EUVD-2009-0144

Malware in sbrugna...

SUSE CVE-2009-0136

Multiple array index errors in the Audible::Tag::readTag function in metadata/audible/audibletag.cpp in Amarok 1.4.10 through 2.0.1 allow remote attackers to cause a denial of service application crash or execute arbitrary code via an Audible Audio .aa file with a crafted 1 nlen or 2 vlen Tag...

CVE-2009-0136

Multiple array index errors in the Audible::Tag::readTag function in metadata/audible/audibletag.cpp in Amarok 1.4.10 through 2.0.1 allow remote attackers to cause a denial of service application crash or execute arbitrary code via an Audible Audio .aa file with a crafted 1 nlen or 2 vlen Tag...

CVE-2009-0135

Multiple integer overflows in the Audible::Tag::readTag function in metadata/audible/audibletag.cpp in Amarok 1.4.10 through 2.0.1 allow remote attackers to execute arbitrary code via an Audible Audio .aa file with a large 1 nlen or 2 vlen Tag value, each of which triggers a heap-based buffer...

Microsoft Reader 2.1.1.3143 - Integer Overflow (2)

Microsoft Reader 2.1.1.3143 - Integer Overflow 2 Source: http://aluigi.org/adv/msreader3-adv.txt Luigi Auriemma Application: Microsoft Reader http://www.microsoft.com/reader Versions: = 2.1.1.3143 PC version = 2.6.1.7169 Origami version the non-PC versions have not been tested Platforms: Windows,...

Microsoft Reader 2.1.1.3143 - Integer Overflow (1)

Source: http://aluigi.org/adv/msreader1-adv.txt Luigi Auriemma Application: Microsoft Reader http://www.microsoft.com/reader Versions: 8B7B 68 MOV EDI,DWORD PTR DS:EBX+68 01083071 |. 8BF7 MOV ESI,EDI 01083073 |. C...

Mandriva Security Advisory MDVSA-2009:030-1 (amarok)

The remote host is missing an update to amarok announced via advisory MDVSA-2009:030-1. OpenVAS Vulnerability Test $Id: mdksa20090301.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:030-1 amarok Authors: Thomas Reinke Copyright: Copyright c 2009 E-So...

Mandriva Security Advisory MDVSA-2009:030-1 (amarok)

The remote host is missing an update to amarok announced via advisory MDVSA-2009:030-1. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

Mandriva Linux Security Advisory : amarok (MDVSA-2009:030-1)

Data length values in metadata Audible Audio media file .aa can lead to an integer overflow enabling remote attackers use it to trigger an heap overflow and enabling the possibility to execute arbitrary code CVE-2009-0135. Failure on checking heap allocation on Audible Audio media files .aa allow...

Ubuntu 7.10 / 8.04 LTS / 8.10 : amarok vulnerabilities (USN-739-1)

It was discovered that Amarok did not correctly handle certain malformed tags in Audible Audio .aa files. If a user were tricked into opening a crafted Audible Audio file, an attacker could execute arbitrary code with the privileges of the user invoking the program. Note that Tenable Network...

FreeBSD Ports: amarok

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

GLSA-200903-34 : Amarok: User-assisted execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-200903-34 Amarok: User-assisted execution of arbitrary code Tobias Klein has discovered multiple vulnerabilities in Amarok: Multiple integer overflows in the Audible::Tag::readTag function in metadata/audible/audibletag.cpp trigge...

Ubuntu USN-739-1 (amarok)

The remote host is missing an update to amarok announced via advisory USN-739-1. OpenVAS Vulnerability Test $Id: ubuntu7391.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7391.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-739-1 amarok Authors: Thomas Rein...

Ubuntu: Security Advisory (USN-739-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-739-1: Amarok vulnerabilities

It was discovered that Amarok did not correctly handle certain malformed tags in Audible Audio .aa files. If a user were tricked into opening a crafted Audible Audio file, an attacker could execute arbitrary code with the privileges of the user invoking the program...

Mandrake Security Advisory MDVSA-2009:030 (amarok)

The remote host is missing an update to amarok announced via advisory MDVSA-2009:030. OpenVAS Vulnerability Test $Id: mdksa2009030.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:030 amarok Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft In...

Fedora Core 9 FEDORA-2009-0715 (amarok)

The remote host is missing an update to amarok announced via advisory FEDORA-2009-0715. OpenVAS Vulnerability Test $Id: fcore20090715.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-0715 amarok Authors: Thomas Reinke Copyright: Copyright c 2009 E-So...

Amarok Player Multiple Vulnerabilities

This host is installed with Amarok Player for Linux and is prone to Multiple Vulnerabilities. OpenVAS Vulnerability Test $Id: secpodamarokmultvulnlin.nasl 5055 2017-01-20 14:08:39Z teissa $ Amarok Player Multiple Vulnerabilities Authors: Sujit Ghosal Copyright: Copyright c 2009 SecPod,...

Amarok Player < 2.0.1.1 Multiple Vulnerabilities

Amarok Player for Linux is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2009-0135

Multiple integer overflows in the Audible::Tag::readTag function in metadata/audible/audibletag.cpp in Amarok 1.4.10 through 2.0.1 allow remote attackers to execute arbitrary code via an Audible Audio .aa file with a large 1 nlen or 2 vlen Tag value, each of which triggers a heap-based buffer...