Mandrake Linux Security Advisory : samba (MDKSA-2002:081)

A vulnerability in samba versions 2.2.2 through 2.2.6 was discovered by the Debian samba maintainers. A bug in the length checking for encrypted password change requests from clients could be exploited using a buffer overrun attack on the smbd stack. This attack would have to crafted in such a wa...

Fedora Core 1 : kernel-2.4.22-1.2188.nptl (2004-111)

A memory leak was fixed in an error path in the dofork routine. This was unlikely to have caused problems in real world situations. The information leak fixed in the previous errata was also found to affect XFS and JFS. The Common Vulnerabilities and Exposures project cve.mitre.org assigned the...

Potential Buffer Overrun in smbd

Description A buffer overrun has been located in the code used to support the 'mangling method = hash' smb.conf option. Please be aware that the default setting for this parameter is 'mangling method = hash2' and therefore not vulnerable. Affected Samba 3 installations can avoid this possible...

Potential Buffer Overrun in SWAT

Description The internal routine used by the Samba Web Administration Tool SWAT v3.0.2 and later to decode the base64 data during HTTP basic authentication is subject to a buffer overrun caused by an invalid base64 character. It is recommended that all Samba v3.0.2 or later installations running...

Microsoft Windows Program Group Converter Filename Local Buffer Overrun Vulnerability

Description Microsoft Windows Program Group Converter grpconv.exe is reported prone to a buffer overrun vulnerability. The issue is reported to exist due to a lack of sufficient validation performed on filename data. An attacker may craft a malicious file and present it to a victim in order to...

RHEL 2.1 : wget (RHSA-2003:372)

Updated wget packages that correct a buffer overrun are now available. GNU Wget is a file-retrieval utility that uses the HTTP and FTP protocols. A buffer overflow in the urlfilename function for wget 1.8.1 allows attackers to cause a segmentation fault via a long URL. Red Hat does not believe th...

[security bulletin] SSRT4741 rev.0 DCE for HP Tru64 UNIX Potential RPC Buffer Overrun Attack

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 HP SECURITY BULLETIN HPSBTU01051 REVISION: 0 SSRT4741 rev.0 DCE for HP Tru64 UNIX Potential RPC Buffer Overrun Attack -------------------------------------------------------------- NOTICE: There are no restrictions for distribution of this Bulletin...

WinAgents TFTP Server 3.0 - Remote Buffer Overrun

WinAgents TFTP Server 3.0 - Remote Buffer Overrun source: https://www.securityfocus.com/bid/10526/info WinAgents TFTP Server is reported prone to a remote off-by-one buffer overrun vulnerability. The issue is reported to exist due to a lack of sufficient boundary checks performed on filenames whe...

WinAgents TFTP Server 3.0 - Remote Buffer Overrun

source: https://www.securityfocus.com/bid/10526/info WinAgents TFTP Server is reported prone to a remote off-by-one buffer overrun vulnerability. The issue is reported to exist due to a lack of sufficient boundary checks performed on filenames when a request is made for a file. A remote attacker...

Firebird 1.0 - Remote Database Name Buffer Overrun

Firebird 1.0 - Remote Database Name Buffer Overrun source: https://www.securityfocus.com/bid/10446/info Firebird is reported prone to a remote buffer-overrun vulnerability. The issue occurs because the application fails to perform sufficient boundary checks when the database server is handling...

Firebird 1.0 - Remote Database Name Buffer Overrun

source: https://www.securityfocus.com/bid/10446/info Firebird is reported prone to a remote buffer-overrun vulnerability. The issue occurs because the application fails to perform sufficient boundary checks when the database server is handling database names. A remote attacker may exploit this...

Qualcomm Eudora 5.2.16.x - Embedded Hyperlink Buffer Overrun

Qualcomm Eudora 5.2.16.x - Embedded Hyperlink Buffer Overrun source: https://www.securityfocus.com/bid/10298/info Qualcomm Eudora is reported to be prone to a remotely exploitable buffer overrun vulnerability. The issue is exposed when an excessively long hyperlink to a file resource is embedded ...

Qualcomm Eudora 5.2.1/6.x - Embedded Hyperlink Buffer Overrun

source: https://www.securityfocus.com/bid/10298/info Qualcomm Eudora is reported to be prone to a remotely exploitable buffer overrun vulnerability. The issue is exposed when an excessively long hyperlink to a file resource is embedded in an HTML e-mail. This may permit remote attackers to execut...

Exim Sender 3.35 - Verification Remote Stack Buffer Overrun

Exim Sender 3.35 - Verification Remote Stack Buffer Overrun // source: https://www.securityfocus.com/bid/10290/info Exim has been reported prone to a remotely exploitable stack-based buffer overrun vulnerability. This is exposed if sender verification has been enabled in the agent and may be...

Exim Sender 3.35 - Verification Remote Stack Buffer Overrun

// source: https://www.securityfocus.com/bid/10290/info Exim has been reported prone to a remotely exploitable stack-based buffer overrun vulnerability. This is exposed if sender verification has been enabled in the agent and may be triggered by a malicious e-mail. Exploitation may permit executi...

libpng denial-of-service

Steve Grubb reports a buffer read overrun in libpng's pngformatbuffer function. A specially constructed PNG image processed by an application using libpng may trigger the buffer read overrun and possibly result in an application crash...

Veritas NetBackup 3.54.55.0 - Multiple Local Memory Corruption Vulnerabilities (3)

Veritas NetBackup 3.54.55.0 - Multiple Local Memory Corruption Vulnerabilities 3 source: https://www.securityfocus.com/bid/10226/info Multiple unspecified local buffer overrun and format string vulnerabilities have been reported to exist in various setuid Veritas NetBackup binaries. These issues...

Veritas NetBackup 3.54.55.0 - Multiple Local Memory Corruption Vulnerabilities (2)

Veritas NetBackup 3.54.55.0 - Multiple Local Memory Corruption Vulnerabilities 2 source: https://www.securityfocus.com/bid/10226/info Multiple unspecified local buffer overrun and format string vulnerabilities have been reported to exist in various setuid Veritas NetBackup binaries. These issues...

Microsoft Windows XP2000NT 4.0 - Shell Long Share Name Buffer Overrun

Microsoft Windows XP2000NT 4.0 - Shell Long Share Name Buffer Overrun source: https://www.securityfocus.com/bid/10213/info Microsoft Windows operating systems have been reported to be prone to a remotely exploitable buffer overrun condition. This issue is exposed when a client attempts to connect...

Veritas NetBackup 3.5/4.5/5.0 - Multiple Local Memory Corruption Vulnerabilities (3)

source: https://www.securityfocus.com/bid/10226/info Multiple unspecified local buffer overrun and format string vulnerabilities have been reported to exist in various setuid Veritas NetBackup binaries. These issues may be exploited to execute arbitrary code with root privileges. It should be not...