486 matches found
CentOS Update for libpng CESA-2015:2594 centos6
Check the version of libpng SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882335";...
libpng security update
CentOS Errata and Security Advisory CESA-2015:2594 Updated libpng packages that fix three security issues are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, whic...
libpng: Out-of-bounds read in png_convert_to_rfc1123
An array-indexing error was discovered in the pngconverttorfc1123 function of libpng. An attacker could possibly use this flaw to cause an out-of-bounds read by tricking an unsuspecting user into processing a specially crafted PNG image...
Moderate: Red Hat Security Advisory: libpng security update
Updated libpng packages that fix three security issues are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available for...
Amazon Linux: Security Advisory (ALAS-2015-600)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Low: libunwind
Issue Overview: An off-by-one array indexing error was found in the libunwind API, which could cause an error when reading untrusted binaries or dwarf debug info data. Affected Packages: libunwind Issue Correction: Run yum update libunwind or yum update --advisory ALAS-2015-600 to update your...
Low: Red Hat Security Advisory: libunwind security update
Updated libunwind packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Low security impact. A Common Vulnerability Scoring System CVSS base score, which...
Low: Red Hat Security Advisory: libunwind security update
Updated libunwind packages that fix a security flaw are now available for Red Hat Enterprise Linux OpenStack Platform 6.0. Red Hat Product Security has rated this update as having Low security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...
Firefox < 40 Multiple Vulnerabilities
The version of Firefox installed on the remote Windows host is prior to 40. It is, therefore, affected by the following vulnerabilities : - Multiple memory corruption issues exist that allow a remote attacker, via a specially crafted web page, to corrupt memory and potentially execute arbitrary...
Microsoft PowerPoint OEPlaceholderAtom Arbitrary Array Indexing - Ver2 (CVE-2010-0032)
Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. Multiple remote code execution vulnerabilities have been identified in Microsoft PowerPoint. The vulnerabilities are due to an invalid array indexing and to a use after free error in Microsoft PowerPoint...
Squid 3.x < 3.4.8 Multiple Vulnerabilities
Binary data 8634.prm...
Squid 3.x < 3.4.8 Multiple Vulnerabilities
According to its banner, the version of Squid running on the remote host is 3.x prior to 3.4.8. Therefore, it may be affected by the following vulnerabilities : - A off-by-one overflow flaw exists within the SNMP processing component. By using a specially crafted UDP SNMP request, a remote attack...
PHP 5.4.x < 5.4.34 / 5.5.x < 5.5.18 / 5.6.x < 5.6.2 Multiple Vulnerabilities
Binary data 8563.prm...
Apple Mac OS X Multiple Vulnerabilities -02 (Sep 2014)
Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OpenBSD 3.3/3.4 semctl/semop Local Unexpected Array Indexing Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9086/info A local OpenBSD kernel vulnerability has been discovered when handling the semctl and semop system calls. The problem specifically occurs due to improper sanity checking before handling a user-supplied semaphore...
Adobe Flash Player AVM Verification Logic Array Indexing Code Execution
No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit...
Google Chrome 4.1 OOB Array Indexing Bug
No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory: Google Chrome OOB Array Indexing Bug Advisory ID: TKADV2010-004 Revision: 1.0 Release Date: 2010/03/31 Last Modified: 2010/03/31 Date Reported: 2010/03/21 Author: Tobias Klein tk at trapkit.de Affected...
Ghost Recon Advanced Warfighter Integer Overflow and Array Indexing Overflow
No description provided by source. Source: http://aluigi.org/adv/grawful-adv.txt Luigi Auriemma Applications: Ghost Recon Advanced Warfighter Ghost Recon Advanced Warfighter 2 http://ghostrecon.us.ubi.com/graw2/ Versions: GRAW = 1.35 GRAW2 = 1.05 Platforms: Windows Bugs: A interger overflow B Arr...
GOM Media Player Denial of Service Vulnerability (Jun 2014) - Windows
GOM Media Player is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Schneider Electric ClearSCADA OPF File Parsing Out of Bounds Array Indexing (CVE-2014-0779)
A code execution vulnerability has been reported in Schneider Electric ClearSCADA. The vulnerability is due improper validation of a length parameter that is used to index an array in the OPF File parsing component. A remote attacker could exploit this vulnerability by enticing the target user to...