1447 matches found
security flaw
Buffer underflow in PHP before 5.2.1 allows attackers to cause a denial of service via unspecified vectors involving the sapiheaderop function...
security flaw
Buffer underflow in PHP before 5.2.1 allows attackers to cause a denial of service via unspecified vectors involving the sapiheaderop function...
security flaw
Buffer underflow in PHP before 5.2.1 allows attackers to cause a denial of service via unspecified vectors involving the sapiheaderop function...
Mandrake Linux Security Advisory : gzip (MDKSA-2006:167)
NULL Dereference CVE-2006-4334 A stack modification vulnerability where a stack buffer can be modified out of bounds, but not in the traditional stack overrun sense exists in the LZH decompression support of gzip. CVE-2006-4335 A .bss buffer underflow exists in gzip's pack support, where a loop...
CVE-2007-0907
Buffer underflow in PHP before 5.2.1 allows attackers to cause a denial of service via unspecified vectors involving the sapiheaderop function...
CVE-2007-0907
Buffer underflow in PHP before 5.2.1 allows attackers to cause a denial of service via unspecified vectors involving the sapiheaderop function...
CVE-2007-0907
Buffer underflow in PHP before 5.2.1 allows attackers to cause a denial of service via unspecified vectors involving the sapiheaderop function...
CVE-2007-0907
CVE-2007-0907 : Buffer underflow in PHP before 5.2.1 can cause a denial of service via the sapi_header_op function. Vulnerable in contexts covered by PHP’s pre-5.2.1 releases; impact is denial of service (availability). Remediation from the referenced advisories/changelogs indicates upgrading to ...
Integer overflow
Heap-based buffer underflow in axigen 1.2.6 through 2.0.0b1 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via certain base64-encoded data on the pop3 port 110/tcp, which triggers an integer overflow...
CVE-2007-0886
Heap-based buffer underflow in axigen 1.2.6 through 2.0.0b1 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via certain base64-encoded data on the pop3 port 110/tcp, which triggers an integer overflow...
CVE-2007-0886
AXIGEN Mail Server vulnerability CVE-2007-0886 involves a heap-based buffer underflow in AXIGEN 1.2.6 through 2.0.0b1. Remote attackers can trigger denial of service ( crashes ) and possibly arbitrary code execution via certain base64-encoded data on the POP3 port (110/tcp), due to an integer ove...
DEBIAN-CVE-2006-6171
ProFTPD 1.3.0a and earlier does not properly set the buffer size limit when CommandBufferSize is specified in the configuration file, which leads to an off-by-two buffer underflow. NOTE: in November 2006, the role of CommandBufferSize was originally associated with CVE-2006-5815, but this was an...
CVE-2006-6171
ProFTPD 1.3.0a and earlier does not properly set the buffer size limit when CommandBufferSize is specified in the configuration file, which leads to an off-by-two buffer underflow. NOTE: in November 2006, the role of CommandBufferSize was originally associated with CVE-2006-5815, but this was an...
CVE-2006-6171
ProFTPD 1.3.0a and earlier does not properly set the buffer size limit when CommandBufferSize is specified in the configuration file, which leads to an off-by-two buffer underflow. NOTE: in November 2006, the role of CommandBufferSize was originally associated with CVE-2006-5815, but this was an...
CVE-2006-6171
ProFTPD 1.3.0a and earlier are affected by three CVEs in the provided docs: CVE-2006-5815 (sreplace function buffer overflow) may cause memory corruption with potential code execution or DoS; CVE-2006-6170 (mod_tls tls_x509_name_oneline overflow) enables remote code execution via a large data len...
Moderate gzip security update
1.3.3-16.rhel4 - fix bug 204676 patches by Tavis Ormandy - cve-2006-4334 - null dereference problem - cve-2006-4335 - buffer overflow problem - cve-2006-4336 - buffer underflow problem - cve-2006-4338 - infinite loop problem - cve-2006-4337 - buffer overflow problem...
Low ncompress security update
4.2.4-43.rhel4 - display statistics when compressing 0 length files 189215 - fix return code when compressing 0 length files 189216 4.2.4-42.rhel4 - fix bss buffer underflow CVE-2006-1168 201335...
GLSA-200611-24 : LHa: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200611-24 LHa: Multiple vulnerabilities Tavis Ormandy of the Google Security Team discovered several vulnerabilities in the LZH decompression component used by LHa. The maketable function of unlzh.c contains an array index error a...
PT-2006-1005 · Proftpd +1 · Proftpd +1
Name of the Vulnerable Software and Affected Versions: ProFTPD versions 1.3.0a and earlier Description: The issue is related to the improper setting of the buffer size limit when CommandBufferSize is specified in the configuration file, potentially leading to an off-by-two buffer underflow...
Debian DSA-1149-1 : ncompress - buffer underflow
Tavis Ormandy from the Google Security Team discovered a missing boundary check in ncompress, the original Lempel-Ziv compress and uncompress programs, which allows a specially crafted datastream to underflow a buffer with attacker controlled data. %NASLMINLEVEL 70300 C Tenable Network Security,...