106 matches found
dvipng: Multiple array index errors during DVI-to-PNG translation
Multiple array index errors in set.c in dvipng 1.11 and 1.12, and teTeX, allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a malformed DVI file...
GLSA-200903-34 : Amarok: User-assisted execution of arbitrary code
The remote host is affected by the vulnerability described in GLSA-200903-34 Amarok: User-assisted execution of arbitrary code Tobias Klein has discovered multiple vulnerabilities in Amarok: Multiple integer overflows in the Audible::Tag::readTag function in metadata/audible/audibletag.cpp trigge...
CVE-2009-0136
Multiple array index errors in the Audible::Tag::readTag function in metadata/audible/audibletag.cpp in Amarok 1.4.10 through 2.0.1 allow remote attackers to cause a denial of service application crash or execute arbitrary code via an Audible Audio .aa file with a crafted 1 nlen or 2 vlen Tag...
CVE-2009-0136
Multiple array index errors in the Audible::Tag::readTag function in metadata/audible/audibletag.cpp in Amarok 1.4.10 through 2.0.1 allow remote attackers to cause a denial of service application crash or execute arbitrary code via an Audible Audio .aa file with a crafted 1 nlen or 2 vlen Tag...
CVE-2009-0136
Multiple array index errors in the Audible::Tag::readTag function in metadata/audible/audibletag.cpp in Amarok 1.4.10 through 2.0.1 allow remote attackers to cause a denial of service application crash or execute arbitrary code via an Audible Audio .aa file with a crafted 1 nlen or 2 vlen Tag...
CVE-2009-0136
The CVE-2009-0136 issue affects Amarok 1.4.10–2.0.1 through an insecure parsing path in Audible Audio (.aa) files. Specifically, multiple array index errors in Audible::Tag::readTag (metadata/audible/audibletag.cpp) can lead to an invalid pointer dereference or writing a 0x00 byte, after an alloc...
CVE-2008-5674
Multiple array index errors in the HTTP server in Darkwet Network webcamXP 3.72.440.0 and earlier and beta 4.05.280 and earlier allow remote attackers to cause a denial of service device crash and read portions of memory via 1 an invalid camnum parameter to the pocketpc component and 2 an invalid...
CVE-2008-5674
Multiple array index errors in the HTTP server in Darkwet Network webcamXP 3.72.440.0 and earlier and beta 4.05.280 and earlier allow remote attackers to cause a denial of service device crash and read portions of memory via 1 an invalid camnum parameter to the pocketpc component and 2 an invalid...
Integer overflow
Microsoft Excel 2000 SP3, 2002 SP3, and 2003 SP2 and SP3 does not properly validate data in the VBA Performance Cache when processing an Office document with an embedded object, which allows remote attackers to execute arbitrary code via an Excel file containing a crafted value, leading to...
CVE-2008-3477
CVE-2008-3477 affects Microsoft Excel 2000 SP3, 2002 SP3, and 2003 SP2/SP3, in which the VBA Performance Cache handling of embedded objects can be abused to execute arbitrary code. The root cause is from heap-based and other memory corruptions (overflow/invalid indexing) when processing an object...
CVE-2007-5756
Multiple array index errors in the bpffilterinit function in NPF.SYS in WinPcap before 4.0.2, when run in monitor mode aka Table Management Extensions or TME, and as used in Wireshark and possibly other products, allow local users to gain privileges via crafted IOCTL requests...
Code injection
Multiple array index errors in the bpffilterinit function in NPF.SYS in WinPcap before 4.0.2, when run in monitor mode aka Table Management Extensions or TME, and as used in Wireshark and possibly other products, allow local users to gain privileges via crafted IOCTL requests...
CVE-2007-5756
CVE-2007-5756 : A local privilege-escalation flaw in WinPcap’s NPF.SYS driver (bpf_filter_init) arises from multiple array-indexing errors when handling IOCTLs, allowing crafted IOCTL requests to gain kernel-mode privileges. Affected: WinPcap up to version 4.0.1 (and variants used by Wireshark). ...
CVE-2007-5756
Multiple array index errors in the bpffilterinit function in NPF.SYS in WinPcap before 4.0.2, when run in monitor mode aka Table Management Extensions or TME, and as used in Wireshark and possibly other products, allow local users to gain privileges via crafted IOCTL requests...
KLA10395 LPE vulnerability in WinPcap
Array index errors were found in WinPcap. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally via a specially designed IOCTL request. Original advisories WinPcap changelog Related products WinPcap CVE list CVE-2007-5756 high Solution...
Design/Logic Flaw
Multiple array index errors in the 1 getintrablock, 2 getinterblockh263, and 3 getinterblockmpeg functions in src/bitstream/mbcoding.c in Xvid 1.1.2 allow remote attackers to execute arbitrary code via a crafted a Avi, b H.263, or c MPEG file...
CVE-2007-3329
Multiple array index errors in the 1 getintrablock, 2 getinterblockh263, and 3 getinterblockmpeg functions in src/bitstream/mbcoding.c in Xvid 1.1.2 allow remote attackers to execute arbitrary code via a crafted a Avi, b H.263, or c MPEG file...
CVE-2007-3329
Multiple array index errors in the 1 getintrablock, 2 getinterblockh263, and 3 getinterblockmpeg functions in src/bitstream/mbcoding.c in Xvid 1.1.2 allow remote attackers to execute arbitrary code via a crafted a Avi, b H.263, or c MPEG file...
CVE-2007-3329
Multiple array index errors in the 1 getintrablock, 2 getinterblockh263, and 3 getinterblockmpeg functions in src/bitstream/mbcoding.c in Xvid 1.1.2 allow remote attackers to execute arbitrary code via a crafted a Avi, b H.263, or c MPEG file...
CVE-2007-3329
Xvid 1.1.2 has array indexing vulnerabilities in mbcoding.c (get_intra_block, get_inter_block_h263, get_inter_block_mpeg) that allow remote code execution via crafted AVI/H.263/MPEG files; Gentoo GLSA 200708-02 recommends upgrading to >= xvid-1.1.3 as remediation. No exploitable details beyond...