Apple iTunes < 9.1 Multiple Vulnerabilities (credentialed check)

The version of Apple iTunes installed on the remote Windows host is older than 9.1. Such versions may be affected by multiple vulnerabilities : - A buffer underflow in ImageIO's handling of TIFF images may lead to an application crash or arbitrary code execution. CVE-2009-2285 - An integer overfl...

Apple iTunes < 9.1 Multiple Vulnerabilities (uncredentialed check)

The version of Apple iTunes on the remote host is prior to version 9.1. It is, therefore, affected by multiple vulnerabilities : - A buffer underflow in ImageIO's handling of TIFF images can lead to a denial of service or arbitrary code execution. CVE-2009-2285 - An integer overflow in the...

Safari < 4.0.5 Multiple Vulnerabilities

Binary data 5361.prm...

Debian DSA-1884-1 : nginx - buffer underflow

Chris Ries discovered that nginx, a high-performance HTTP server, reverse proxy and IMAP/POP3 proxy server, is vulnerable to a buffer underflow when processing certain HTTP requests. An attacker can use this to execute arbitrary code with the rights of the worker process www-data on Debian or...

Apple iOS < 3.1.3 Multiple Vulnerabilities

Binary data 5337.prm...

nginx URI Parsing Buffer Underflow (CVE-2009-2629)

A remote buffer underflow vulnerability exists within nginx HTTP server. The vulnerability is due to an error when processing malicious HTTP requests. A remote attacker can exploit this vulnerability by sending an HTTP request containing specially crafted URI to the target system. Successful...

Mandriva Security Advisory MDVSA-2009:169-1 (libtiff)

The remote host is missing an update to libtiff announced via advisory MDVSA-2009:169-1. OpenVAS Vulnerability Test $Id: mdksa20091691.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:169-1 libtiff Authors: Thomas Reinke Copyright: Copyright c 2009...

Mandriva Security Advisory MDVSA-2009:169-1 (libtiff)

The remote host is missing an update to libtiff announced via advisory MDVSA-2009:169-1. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

Mandriva Linux Security Advisory : libtiff (MDVSA-2009:169-1)

Multiple vulnerabilities has been found and corrected in libtiff : Buffer underflow in the LZWDecodeCompat function in libtiff 3.8.2 allows context-dependent attackers to cause a denial of service crash via a crafted TIFF image, a different vulnerability than CVE-2008-2327 CVE-2009-2285. Fix...

Mandriva Linux Security Advisory : ghostscript (MDVSA-2009:311)

Multiple security vulnerabilities has been identified and fixed in ghostscript : A buffer underflow in Ghostscript's CCITTFax decoding filter allows remote attackers to cause denial of service and possibly to execute arbitrary by using a crafted PDF file CVE-2007-6725. Buffer overflow in...

Fedora Core 10 FEDORA-2009-11488 (qt)

The remote host is missing an update to qt announced via advisory FEDORA-2009-11488. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

Fedora 10 : qt-4.5.3-9.fc10 (2009-11488)

A security flaw was found in the WebKit's Cross-Origin Resource Sharing CORS implementation. Multiple security flaws integer underflow, invalid pointer dereference, buffer underflow and a denial of service were found in the way WebKit's FTP parser used to process remote FTP directory listings. No...

Fedora 12 : qt-4.5.3-9.fc12 (2009-11487)

A security flaw was found in the WebKit's Cross-Origin Resource Sharing CORS implementation. Multiple security flaws integer underflow, invalid pointer dereference, buffer underflow and a denial of service were found in the way WebKit's FTP parser used to process remote FTP directory listings. No...

LibTIFF - LZWDecodeCompat() Remote Buffer Underflow

LibTIFF - LZWDecodeCompat Remote Buffer Underflow Bugtraq ID: 35451 Class: Boundary Condition Error Published: Jun 21 2009 12:00AM Updated: Nov 12 2009 06:46PM Credit: wololo Vulnerable: Ubuntu Ubuntu Linux 9.04 sparc Ubuntu Ubuntu Linux 9.04 powerpc Ubuntu Ubuntu Linux 9.04 lpia Ubuntu Ubuntu...

LibTIFF - &#039;LZWDecodeCompat()&#039; Remote Buffer Underflow

Bugtraq ID: 35451 Class: Boundary Condition Error Published: Jun 21 2009 12:00AM Updated: Nov 12 2009 06:46PM Credit: wololo Vulnerable: Ubuntu Ubuntu Linux 9.04 sparc Ubuntu Ubuntu Linux 9.04 powerpc Ubuntu Ubuntu Linux 9.04 lpia Ubuntu Ubuntu Linux 9.04 i386 Ubuntu Ubuntu Linux 9.04 amd64 Ubunt...

LibTIFF 'LZWDecodeCompat()' Remote Buffer Underflow Vulnerability

Exploit for unknown platform in category dos / poc ================================================================= LibTIFF 'LZWDecodeCompat' Remote Buffer Underflow Vulnerability ================================================================= Title: LibTIFF 'LZWDecodeCompat' Remote Buffer...

CVE-2009-2281

Multiple heap-based buffer underflows in the readPostBody function in cgiutil.c in mapserv in MapServer 4.x through 4.10.4 and 5.x before 5.4.2 allow remote attackers to execute arbitrary code via 1 a crafted Content-Length HTTP header or 2 a large HTTP request, related to an integer overflow tha...

Integer overflow

Multiple heap-based buffer underflows in the readPostBody function in cgiutil.c in mapserv in MapServer 4.x through 4.10.4 and 5.x before 5.4.2 allow remote attackers to execute arbitrary code via 1 a crafted Content-Length HTTP header or 2 a large HTTP request, related to an integer overflow tha...

CVE-2009-2281

Multiple heap-based buffer underflows in the readPostBody function in cgiutil.c in mapserv in MapServer 4.x through 4.10.4 and 5.x before 5.4.2 allow remote attackers to execute arbitrary code via 1 a crafted Content-Length HTTP header or 2 a large HTTP request, related to an integer overflow tha...

CVE-2009-2281

Multiple heap-based buffer underflows in the readPostBody function in cgiutil.c in mapserv in MapServer 4.x through 4.10.4 and 5.x before 5.4.2 allow remote attackers to execute arbitrary code via 1 a crafted Content-Length HTTP header or 2 a large HTTP request, related to an integer overflow tha...