654 matches found
UBUNTU-CVE-2009-4652
The 1 ConnGetCipherInfo and 2 ConnUsesSSL functions in src/ngircd/conn.c in ngIRCd 13 and 14, when SSL/TLS support is present and standalone mode is disabled, allow remote attackers to cause a denial of service application crash by sending the MOTD command from another server in the same IRC...
CVE-2009-4652
The 1 ConnGetCipherInfo and 2 ConnUsesSSL functions in src/ngircd/conn.c in ngIRCd 13 and 14, when SSL/TLS support is present and standalone mode is disabled, allow remote attackers to cause a denial of service application crash by sending the MOTD command from another server in the same IRC...
Command injection
The 1 ConnGetCipherInfo and 2 ConnUsesSSL functions in src/ngircd/conn.c in ngIRCd 13 and 14, when SSL/TLS support is present and standalone mode is disabled, allow remote attackers to cause a denial of service application crash by sending the MOTD command from another server in the same IRC...
CVE-2009-4652
The CVE concerns ngIRCd (versions 13–14). When SSL/TLS is enabled and standalone mode is disabled, the functions Conn_GetCipherInfo and Conn_UsesSSL in src/ngircd/conn.c can allow remote attackers to trigger a denial of service (application crash) by sending the MOTD command from another server o...
CVE-2009-4652
The 1 ConnGetCipherInfo and 2 ConnUsesSSL functions in src/ngircd/conn.c in ngIRCd 13 and 14, when SSL/TLS support is present and standalone mode is disabled, allow remote attackers to cause a denial of service application crash by sending the MOTD command from another server in the same IRC...
Debian DSA-1988-1 : qt4-x11 - several vulnerabilities
Several vulnerabilities have been discovered in qt4-x11, a cross-platform C++ application framework. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-0945 Array index error in the insertItemBefore method in WebKit, as used in qt4-x11, allows remote...
Mandriva Update for kernel MDVSA-2010:034-1 (kernel)
Check for the Version of kernel OpenVAS Vulnerability Test Mandriva Update for kernel MDVSA-2010:034-1 kernel Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
SuSE9 Security Update : the Linux kernel (YOU Patch Number 12578)
This update fixes various security issues and some bugs in the SUSE Linux Enterprise 9 kernel. - The collectrxframe function in drivers/isdn/hisax/hfcusb.c in the Linux kernel allows attackers to have an unspecified impact via a crafted HDLC packet that arrives over ISDN and triggers a buffer...
CVE-2010-0031
Array index error in Microsoft Office PowerPoint 2002 SP3 and 2003 SP3, and PowerPoint in Office 2004 for Mac, allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "PowerPoint OEPlaceholderAtom 'placementId' Invalid Array Indexing Vulnerability."...
CVE-2010-0031
Array index error in Microsoft Office PowerPoint 2002 SP3 and 2003 SP3, and PowerPoint in Office 2004 for Mac, allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "PowerPoint OEPlaceholderAtom 'placementId' Invalid Array Indexing Vulnerability."...
CVE-2009-4640
Array index error in vorbisdec.c in FFmpeg 0.5 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Vorbis file that triggers an out-of-bounds read...
DEBIAN-CVE-2009-4640
Array index error in vorbisdec.c in FFmpeg 0.5 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Vorbis file that triggers an out-of-bounds read...
CVE-2009-4640
FFmpeg 0.5 contains an array index error in vorbis_dec.c (CVE-2009-4640) that can be triggered by a crafted Vorbis file to cause a denial of service and possibly execute arbitrary code via an out-of-bounds read; this is documented across Mandriva advisories and OpenVAS entries, with patched relea...
CVE-2009-4640
Array index error in vorbisdec.c in FFmpeg 0.5 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Vorbis file that triggers an out-of-bounds read...
Mandriva Linux Security Advisory : kernel (MDVSA-2010:034)
Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel : Array index error in the gdthreadevent function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an...
Mandriva Update for kernel MDVSA-2010:030 (kernel)
Check for the Version of kernel OpenVAS Vulnerability Test Mandriva Update for kernel MDVSA-2010:030 kernel Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
kernel: gdth: Prevent negative offsets in ioctl
Array index error in the gdthreadevent function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request...
Important: Red Hat Security Advisory: kernel security and bug fix update
Updated kernel packages that fix multiple security issues and three bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...
Mandriva Linux Security Advisory : kernel (MDVSA-2010:030)
Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel : Array index error in the gdthreadevent function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an...
Integer overflow
Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as used in ncompress and probably others, allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted archive that uses LZW compression, leading t...