[oCERT-2009-002] OpenCORE insufficient bounds checking during MP3 decoding

2009-002 OpenCORE insufficient bounds checking during MP3 decoding Description: OpenCORE, an open source multimedia decoding subsystem, suffers from an integer underflow during Huffman decoding resulting in improper bounds checking when writing to a heap allocated buffer. Decoding a specially...

[SECURITY] Fedora 9 Update: roundcubemail-0.2-7.stable.fc9

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

CA20090126-01: CA Anti-Virus Engine Detection Evasion Multiple Vulnerabilities

Title: CA20090126-01: CA Anti-Virus Engine Detection Evasion Multiple Vulnerabilities CA Advisory Reference: CA20090126-01 CA Advisory Date: 2009-01-26 Reported By: Thierry Zoller and Sergio Alvarez of n.runs AG Impact: A remote attacker can evade detection. Summary: The CA Anti-Virus engine...

OpenX 2.6.3 Local File Inclusion

I have found a local file inclusion exploit in OpenX 2.6.3, this is in the script "fc.php", located in /www/delivery/ Here is a snip of the code: snip includeonce '../../init-delivery.php'; $MAXPLUGINSADPLUGINNAME = 'MAXtype'; if!isset$GET$MAXPLUGINSADPLUGINNAME echo $MAXPLUGINSADPLUGINNAME . ' i...

SuSE Security Advisory SUSE-SA:2009:006 (openssl)

The remote host is missing updates announced in advisory SUSE-SA:2009:006. OpenVAS Vulnerability Test $Id: susesa2009006.nasl 6668 2017-07-11 13:34:29Z cfischer $ Description: Auto-generated from advisory SUSE-SA:2009:006 openssl Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

[Wintercore Research ] Fujitsu SystemcastWizard Lite PXEService Remote Buffer Overflow.

Wintercore Research:: Advisory W01-0109 html version: http://www.wintercore.com/advisories/advisoryW010109.html 1. Background "SystemcastWizard Lite is support software for the setup of the PRIMEQUEST system" 2. Non-technical description PXEService.exe is prone to a remote buffer overflow due to...

Oracle Secure Backup NDMP_CONECT_CLIENT_AUTH Command Buffer Overflow Vulnerability

Oracle Secure Backup NDMPCONECTCLIENTAUTH Command Buffer Overflow Vulnerability 2009.January.13 Fortinet's FortiGuard Global Security Research Team Discovers Vulnerability in Oracle Secure Backup Summary: ======== A Buffer Overflow vulnerability exists Oracle Secure Backup 10.2.0.2 through a...

Realtek Media Player Playlist Buffer Overflow Vulnerability

This host has Realtek Media Player installed and is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: secpodrealtekmediaplayerbofvuln.nasl 5370 2017-02-20 15:24:26Z cfi $ Realtek Media Player Playlist Buffer Overflow Vulnerability Authors: Chandan S Copyright c 2008 SecPod,...

[SECURITY] Fedora 8 Update: roundcubemail-0.2-5.beta.fc8

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

[SECURITY] Fedora 10 Update: roundcubemail-0.2-4.beta.fc10

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

[SECURITY] Fedora 9 Update: roundcubemail-0.2-4.beta.fc9

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

CF_Auction - Blind SQL Injection

CFAuction - Blind SQL Injection -------------------------------AlpHaNiX---------------------------------- Found By : AlpHaNiX website : www.offensivetrack.org contact : AlpHaATHACKERDOTBZ script : CFAUCTION download : null Demo : http://www.cfwebsite.com/ Exploits : --=BLIND SQL INJECTION=--...

Andys PHP KnowledgeBase 0.92.9 - Arbitrary File Upload

Andys PHP KnowledgeBase 0.92.9 - Arbitrary File Upload ============================================================== Andy's PHP Knowledgebase Arbitrary File Upload Vulnerability ============================================================== ,--^----------,--------,-----,-------^--, | |||||||||...

[USN-680-1] Samba vulnerability

=========================================================== Ubuntu Security Notice USN-680-1 November 27, 2008 samba vulnerability CVE-2008-4314 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 8.10 This advisory also appli...

SuSE 10 Security Update : gecko-sdk and mozilla-xulrunner (ZYPP Patch Number 5811)

This update backports the latest security fixes to the Mozilla XULRunner engine. It fixes following security issues : - The http-index-format MIME type parser nsDirIndexParser in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 does not check for an allocatio...

iseemedia LPViewer ActiveX Control Multiple Buffer Overflows (CVE-2008-4384)

iseemedia is a software development company focused on the commercialization of advanced, rich content adaptation and distribution solutions for Web applications. iseemedia's platforms are used by websites worldwide. The iseemedia LPViewer ActiveX control contains multiple buffer overflow...

Design/Logic Flaw

The JavaScript engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service crash via vectors related to "insufficient class checking" in the Date class...

Mozilla crash with evidence of memory corruption

The JavaScript engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service crash via vectors related to "insufficient class checking" in the Date class...

Mozilla crash with evidence of memory corruption

The JavaScript engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service crash via vectors related to "insufficient class checking" in the Date class...

openSUSE 10 Security Update : kernel (kernel-5751)

This kernel update fixes various bugs and also several security issues : CVE-2008-4576: Fixed a crash in SCTP INIT-ACK, on mismatch between SCTP AUTH availability. This might be exploited remotely for a denial of service crash attack. CVE-2008-3833: The genericfilesplicewrite function in...