[Full-disclosure] ASA-2007-019: Remote crash vulnerability in Skinny channel driver

Asterisk Project Security Advisory - ASA-2007-019 +------------------------------------------------------------------------+ | Product | Asterisk | |--------------------+---------------------------------------------------| | Summary | Remote crash vulnerability in Skinny channel | | | driver |...

[Full-disclosure] MS06-060 Microsoft Word Memmove Code Execution

McAfee, Inc. McAfee Avert Labs Security Advisory Vendor Notification Date: 2006-07-06 Public Release Date: 2006-10-10 Microsoft Word Memmove Code Execution CVE-2006-3647 Synopsis An integer bug stack overflow exists in the Microsoft Word file format. The file format allows a attacker to create a...

Multiple Vulnerabilities in Apple QuickTime

McAfee, Inc. McAfee Averttm Labs Security Advisory Public Release Date: 2006-09-12 Apple QuickTime Multiple Vulnerabilities CVE-2006-4382, CVE-2006-4384, CVE-2006-4385, CVE-2006-4386, CVE-2006-4388, CVE-2006-4389 Synopsis Apple QuickTime is a multimedia technology used to process image, audio and...

Symantec Enterprise Security Manager Denial-of-Service Vulnerability

McAfee, Inc. McAfee® Avert® Labs Security Advisory Public Release Date: 2006-08-22 Symantec Enterprise Security Manager Denial-of-Service Vulnerability CVE Number Pending • Synopsis The Symantec Enterprise Security Manager ESM platform and agent are susceptible to a race condition that can cause...

GLSA-200608-01 : Apache: Off-by-one flaw in mod_rewrite

The remote host is affected by the vulnerability described in GLSA-200608-01 Apache: Off-by-one flaw in modrewrite An off-by-one flaw has been found in Apache's modrewrite module by Mark Dowd of McAfee Avert Labs. This flaw is exploitable depending on the types of rewrite rules being used. Impact...

Apache: Off-by-one flaw in mod_rewrite

Background The Apache HTTP server is one of the most popular web servers on the Internet. The Apache module modrewrite provides a rule-based engine to rewrite requested URLs on the fly. Description An off-by-one flaw has been found in Apache's modrewrite module by Mark Dowd of McAfee Avert Labs...

apache -- mod_rewrite buffer overflow vulnerability

The Apache Software Foundation and The Apache HTTP Server Project reports: An off-by-one flaw exists in the Rewrite module, modrewrite, as shipped with Apache 1.3 since 1.3.28, 2.0 since 2.0.46, and 2.2 since 2.2.0. Depending on the manner in which Apache HTTP Server was compiled, this software...

[Full-disclosure] Microsoft SMB Information Disclosure Vulnerability CVE-2006-1315

McAfee, Inc. McAfee® Avert® Labs Security Advisory Public Release Date: 2006-07-11 SMB Information Disclosure Vulnerability CVE-2006-1315 • Synopsis An information disclosure vulnerability exists in the Server service that could allow an attacker to retrieve fragments of memory from an affected...

[Full-disclosure] Apple QuickDraw/QuickTime Multiple Vulnerabilities

McAfee, Inc. McAfee Averttm Labs Security Advisory Public Release Date: 2006-05-11 Apple QuickDraw/QuickTime Multiple Vulnerabilities CVE-2006-1249, CVE-2006-1453, CVE-2006-1454, CVE-2006-1459, CVE-2006-1460, CVE-2006-1461, CVE-2006-1462, CVE-2006-1464, CVE-2006-1465 Synopsis Apple QuickTime and...

[Full-disclosure] Microsoft MSDTC NdrAllocate Validation Vulnerability

McAfee, Inc. McAfee Averttm Labs Security Advisory Public Release Date: 2006-05-09 Microsoft MSDTC NdrAllocate Validation Vulnerability CVE-2006-0034 Synopsis There is an RPC procedure within the MSDTC interface in msdtcprx.dll that may be called remotely without user credentials in such a way th...