin can allow remote arbitrary code execution. The vulnerability is triggered by processing a crafted Shockwave file, with no user interaction required in the referenced descriptions. The patched vers...

CVE-2012-4176

Array index error in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors...

[SECURITY] [DSA 2552-1] tiff security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2552-1 [email protected] http://www.debian.org/security/ Luciano Bello September 26, 2012 http://www.debian.org/security/faq -...

DSA-2552-1 tiff - several

Bulletin has no description...

CVE-2012-4405

Multiple integer underflows in the icmLutallocate function in International Color Consortium ICC Format library icclib, as used in Ghostscript 9.06 and Argyll Color Management System, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted 1...

Integer overflow

Multiple integer underflows in the icmLutallocate function in International Color Consortium ICC Format library icclib, as used in Ghostscript 9.06 and Argyll Color Management System, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted 1...

CVE-2012-4405

Multiple integer underflows in the icmLutallocate function in International Color Consortium ICC Format library icclib, as used in Ghostscript 9.06 and Argyll Color Management System, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted 1...

RHEL 5 / 6 : ghostscript (RHSA-2012:1256)

The remote Redhat Enterprise Linux 5 / 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2012:1256 advisory. - ghostscript, argyllcms: Array index error leading to heap-based bufer OOB write CVE-2012-4405 Note that Nessus has not tested for this issue bu...

argyllcms: Array index error leading to heap-based bufer OOB write

Multiple integer underflows in the icmLutallocate function in International Color Consortium ICC Format library icclib, as used in Ghostscript 9.06 and Argyll Color Management System, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted 1...

Moderate: Red Hat Security Advisory: tetex security update

Updated tetex packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

CVE-2012-4357

Array index error in Sielco Sistemi Winlog Pro SCADA before 2.07.17 and Winlog Lite SCADA before 2.07.17 might allow remote attackers to execute arbitrary code by referencing, within a port-46824 TCP packet, an invalid file-pointer index that leads to execution of an EnterCriticalSection code blo...

CVE-2012-4357

Array index error in Sielco Sistemi Winlog Pro SCADA before 2.07.17 and Winlog Lite SCADA before 2.07.17 might allow remote attackers to execute arbitrary code by referencing, within a port-46824 TCP packet, an invalid file-pointer index that leads to execution of an EnterCriticalSection code blo...

CVE-2012-4295

Array index error in the channelisedfillsdhg707format function in epan/dissectors/packet-erf.c in the ERF dissector in Wireshark 1.8.x before 1.8.2 might allow remote attackers to cause a denial of service application crash via a crafted speed aka rate value...

DEBIAN-CVE-2012-4295

Array index error in the channelisedfillsdhg707format function in epan/dissectors/packet-erf.c in the ERF dissector in Wireshark 1.8.x before 1.8.2 might allow remote attackers to cause a denial of service application crash via a crafted speed aka rate value...