2116 matches found
CVE-2008-5259
Integer signedness error in DivX Web Player 1.4.2.7, and possibly earlier versions, allows remote attackers to execute arbitrary code via a DivX file containing a crafted Stream Format STRF chunk, which triggers a heap-based buffer overflow...
Samba lsa_io_trans_names Heap Overflow
This module triggers a heap overflow in the LSA RPC service of the Samba daemon. This module uses the TALLOC chunk overwrite method credit Ramon and Adriano, which only works with Samba versions 3.0.21-3.0.24. Additionally, this module will not work when the Samba "log level" parameter is higher...
libpng arbitrary free() flaw
The PNG reference library aka libpng before 1.0.43, and 1.2.x before 1.2.35, as used in pngcrush and other applications, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PNG file that triggers a free of an...
libpng arbitrary free() flaw
The PNG reference library aka libpng before 1.0.43, and 1.2.x before 1.2.35, as used in pngcrush and other applications, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PNG file that triggers a free of an...
libpng arbitrary free() flaw
The PNG reference library aka libpng before 1.0.43, and 1.2.x before 1.2.35, as used in pngcrush and other applications, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PNG file that triggers a free of an...
libpng arbitrary free() flaw
The PNG reference library aka libpng before 1.0.43, and 1.2.x before 1.2.35, as used in pngcrush and other applications, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PNG file that triggers a free of an...
CVE-2009-0040
The PNG reference library aka libpng before 1.0.43, and 1.2.x before 1.2.35, as used in pngcrush and other applications, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PNG file that triggers a free of an...
Winamp AIFF File Multiple Buffer Overflow Vulnerabilities
This host is installed with Winamp and is prone to Buffer Overflow vulnerability. OpenVAS Vulnerability Test $Id: secpodwinampmultbofvuln.nasl 5148 2017-01-31 13:16:55Z teissa $ Winamp AIFF File Multiple Buffer Overflow Vulnerabilities Authors: Sharath S Copyright: Copyright c 2009 SecPod,...
mplayer -- multiple vulnerabilities
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
DEBIAN-CVE-2008-2430
Integer overflow in the Open function in modules/demux/wav.c in VLC Media Player 0.8.6h on Windows allows remote attackers to execute arbitrary code via a large fmt chunk in a WAV file...
mod_jk chunk too long
The AJP connector in Apache Tomcat 5.5.15 uses an incorrect length for chunks, which can cause a buffer over-read in the ajpprocesscallback in modjk, which allows remote attackers to read portions of sensitive memory...
LibPNG Graphics Library Remote Buffer Overflow Exploit
No description provided by source. / exploit for libpng, tested on version 1.2.5 infamous42md AT hotpop DOT com shouts to mitakeet hope u patched :D n00batlocalho.outernet ./po Usage: ./po retaddr outfile ...
Trillian Multiple Protocol XML Parsing Memory Corruption Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Cerulean Studios Trillian Pro. Authentication is not required to exploit this vulnerability. The specific flaw exists within XML parsing in talk.dll. When processing certain malformed attributes...
mod_jk chunk too long
The AJP connector in Apache Tomcat 5.5.15 uses an incorrect length for chunks, which can cause a buffer over-read in the ajpprocesscallback in modjk, which allows remote attackers to read portions of sensitive memory...
FreeBSD : png -- unknown chunk processing uninitialized memory access (57c705d6-12ae-11dd-bab7-0016179b2dd5)
Secunia reports : Tavis Ormandy has reported a vulnerability in libpng, which can be exploited by malicious people to cause a Denial of Service, disclose potentially sensitive information, or potentially compromise an application using the library. The vulnerability is caused due to the improper...
PT-2008-3409 · Xine · Xine-Lib
Name of the Vulnerable Software and Affected Versions: xine-lib versions 1.1.12 and earlier Description: The issue is a stack-based buffer overflow in the demux nsf send chunk function, located in src/demuxers/demux nsf.c. This allows remote attackers to cause a denial of service, potentially...
libpng uninitialized memory reference
Uninitilized memory reference on zero-sized chunk with external chunk handlers...
png -- unknown chunk processing uninitialized memory access
Secunia reports: Tavis Ormandy has reported a vulnerability in libpng, which can be exploited by malicious people to cause a Denial of Service, disclose potentially sensitive information, or potentially compromise an application using the library. The vulnerability is caused due to the improper...
Microsoft GDI WMF Parsing Heap Overflow Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required in that a user must open a malicious file or visit a malicious web page. The specific flaw exists within the parsing of malformed WMF files. A...
SuSE 10 Security Update : libpng (ZYPP Patch Number 2325)
The sPLT chunk handling in libpng was incorrect and a handcrafted PNG file could be use to cause an out-of-bounds read, effectively crashing the PNG viewer or webbrowser. CVE-2006-5793 Additionally a 2 byte stackoverflow was fixed which we do not believe to be exploitable. It will cause an abort ...