OpenBSD 3.3 Semget() Integer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/8464/info A vulnerability has been discovered in the OpenBSD semget system call. The problem occurs due to insufficient sanity checks before allocating memory using the user-supplied nsems value as an argument. As a resul...

Kroum Grigorov KpyM Telnet Server 1.0 - Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9379/info KpyM Telnet Server has been reported to be prone to a remote denial of service vulnerability. Due to a lack of resource limitations, a remote attacker may negotiate multiple connections to the affected server...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix two security issues and one bug are now available for Red Hat Enterprise Linux 6.3 Extended Update Support. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which gi...

Adobe Acrobat and Reader Memory Corruption (APSB14-15: CVE-2014-0526)

A memory corruption vulnerability has been reported in Adobe Reader and Acrobat. The vulnerability is due to incorrect memory buffer allocation while parsing a corrupted PDF file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file...

Adobe Acrobat and Reader Buffer Overflow (APSB14-15; CVE-2014-0511)

A buffer overflow vulnerability has been reported in Adobe Reader and Acrobat. The vulnerability is due to incorrect memory buffer allocation while parsing a corrupted PDF file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file...

Adobe Flash Player ActionScript Heap Overflow (APSB13-09; CVE-2013-0646)

A remote code execution vulnerability has been reported in Adobe Flash Player. The vulnerability is due to an improper buffer allocation while handling specially crafted SWF files. A remote attacker can exploit this issue by enticing a victim to open a specially crafted file...

.NET Framework EncoderParameter integer overflow vulnerability(MS12-025)

No description provided by source. run 'rundll32 dfshim CleanOnlineAppCache' to clear ClickOnce cache require 'msf/core' require 'base64' require 'digest/sha1' class Metasploit3 Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::Remote::HttpServer::HTML def initializeinfo =...

Adobe Flash Player SWF File Buffer Overflow (APSB13-04; CVE-2013-0633)

A remote code execution vulnerability has been reported in Adobe Flash Player. The vulnerability is due to an improper buffer allocation while handling specially crafted SWF files. A remote attacker can exploit this issue by enticing a victim to open a specially crafted file...

Scientific Linux Security Update : xorg-x11-server on SL5.x i386/x86_64 (20120221)

X.Org is an open source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. A flaw was found in the way the X.Org server handled lock files. A local user with access to the system console could use thi...

CVE-2012-0162

Microsoft .NET Framework 4 does not properly allocate buffers, which allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application aka XBAP or 2 a crafted .NET Framework application, aka ".NET Framework Buffer Allocation Vulnerability."...

Design/Logic Flaw

Microsoft .NET Framework 4 does not properly allocate buffers, which allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application aka XBAP or 2 a crafted .NET Framework application, aka ".NET Framework Buffer Allocation Vulnerability."...

CVE-2012-0162

CVE-2012-0162 affects Microsoft .NET Framework (4.x) and is due to an undersized buffer allocation in the framework’s handling of XAML Browser Applications (XBAP) graphics components. This can allow remote code execution when a user visits a malicious page or opens a crafted .NET application, wit...

CVE-2012-0162

Microsoft .NET Framework 4 does not properly allocate buffers, which allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application aka XBAP or 2 a crafted .NET Framework application, aka ".NET Framework Buffer Allocation Vulnerability."...

Adobe Reader and Acrobat TTF MINDEX Code Execution (APSB12-08; CVE-2012-0774)

A remote code execution vulnerability has been reported in Adobe Reader and Acrobat. The vulnerability is due to incorrect memory buffer allocation while parsing a corrupted PDF file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file...

Adobe Reader Image Data Buffer Allocation Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the Adobe Image...

Adobe Reader TTF Glyf Code Execution (APSB11-24; CVE-2011-2441)

A remote code execution vulnerability has been reported in Adobe Reader and Acrobat. The vulnerability is due to incorrect memory buffer allocation while parsing a corrupted PDF file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file...

Apple QuickTime RIFF fmt Chunk Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the...

OpenDrive 1.3.141 - Local Password Disclosure

OpenDrive 1.3.141 - Local Password Disclosure / Title: OpenDrive include include int ReadRegistryKey LPBYTE lpBuffer, LPDWORD lpBufferSize, HKEY hKey, LPCTSTR lpszSubKey, LPCTSTR lpszValueName HKEY hKeyLocal; int nType; if RegOpenKeyExhKey, lpszSubKey, 0, KEYREAD, &hKeyLocal == ERRORSUCCESS if...

Microsoft Excel Buffer Allocation Integer Overflow Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability because of an integer-overflow error. Attackers can exploit this issue by enticing an unsuspecting user to open a specially crafted Excel file. Successful exploits can allow attackers to execute arbitrary code with the...

RealNetworks RealPlayer RJMDSections Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of RealNetworks RealPlayer. User interaction is required in that a target must open a malicious website or media file. The specific flaw exists within the code responsible for parsing Name Value...