2130 matches found
Microsoft Excel memory corruption
Invalid calculation of version information causes memory corruption...
CVE-2007-2833
Emacs 21 allows user-assisted attackers to cause a denial of service crash via certain crafted images, as demonstrated via a GIF image in vm mode, related to image size calculation...
CVE-2007-2833
Emacs 21 allows user-assisted attackers to cause a denial of service crash via certain crafted images, as demonstrated via a GIF image in vm mode, related to image size calculation...
Design/Logic Flaw
Emacs 21 allows user-assisted attackers to cause a denial of service crash via certain crafted images, as demonstrated via a GIF image in vm mode, related to image size calculation...
CVE-2007-2833
Emacs 21 allows user-assisted attackers to cause a denial of service crash via certain crafted images, as demonstrated via a GIF image in vm mode, related to image size calculation...
CVE-2007-3023
unsp.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1 does not properly calculate the end of a certain buffer, with unknown impact and remote attack vectors...
CVE-2007-3023
unsp.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1 does not properly calculate the end of a certain buffer, with unknown impact and remote attack vectors...
DEBIAN-CVE-2007-3023
unsp.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1 does not properly calculate the end of a certain buffer, with unknown impact and remote attack vectors...
CVE-2007-3023
CVE-2007-3023 is discussed in multiple connected sources as part of the ClamAV vulnerabilities list. The Debian advisory (DSA-1320-1) and related OpenVAS entries describe several issues in ClamAV, including: (1) the NsPack decompression path not sanitising an internal length variable, potentially...
CVE-2007-3023
unsp.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1 does not properly calculate the end of a certain buffer, with unknown impact and remote attack vectors...
CVE-2007-3023
unsp.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1 does not properly calculate the end of a certain buffer, with unknown impact and remote attack vectors...
Softerra Time-Assistant <= 6.2 (inc_dir) Remote File Inclusion Vuln
No description provided by source. \ /\ / | \ | / // / | | \ \ Y / | / / \ /\| /\ / / / / / .OR.ID ECHOADV80$2007 ----------------------------------------------------------------------------------------- ECHOADV80$2007 Softerra Time-Assistant = 6.2 incdir Remote File Inclusion Vulnerability...
WordPress Plugin SpamBam - Key Calculation Security Bypass
WordPress Plugin SpamBam - Key Calculation Security Bypass source: https://www.securityfocus.com/bid/27291/info SpamBam is prone to a security-bypass vulnerability because client-accessible data can be used to calculate verification keys. Attackers can exploit this issue to submit arbitrary form...
ZDI-06-032: Microsoft Office PowerPoint Malformed Slide Notes Rebuilding Vulnerability
ZDI-06-032: Microsoft Office PowerPoint Malformed Slide Notes Rebuilding Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-06-032.html October 10, 2006 -- CVE ID: CVE-2006-3435 -- Affected Vendor: Microsoft -- Affected Products: Microsoft Office 2000 SP3 Microsoft Office XP SP3...
RSA Signature Forgery — Mozilla
Philip Mackenzie and Marius Schilder of Google informed us of Daniel Bleichenbacher's recent presentation of a common implementation error in RSA signature verification, a failure to account for extra data in the signature. For signatures with a small exponent such as 3 it is possible for an...
CVE-2006-3510
CVE-2006-3510 affects Microsoft Internet Explorer 6 on Windows 2000, where the Remote Data Service Object (RDS.DataControl) can crash a system. The vulnerability stems from an invalid length calculation in operations using SysAllocStringLen, which then triggers a buffer over-read. The described i...
Apache chunked encoding buffer overflow
Added: 05/08/2006 CVE: CVE-2002-0392 BID: 5033 OSVDB: 838 Background Apache web servers support chunked encoding, which is used by a web client to send data to the server in parts, or chunks. Problem A flaw in the calculation of the size of chunked encoding leads to a buffer overflow, allowing...
Borland C BCB6 compiler / tiny c compiler Invalid sizeof() calculation
Invalid sizeof calculation for integer during 64-bit code compilation leads to different problems...
Null pointer dereference
ipnatpptp in the PPTP NAT helper netfilter/ipnathelperpptp.c in Linux kernel 2.6.14, and other versions, allows remote attackers to cause a denial of service memory corruption or crash via an inbound PPTPINCALLREQUEST packet that causes a null pointer to be used in an offset calculation...
CVE-2006-0036
ipnatpptp in the PPTP NAT helper netfilter/ipnathelperpptp.c in Linux kernel 2.6.14, and other versions, allows remote attackers to cause a denial of service memory corruption or crash via an inbound PPTPINCALLREQUEST packet that causes a null pointer to be used in an offset calculation...