German Turkish Translator - Base64 encoded String, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application German Turkish Translator published at the 'play' market has multiple vulnerabilities...

Yahoo Patches Critical Small Business, eCommerce Bugs

Yahoo has fixed a handful of vulnerabilities that could have given an attacker free reign over all of its user-run eCommerce websites and caused multiple headaches for small business owners. One bug could have allowed a hacker to change item prices on a whim and given them access to sensitive...

CVE-2012-5468

Heap-based buffer overflow in iconvert.c in the bogolexer component in Bogofilter before 1.2.3 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via an email containing a base64 string that is decoded to incomplete multibyte characters...

CVE-2012-5468

CVE-2012-5468 affects bogofilter prior to version 1.2.3, where a heap-based buffer overflow in bogolexer/iconvert.c can be triggered by an email containing base64 data that decodes to incomplete multibyte characters. This may cause a crash (DoS) and potentially allow arbitrary code execution. Pub...

CVE-2012-5468

Heap-based buffer overflow in iconvert.c in the bogolexer component in Bogofilter before 1.2.3 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via an email containing a base64 string that is decoded to incomplete multibyte characters...

CVE-2012-3461

The 1 otrlbase64otrdecode function in src/b64.c; 2 otrlprotodatareadflags and 3 otrlprotoacceptdata functions in src/proto.c; and 4 decode function in toolkit/parse.c in libotr before 3.2.1 allocates a zero-length buffer when decoding a base64 string, which allows remote attackers to cause a deni...

BNBT memory corruption

Memory corruption on incomplete base64 string...