964 matches found
CVE-2009-3743
Off-by-one error in the InsMINDEX function in the TrueType bytecode interpreter in Ghostscript before 8.71 allows remote attackers to execute arbitrary code or cause a denial of service heap memory corruption via a malformed TrueType font in a document that trigger an integer overflow and a...
CVE-2010-2520
Heap-based buffer overflow in the InsIUP function in truetype/ttinterp.c in FreeType before 2.4.0, when TrueType bytecode support is enabled, allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted font file...
DEBIAN-CVE-2010-2520
Heap-based buffer overflow in the InsIUP function in truetype/ttinterp.c in FreeType before 2.4.0, when TrueType bytecode support is enabled, allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted font file...
Heap overflow
Heap-based buffer overflow in the InsIUP function in truetype/ttinterp.c in FreeType before 2.4.0, when TrueType bytecode support is enabled, allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted font file...
CVE-2010-2520
Heap-based buffer overflow in the InsIUP function in truetype/ttinterp.c in FreeType before 2.4.0, when TrueType bytecode support is enabled, allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted font file...
CVE-2010-2520
CVE-2010-2520 is a heap-based buffer overflow in FreeType 2.x (before 2.4.0) in the Ins_IUP path of truetype/ttinterp.c when TrueType bytecode is enabled. It can cause a crash or remote code execution via a crafted font. Affected products align with FreeType 2.x deployments; multiple advisories r...
Mandriva Linux Security Advisory : freetype2 (MDVSA-2010:137)
Multiple vulnerabilities has been found and corrected in freetype2 : Multiple integer underflows/overflows and heap buffer overflows was discovered and fixed CVE-2010-2497, CVE-2010-2498, CVE-2010-2499, CVE-2010-2500, CVE-2010-2519. A heap buffer overflow was discovered in the bytecode support. T...
Fedora Update for mono FEDORA-2010-10433
Check for the Version of mono OpenVAS Vulnerability Test Fedora Update for mono FEDORA-2010-10433 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...
Fedora Update for mono FEDORA-2010-10332
Check for the Version of mono OpenVAS Vulnerability Test Fedora Update for mono FEDORA-2010-10332 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...
[SECURITY] Fedora 13 Update: mono-2.6.4-1.fc13
The Mono runtime implements a JIT engine for the ECMA CLI virtual machine as well as a byte code interpreter, the class loader, the garbage collector, threading system and metadata access libraries...
Adobe Flash Player AVM Bytecode验证符多个整数溢出漏洞
BUGTRAQ ID: 40779 CVE ID: CVE-2010-2160 Flash Player是一款非常流行的FLASH播放器。 Flash Player在解析Adobe的ActionScript Virtual Machine 2 bytecode中的opcode时存在整数溢出漏洞。这个opcode的运算符用作了到结构的偏移,如果设置为恶意的值就可能执行受控的数据。结构中包含有之后会被调用的函数指针,如果攻击者将受控数据修改为指向无效的偏移,这个函数指针就可能设置为指向恶意的代码,导致以运行浏览器用户的权限执行任意代码。 此外AVM...
ZDI-10-115: Adobe Flash Player AVM newFrameState Integer Overfow Remote Code Execution Vulnerability
ZDI-10-115: Adobe Flash Player AVM newFrameState Integer Overfow Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-115 June 25, 2010 -- CVE ID: CVE-2010-2160 -- Affected Vendors: Adobe -- Affected Products: Adobe Flash Player -- TippingPointTM IPS Customer...
Adobe Flash Player AVM newFrameState Integer Overfow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the AVM...
VUPEN Security Research - Adobe Flash Player "newclass" Invalid Pointer Vulnerability (CVE-2010-2173)
VUPEN Security Research - Adobe Flash Player "newclass" Invalid Pointer Vulnerability CVE-2010-2173 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Adobe Flash Player is a cross-platform browser-based application runtime that delivers uncompromised viewing of...
VulnCheck KEV: CVE-2003-0111
The ByteCode Verifier component of Microsoft Virtual Machine VM build 5.0.3809 and earlier, as used in Windows and Internet Explorer, allows remote attackers to bypass security checks and execute arbitrary code via a malicious Java applet, aka "Flaw in Microsoft VM Could Enable System Compromise....
SuSE9 Security Update : clamav (YOU Patch Number 12610)
Specially crafted CAB archives could crash clamav CVE-2010-1311 or bypass virus detection CVE-2010-0098. clamav has been updated to version 0.96 which fixes those issues. Citing freshmeat.net : This Release introduces new malware detection mechanisms and other significant improvements to the scan...
jdwp-version NSE Script
Detects the Java Debug Wire Protocol. This protocol is used by Java programs to be debugged via the network. It should not be open to the public Internet, as it does not provide any security against malicious attackers who can inject their own bytecode into the debugged process. Documentation for...
solaris/sparc executes command after setreuid
No description provided by source. / bunkersparcexec.c V1.0 - Sat Oct 21 17:45:27 CEST 2006 Solaris/sparc bytecode that executes command after setreuid 92 bytes + cmd setreuid0, 0 + execve"/bin/sh", "/bin/sh","-c","cmd", NULL; bunker - http://rawlab.mindcreations.com 37F1 A7A1 BB94 89DB A920 3105...
HP-UX Update for JRE Bytecode Verifier HPSBUX00187
Check for the Version of JRE Bytecode Verifier OpenVAS Vulnerability Test HP-UX Update for JRE Bytecode Verifier HPSBUX00187 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...
HP-UX Update for JRE Bytecode Verifier HPSBUX00187
Check for the Version of JRE Bytecode Verifier OpenVAS Vulnerability Test HP-UX Update for JRE Bytecode Verifier HPSBUX00187 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...