654 matches found
CVE-2010-0001
Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as used in ncompress and probably others, allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted archive that uses LZW compression, leading t...
CVE-2010-0001
Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as used in ncompress and probably others, allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted archive that uses LZW compression, leading t...
CVE-2010-0001
Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as used in ncompress and probably others, allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted archive that uses LZW compression, leading t...
Mandriva Update for gzip MDVSA-2010:020 (gzip)
Check for the Version of gzip OpenVAS Vulnerability Test Mandriva Update for gzip MDVSA-2010:020 gzip Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
Mandriva Update for gzip MDVSA-2010:020 (gzip)
Check for the Version of gzip OpenVAS Vulnerability Test Mandriva Update for gzip MDVSA-2010:020 gzip Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
Mandriva Linux Security Advisory : gzip (MDVSA-2010:020)
Multiple vulnerabilities has been found and corrected in gzip : A missing input sanitation flaw was found in the way gzip used to decompress data blocks for dynamic Huffman codes. A remote attacker could provide a specially crafted gzip compressed data archive, which once opened by a local,...
VulnCheck KEV: CVE-2009-2990
Array index error in Adobe Reader and Acrobat 9.x before 9.2, 8.x before 8.1.7, and possibly 7.x through 7.1.4 might allow attackers to execute arbitrary code via unspecified vectors...
RHEL 5 : kernel (RHSA-2010:0046)
Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...
CVE-2010-0280
Array index error in Jan Eric Kyprianidis lib3ds 1.x, as used in Google SketchUp 7.x before 7.1 M2, allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via crafted structures in a 3DS file, probably related to mesh.c...
CVE-2010-0280
Vulnerability CVE-2010-0280 affects lib3ds (1.x) as used by Google SketchUp 7.x before 7.1 M2. Root cause: an array index error in lib3ds (mesh.c) can be triggered by crafted 3DS files, enabling remote memory corruption and potentially arbitrary code execution or DoS. Affected environments includ...
CVE-2010-0280
Array index error in Jan Eric Kyprianidis lib3ds 1.x, as used in Google SketchUp 7.x before 7.1 M2, allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via crafted structures in a 3DS file, probably related to mesh.c...
CVE-2010-0280
Array index error in Jan Eric Kyprianidis lib3ds 1.x, as used in Google SketchUp 7.x before 7.1 M2, allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via crafted structures in a 3DS file, probably related to mesh.c...
SuSE Update for kernel SUSE-SA:2010:001
Check for the Version of kernel OpenVAS Vulnerability Test SuSE Update for kernel SUSE-SA:2010:001 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
Adobe Shockwave
Allows remote attackers to execute arbitrary code via a crafted web page that triggers memory corruption, related to an “invalid string length vulnerability.” Array index error in Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via crafted Shockwave...
Design/Logic Flaw
Array index error in the gdthreadevent function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request...
CVE-2009-3080
Array index error in the gdthreadevent function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request...
CVE-2009-3080
Array index error in the gdthreadevent function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request...
CVE-2009-3080
CVE-2009-3080 affects the Linux kernel gdth driver (gdth_read_event in drivers/scsi/gdth.c). In kernels before 2.6.32-rc8, a negative event index in an IOCTL can allow local users to cause a denial of service or potentially gain privileges. MiracleLinux advisories cite this CVE as part of affecte...
CVE-2009-3080
Array index error in the gdthreadevent function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request...
CVE-2009-3463
Array index error in Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via crafted Shockwave content on a web site. NOTE: some of these details are obtained from third party information...