7636 matches found
MidiRecord2 MidiRecord.CC - Local Buffer Overflow
// source: https://www.securityfocus.com/bid/19190/info Midirecord is prone to a local buffer-overflow vulnerability because it fails to do proper bounds checking on user-supplied data before using it in a finite-sized buffer. An attacker can exploit this issue to execute arbitrary code in the...
Mozilla Firefox Javascript navigator Object Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of the Mozilla Firefox web browser. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The flaw exists when assigning specific values to the...
hdweGUEST <= 2.1.1 Cross Site Scripting Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory: hdweGUEST = 2.1.1 Cross Site Scripting Vulnerabilities Release Date: 2006/07/18 Last Modified: 2006/07/18 Author: Tamriel tamriel at gmx dot net Application: hdweGUEST 2.1.1 Risk: Low Vendor Status: contacted | no reply | no patch available...
Perl hackers need to know the 1 0 thing-vulnerability warning-the black bar safety net
Perl is the expert level of the system administrator's preferred scripting language, but its role is far more than that. As a design for file and text processing language, in addition to a variety of other uses, it is also extremely suitable for UNIX system Management, Web programming, and databa...
Mandrake Linux Security Advisory : wv2 (MDKSA-2006:109)
A boundary checking error was discovered in the wv2 library, used for accessing Microsoft Word documents. This error can lead to an integer overflow induced by processing certain Word files. The updated packages have been patched to correct these issues. %NASLMINLEVEL 70300 C Tenable Network...
[SECURITY] [DSA 1100-1] New wv2 packages fix integer overflow
-------------------------------------------------------------------------- Debian Security Advisory DSA 1100-1 [email protected] http://www.debian.org/security/ Martin Schulze June 15th, 2006 http://www.debian.org/security/faq -...
DSA-1100 wv2 - integer overflow
Bulletin has no description...
SpamAssassin spamd vpopmail user vulnerability
Added: 06/09/2006 CVE: CVE-2006-2447 BID: 18290 OSVDB: 26177 Background SpamAssassin identifies spam e-mail using a variety of local and network based tests. spamd is a component of SpamAssassin which allows it to run as a network daemon. Problem When the vpopmail -v and paranoid -P options are...
iShopCart vGetPost() Remote Buffer Overflow Exploit (cgi)
No description provided by source. / Creator: K-sPecial xzziroz.net of .aware awarenetwork.org Name: ishopcart-cgi-bof.c = easy-scart6.c Date: 5/25/2006 Version: 1.00 5/25/2006 - ishopcart-cgi-bof.c created Description: there is an overflow in the vGetPost function, it does not do any size checki...
Cryptomathic - ActiveX Control Remote Buffer Overflow
Cryptomathic - ActiveX Control Remote Buffer Overflow source: https://www.securityfocus.com/bid/17852/info Cryptomathic ActiveX control is prone to a buffer-overflow vulnerability. The software fails to perform sufficient bounds-checking of user-supplied input before copying it to an insufficient...
Cryptomathic - ActiveX Control Remote Buffer Overflow
source: https://www.securityfocus.com/bid/17852/info Cryptomathic ActiveX control is prone to a buffer-overflow vulnerability. The software fails to perform sufficient bounds-checking of user-supplied input before copying it to an insufficiently sized memory buffer. Invoking the object from a...
libxine -- multiple buffer overflow vulnerabilities
The libxine development team reports that several vulnerabilities had been found in the libxine library. The first vulnerability is caused by improper checking of the src/input/libreal/real.c "realparsesdp" function. A remote attacker could exploit this by tricking an user to connect to a...
BankTown ActiveX Control 1.4.2.51817/1.5.2.50209 - Remote Buffer Overflow
source: https://www.securityfocus.com/bid/17815/info BankTown ActiveX control is prone to a buffer-overflow vulnerability. The software fails to perform sufficient bounds-checking of user-supplied input before copying it to an insufficiently sized memory buffer. Invoking the object from a malicio...
Symantec VERITAS NetBackup Database Manager Buffer Overflow Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable Symantec VERITAS NetBackup installations. Authentication is not required to exploit this vulnerability. The specific flaw exists within the NetBackup Database Manager service bpdbm.exe due to insufficient bounds...
[SECURITY] [DSA 1017-1] New Linux kernel 2.6.8 packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 1017-1 [email protected] http://www.debian.org/security/ Dann Frazier, Simon Horman March 23th, 2006 http://www.debian.org/security/faq -...
Zoo 2.10 - Parse.c Local Buffer Overflow
Zoo 2.10 - Parse.c Local Buffer Overflow source: https://www.securityfocus.com/bid/17126/info Zoo is prone to a local buffer-overflow vulnerability. This issue is due to a failure in the application to do proper bounds checking on user-supplied data before using it in a finite-sized buffer. An...
Zoo 2.10 - Parse.c Local Buffer Overflow
source: https://www.securityfocus.com/bid/17126/info Zoo is prone to a local buffer-overflow vulnerability. This issue is due to a failure in the application to do proper bounds checking on user-supplied data before using it in a finite-sized buffer. An attacker can exploit this issue to execute...
Ipswitch Collaboration Suite Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Ipswitch Collaboration Suite. Authentication is required to exploit this vulnerability. This specific flaw exists within the IMAP daemon. A lack of bounds checking during the parsing of long...
PeerCast 0.1216 - nextCGIarg Remote Buffer Overflow (1)
PeerCast 0.1216 - nextCGIarg Remote Buffer Overflow 1 / GNU PeerCast include include include include include include include include include struct target char name; int retaddr...
PeerCast <= 0.1216 (nextCGIarg) Remote Buffer Overflow Exploit
No description provided by source. / GNU PeerCast = v0.1216 Remote Exploit ====================================== PeerCast is a simple, free way to listen to radio and watch video on the internet. A remotely exploitable buffer overflow has been identified by INFIGO-2006-03-01 which can be...