Microsoft Windows XP Redirector Privilege Escalation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6778/info The Microsoft Windows XP Redirector does not properly handle certain parameters that are passed to it. If one of these parameters was unusually long, a buffer could be overrun, resulting in either Windows XP...

WinAgents TFTP Server 3.0 - Remote Buffer Overrun Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10526/info WinAgents TFTP Server is reported prone to a remote off-by-one buffer overrun vulnerability. The issue is reported to exist due to a lack of sufficient boundary checks performed on filenames when a request is...

BSD-Games 2.x Monop Player Name Local Buffer Overrun Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/8501/info Monop included in bsd-games is prone to a locally exploitable buffer overrun vulnerability. This is due to insufficient bounds checking of player names. Monop is typically installed setgid games, so it is possib...

RedHat Linux 4.2,SGI IRIX <= 6.3,Solaris <= 2.6 mailx Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/393/info A buffer overrun exists in the /bin/mailx program. This program was originally developed as part of BSD, and is available on many Unix systems. By supplying a long, well crafted buffer as the username argument, a...

Microsoft WordPerfect Converter Buffer Overrun Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8538/info The Microsoft WordPerfect Converter, which ships with Office and a number of other products, is prone to a buffer overrun vulnerability. This could result in execution of malicious, attacker-supplied code when a...

MPlayer 0.9/1.0 Streaming ASX Header Parsing Buffer Overrun Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8702/info A vulnerability has been discovered in MPLayer when handling malformed streaming ASX file headers. The problem occurs due to insufficient bounds checking performed within asfhttprequest. It has been demonstrated...

Solaris <= 7.0 cancel Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/293/info A buffer overrun condition was discovered in Solaris 2.6 X86 in /usr/bin/cancel. This buffer overflow is apparently present in the SPARC version as well although it is thought to be unexploitable. Previous versio...

Silly Poker 0.25.5 - Local HOME Environment Variable Buffer Overrun Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8736/info A local buffer overrun vulnerability has been reported for Silly Poker. The problem occurs due to insufficient bounds checking when handling user-supplied data. As a result, an attacker may be capable of...

FreeBSD : mencoder -- potential buffer overrun when processing malicious lzo compressed input (17dfd984-feba-11e3-b938-5404a68ad561)

Michael Niedermayer and Luca Barbato report in upstream ffmpeg : avutil/lzo: Fix integer overflow %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2020 Jacques Vidrine and...

FreeBSD : mplayer -- potential buffer overrun when processing malicious lzo compressed input (9ab3a22c-feb8-11e3-b938-5404a68ad561)

Michael Niedermayer and Luca Barbato report in upstream ffmpeg : avutil/lzo: Fix integer overflow %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2020 Jacques Vidrine and...

20-Year Old Vulnerability Patched in Compression Algorithm

A 20-year old vulnerability in the Lempel-Ziv-Oberhumer LZO compression algorithm – used in some Android phones, the Linux kernel, and even Mars Rovers – was finally patched this week. Code stemming from the algorithm’s library function has existed in the wild for two decades, but was recycled ov...

FreeBSD : LZO -- potential buffer overrun when processing malicious input data (d1f5e12a-fd5a-11e3-a108-080027ef73ec)

Markus Franz Xaver Johannes Oberhumer reports, in the package's NEWS file : Fixed a potential integer overflow condition in the 'safe' decompressor variants which could result in a possible buffer overrun when processing maliciously crafted compressed input data. As this issue only affects 32-bit...

LZO -- potential buffer overrun when processing malicious input data

Markus Franz Xaver Johannes Oberhumer reports, in the package's NEWS file: Fixed a potential integer overflow condition in the "safe" decompressor variants which could result in a possible buffer overrun when processing maliciously crafted compressed input data. As this issue only affects 32-bit...

mencoder -- potential buffer overrun when processing malicious lzo compressed input

Michael Niedermayer and Luca Barbato report in upstream ffmpeg: avutil/lzo: Fix integer overflow...

mplayer -- potential buffer overrun when processing malicious lzo compressed input

Michael Niedermayer and Luca Barbato report in upstream ffmpeg: avutil/lzo: Fix integer overflow...

SuSE 11.3 Security Update : KVM (SAT Patch Number 9302)

Several security issues in KVM have been fixed. Some issues could have resulted in arbitrary code execution or crash of the kvm host. - virtio-net: buffer overflow in virtionethandlemac function. CVE-2014-0150 - Fixed out of bounds buffer accesses, guest triggerable via IDE SMART. CVE-2014-2894 -...

openSUSE Security Update : miniupnpc (openSUSE-SU-2014:0815-1)

miniupnpc was updated to 1.9 to fix a potential buffer overrun in miniwget.c CVE-2014-3985. Besides that the following issues were fixed : - added argument remoteHost to UPNPGetSpecificPortMappingEntry - increment APIVERSION to 10 - --help and -h arguments in upnpc.c - define MAXHOSTNAMELEN if no...

AIX OpenSSL Advisory : openssl_advisory9.doc

The version of OpenSSL installed on the remote host is potentially affected by the following remote code execution and denial of service vulnerabilities : - OpenSSL could allow an attacker to cause a buffer overrun situation when an attacker sends invalid DTLS fragments to an OpenSSL DTLS client ...

openSUSE Security Update : Mesa (openSUSE-SU-2012:1120-1)

Mesa was updated to fix a buffer overrun in glsl shaders : - Uglsl-linker-Avoid-buffer-over-run-in-parceloutunif.p atch - Avoid buffer over-run in parceloutuniformstorage::visitfield When too may uniforms are used, the error will be caught in checkresources src/glsl/linker.cpp. CVE-2012-2864,...

openSUSE Security Update : libopenssl-devel (openSUSE-SU-2010:0965-2)

Multithreaded OpenSSL servers using the TLS server extension are vulnerable to a buffer overrun attack CVE-2010-3864. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update libopenssl-devel-3562. The...