WeeChat: Denial of service

Background Wee Enhanced Environment for Chat WeeChat is a light and extensible console IRC client. Description Sebastien Helleu reported an array out-of-bounds error in the colored message handling. Impact A remote attacker could send a specially crafted PRIVMSG command, possibly leading to a...

Microsoft Office畸形记录远程代码执行漏洞（MS06-062）

Microsoft Office是非常流行的办公软件套件。 Office在处理文件中的畸形记录时存在漏洞，远程攻击者可能利用此漏洞在用户机器上执行任意指令。 Office的mso.dll在解析畸形的Office文件时可能会造成数组越界访问，进程执行流程重新定向到攻击者所提供的数据上。如果用户使用管理用户权限登录，成功利用此漏洞的攻击者便可完全控制受影响的系统。 Microsoft Office XP Microsoft Office v.X for Mac Microsoft Office 2004 for Mac Microsoft Office 2003 Microsoft Offi...

CVE-2005-3273

The rosertioctl function in roseroute.c for Radionet Open Source Environment ROSE in Linux 2.6 kernels before 2.6.12, and 2.4 before 2.4.29, does not properly verify the ndigis argument for a new route, which allows attackers to trigger array out-of-bounds errors with a large number of digipeats...

CVE-2005-3273

CVE-2005-3273 affects the ROSE (rose) packet router ioctl in the Linux kernel (ROSE code in rose_route.c) for 2.6 kernels before 2.6.12 and 2.4 before 2.4.29. The root cause is improper verification of the ndigis argument when creating a new route, which can trigger array out-of-bounds conditions...

CVE-2005-3273

The rosertioctl function in roseroute.c for Radionet Open Source Environment ROSE in Linux 2.6 kernels before 2.6.12, and 2.4 before 2.4.29, does not properly verify the ndigis argument for a new route, which allows attackers to trigger array out-of-bounds errors with a large number of digipeats...