Microsoft Internet Explorer DHTML Method Buffer Overflow Vulnerability

Description Microsoft Internet Explorer is prone to a heap-based buffer-overflow vulnerability caused by a boundary condition error that is exposed when passing data to the 'createControlRange' DHTML method. As a result, heap-based memory can be corrupted with attacker-supplied data. An attacker...

Firebird 1.0 - Remote Database Name Buffer Overrun

Firebird 1.0 - Remote Database Name Buffer Overrun source: https://www.securityfocus.com/bid/10446/info Firebird is reported prone to a remote buffer-overrun vulnerability. The issue occurs because the application fails to perform sufficient boundary checks when the database server is handling...

[Full-Disclosure] [SECURITY] [DSA 494-1] New ident2 packages fix buffer overflow

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 494-1 [email protected] http://www.debian.org/security/ Matt Zimmerman April 21st, 2004 http://www.debian.org/security/faq -...

GNU Anubis 3.6.x3.9.x - Multiple Format String Vulnerabilities

GNU Anubis 3.6.x3.9.x - Multiple Format String Vulnerabilities source: https://www.securityfocus.com/bid/9772/info GNU Anubis has been reported prone to multiple buffer overflow and format string vulnerabilities. It has been conjectured that a remote attacker may potentially exploit these...

PBLang 4.04.56 Bulletin Board System - IMG Tag HTML Injection

PBLang 4.04.56 Bulletin Board System - IMG Tag HTML Injection source: https://www.securityfocus.com/bid/8286/info PBLang is prone to an HTML injection vulnerability. An attacker may exploit this issue by including hostile HTML and script code encapsulated in PBLang tags, when posting to the...

Gallery 1.2/1.3.x - Search Engine Cross-Site Scripting

source: https://www.securityfocus.com/bid/8288/info Gallery is prone to a cross-site scripting vulnerability. This issue is present in the search engine facility provided by the software. An attacker could exploit this issue by constructing a malicious link to the search engine that contains...

Tripbit Secure Code Analizer 1.0 - 'fgets()' Local Buffer Overrun

// source: https://www.securityfocus.com/bid/8028/info A buffer overrun has been discovered in Tripbit Secure Code Analizer when reading data from source files. The problem occurs due to an insecure use of the fgets function. This vulnerability could be triggered by a malicious source file...

Abuse-SDL 0.7 - Command Line Argument Buffer Overflow

Abuse-SDL 0.7 - Command Line Argument Buffer Overflow // source: https://www.securityfocus.com/bid/7982/info A buffer overflow vulnerability has been reported for Abuse-SDL that may result in the execution of attacker-supplied code. The vulnerability exists due to insufficient bounds checking...

Libopt.a 3.1x - Error Logging Buffer Overflow (2)

source: https://www.securityfocus.com/bid/7433/info Libopt library has been reported prone to a buffer overflow vulnerability. It has been reported that several Libopt.a error logging functions, may be prone to buffer overflow vulnerabilities when handling excessive data. The data may be supplied...

moxftp 2.2 - Banner Parsing Buffer Overflow

source: https://www.securityfocus.com/bid/6921/info A buffer overflow vulnerability has been reported for moxftp. The vulnerability occurs when moxftp is parsing 'Welcome' banner messages from remote FTP servers. When moxftp receives an overly long FTP banner, it will trigger the overflow...

AlsaPlayer 0.99.71 - Local Buffer Overflow

// source: https://www.securityfocus.com/bid/5767/info Alsaplayer is a PCM player that utilizes the ALSA libraries and drivers. It is availabe for Linux and Unix platforms. A vulnerability has been discovered in Alsaplayer. By specifying an overly long "add-on path", it is possible for an attacke...

ShoutBox 1.2 - 'Form' HTML Injection

source: https://www.securityfocus.com/bid/5354/info shoutBOX does not sufficiently sanitize HTML tags from input supplied via form fields. Attackers may exploit this lack of input validation to inject arbitrary HTML and script code into pages that are generated by the script. This may result in...

Security Bulletin MS02-027: Unchecked Buffer in Gopher Protocol Handler Can Run Code of Attacker''s Choice (Q323889)

Title: Unchecked Buffer in Gopher Protocol Handler Can Run Code of Attacker's Choice Q323889 Date: 11 June 2002 Software: Internet Explorer, Proxy Server, Internet Security and Acceleration Server Impact: Run Code of Attacker's Choice Max Risk: Critical Bulletin: MS02-027 Microsoft encourages...

Security Bulletin MS02-007

---------------------------------------------------------------------- Title: SQL Server Remote Data Source Function Contain Unchecked Buffers Date: 20 February 2002 Software: Microsoft SQL Server Impact: Run code of attacker's choice on server Max Risk: Moderate Bulletin: MS02-007 Microsoft...

Microsoft Windows XP - HCP URI Buffer Overflow

Microsoft Windows XP - HCP URI Buffer Overflow source: https://www.securityfocus.com/bid/6802/info A buffer overrun vulnerability was reported for helpctr.exe. The vulnerability exists due to insufficient bounds checking on input supplied via the HCP URI parameter. An attacker can exploit this...

Security Bulletin MS01-050

---------------------------------------------------------------------- Title: Malformed Excel or PowerPoint Document Can Bypass Macro Security Date: 04 October 2001 Software: Microsoft Excel or PowerPoint for Windows or Macintosh Impact: Run Code Of Attacker's Choice Bulletin: MS01-050 Microsoft...