Scientific Linux Security Update : openssl on SL3.x i386/x86_64

A flaw was found in the SSLgetsharedciphers utility function. An attacker could send a list of ciphers to an application that used this function and overrun a buffer with a single byte CVE-2007-5135. Few applications make use of this vulnerable function and generally it is used only when...

Microsoft IIS FTP Server 'Malformed FTP List Request' DOS Vulnerability

This host is missing important security update according to Microsoft Bulletin MS99-033. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

quagga -- BGP OPEN denial of service vulnerability

CERT reports: If a pre-configured BGP peer sends a specially-crafted OPEN message with a malformed ORF capability TLV, Quagga bgpd process will erroneously try to consume extra bytes from the input packet buffer. The process will detect a buffer overrun attempt before it happens and immediately...

Fedora 15 : openconnect-3.18-1.fc15 (2012-6730)

This update fixes a potential buffer overrun when handling the greeting banner from the server. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possib...

Fedora 17 : openconnect-3.18-1.fc17 (2012-6689)

This update fixes a potential buffer overrun when handling the greeting banner from the server. This update fixes a potential crash when processing libproxy results, and introduces some performance improvements. Note that Tenable Network Security has extracted the preceding description block...

Fedora 16 : openconnect-3.18-1.fc16 (2012-6758)

This update fixes a potential buffer overrun when handling the greeting banner from the server. This update fixes a potential crash when processing libproxy results, and introduces some performance improvement Note that Tenable Network Security has extracted the preceding description block direct...

SopCast 3.4.7 sop:// URI Handling Remote Stack Buffer Overflow PoC

Exploit for windows platform in category remote exploits !/usr/bin/perl SopCast 3.4.7 sop:// URI Handling Remote Stack Buffer Overflow PoC Vendor: SopCast.com Product web page: http://www.sopcast.com Affected version: 3.4.7.45585 Summary: SopCast is a simple, free way to broadcast video and audio...

Microsoft Windows Messenger Service Buffer Overrun Code Execution (CVE-2003-0717)

A remote code execution vulnerability has been reported in Microsoft Windows. The vulnerability is due to improper validation of message length. A remote attacker may exploit this vulnerability by sending an overly long message to the target service. Successful exploitation may allow the attacker...

Ubuntu: Security Advisory (USN-1192-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 11.04 : libvoikko regression (USN-1192-3)

USN-1192-1 provided Firefox 6 as a security upgrade. Unfortunately, this caused a regression in libvoikko which caused Firefox to crash while spell checking words with hyphens. This update corrects the issue. We apologize for the inconvenience. Aral Yaman discovered a vulnerability in the WebGL...

USN-1192-3: Libvoikko regression

USN-1192-1 provided Firefox 6 as a security upgrade. Unfortunately, this caused a regression in libvoikko which caused Firefox to crash while spell checking words with hyphens. This update corrects the issue. We apologize for the inconvenience. Original advisory details: Aral Yaman discovered a...

Microsoft Windows - .fon Kernel-Mode Buffer Overrun (PoC) (MS11-077)

Microsoft Windows - .fon Kernel-Mode Buffer Overrun PoC MS11-077 Exploit Title: MS11-077 .fon buffer overrun kernel-mode drivers exploit Google Dork: if relevant �we will automatically add these to the GHDB Date: 10/12/2011 Author: Byoungyoung Lee, http://www.cc.gatech.edu/blee303/ Software Link:...

MS11-077 .fon Kernel-Mode Buffer Overrun PoC

No description provided by source. Exploit Title: MS11-077 .fon buffer overrun kernel-mode drivers exploit Google Dork: if relevant �we will automatically add these to the GHDB Date: 10/12/2011 Author: Byoungyoung Lee, http://www.cc.gatech.edu/blee303/ Software Link: Version: Windows 7 32bit, ful...

Microsoft Windows - '.fon' Kernel-Mode Buffer Overrun (PoC) (MS11-077)

Exploit Title: MS11-077 .fon buffer overrun kernel-mode drivers exploit Google Dork: if relevant �we will automatically add these to the GHDB Date: 10/12/2011 Author: Byoungyoung Lee, http://www.cc.gatech.edu/blee303/ Software Link: Version: Windows 7 32bit, fully patched until Sep. 2011 Tested o...

Buffer overflow

Buffer overflow in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code via a crafted .fon file, aka "Font Librar...

CVE-2011-2003

Buffer overflow in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code via a crafted .fon file, aka "Font Librar...

CVE-2011-2003

CVE-2011-2003 : A buffer overflow in win32k.sys used by kernel-mode drivers across multiple Windows versions (XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, Windows 7 RTM/SP1) can be triggered by a crafted .fon file. The vulnerability arises from an input validation error when the ke...

Preemptive Protection against Microsoft Windows Kernel Font Library File Buffer Overrun (MS11-077; CVE-2011-2003)

A buffer overflow vulnerability has been reported in Microsoft Windows kernel...

Mozilla Foundation Security Advisory 2011-41

Mozilla Foundation Security Advisory 2011-41 Title: Potentially exploitable WebGL crashes Impact: Critical Announced: September 27, 2011 Reporter: Michael Jordan, Ben Hawkes Products: Firefox, SeaMonkey Fixed in: Firefox 7.0 SeaMonkey 2.4 Description Michael Jordon of Context IS reported that in...

Potentially exploitable WebGL crashes — Mozilla

Michael Jordon of Context IS reported that in the ANGLE library used by WebGL the return value from GrowAtomTable was not checked for errors. If an attacker could cause requests that exceeded the available memory those would fail and potentially lead to a buffer overrun as subsequent code wrote...