327 matches found
RHEL 4 : mozilla (RHSA-2005:277)
Updated mozilla packages that fix a buffer overflow issue are now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. Mozilla is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor. A bug was...
Microsoft Office XP contains buffer overflow vulnerability
Overview A buffer overflow in Microsoft Office XP may allow a remote attacker to execute arbitrary code on a vulnerable system. Description Microsoft Office XP is vulnerable to a buffer overflow. According to MS05-005, the buffer overflow exists in the process that passes URL file locations to...
[ GLSA 200501-40 ] ngIRCd: Buffer overflow
Gentoo Linux Security Advisory GLSA 200501-40 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...
DSA-649-1 xtrlock - buffer overflow
Bulletin has no description...
[SECURITY] [DSA 632-1] New linpopup packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 632-1 [email protected] http://www.debian.org/security/ Martin Schulze January 10th, 2005 http://www.debian.org/security/faq -...
LinPopUp: Buffer overflow in message reply
Background LinPopUp is a graphical application that acts as a frontend to Samba client messaging functions, allowing a Linux desktop to communicate with a Microsoft Windows computer that runs Winpopup. Description Stephen Dranger discovered that LinPopUp contains a buffer overflow in string.c,...
MIT Kerberos 5 buffer overflow
Buffer overflow on password history check during password change...
DSA-587-1 freeamp - buffer overflow
Bulletin has no description...
RealPlayer Skin File Handling Buffer Overflow
Binary data 2381.prm...
wvtftpd buffer overflow
strcpy buffer overflow...
Icecast Multiple Unspecified Remote Overflows
The remote server runs a version of Icecast, an open source streaming audio server, which is older than version 1.3.10. This version is affected by a remote buffer overflow. As a result of this vulnerability, it is possible for a remote attacker to execute arbitrary code with the privilege of the...
Debian DSA-291-1 : ircii - buffer overflows
Timo Sirainen discovered several problems in ircII, a popular client for Internet Relay Chat IRC. A malicious server could craft special reply strings, triggering the client to write beyond buffer boundaries. This could lead to a denial of service if the client only crashes, but may also lead to...
Debian DSA-457-1 : wu-ftpd - several vulnerabilities
Two vulnerabilities were discovered in wu-ftpd : - CAN-2004-0148 Glenn Stewart discovered that users could bypass the directory access restrictions imposed by the restricted-gid option by changing the permissions on their home directory. On a subsequent login, when access to the user's home...
Debian DSA-349-1 : nfs-utils - buffer overflow
The logging code in nfs-utils contains an off-by-one buffer overrun when adding a newline to the string being logged. This vulnerability may allow an attacker to execute arbitrary code or cause a denial of service condition by sending certain RPC requests. %NASLMINLEVEL 70300 C Tenable Network...
Debian DSA-100-1 : gzip - Potential buffer overflow
GOBBLES found a buffer overflow in gzip that occurs when compressing files with really long filenames. Even though GOBBLES claims to have developed an exploit to take advantage of this bug, it has been said by others that this problem is not likely to be exploitable as other security incidents...
Debian DSA-044-1 : mailx
The mail program a simple tool to read and send email as distributed with Debian GNU/Linux 2.2 has a buffer overflow in the input parsing code. Since mail is installed setgid mail by default this allowed local users to use it to gain access to mail group. Since the mail code was never written to ...
Debian DSA-516-1 : postgresql - buffer overflow
A buffer overflow has been discovered in the ODBC driver of PostgreSQL, an object-relational SQL database, descended from POSTGRES. It is possible to exploit this problem and crash the surrounding application. Hence, a PHP script using php4-odbc can be utilised to crash the surrounding Apache...
Debian DSA-110-1 : cups - buffer overflow
The authors of CUPS, the Common UNIX Printing System, have found a potential buffer overflow bug in the code of the CUPS daemon where it reads the names of attributes. This affects all versions of CUPS. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks i...
Debian DSA-076-1 : most - buffer overflow
Pavel Machek has found a buffer overflow in the most' pager program. The problem is part of most's tab expansion where the program would write beyond the bounds two array variables when viewing a malicious file. This could lead into other data structures being overwritten which in turn could enab...
Qualcomm Eudora MIME Multipart Boundary Buffer Overflow Vulnerability
Binary data 1285.prm...