Lucene search
K

2116 matches found

Cvelist
Cvelist
added 2009/04/16 3:0 p.m.21 views

CVE-2008-5259

Integer signedness error in DivX Web Player 1.4.2.7, and possibly earlier versions, allows remote attackers to execute arbitrary code via a DivX file containing a crafted Stream Format STRF chunk, which triggers a heap-based buffer overflow...

7.6AI score0.05718EPSS
Exploits2References7
Metasploit
Metasploit
added 2009/04/13 2:33 p.m.44 views

Samba lsa_io_trans_names Heap Overflow

This module triggers a heap overflow in the LSA RPC service of the Samba daemon. This module uses the TALLOC chunk overwrite method credit Ramon and Adriano, which only works with Samba versions 3.0.21-3.0.24. Additionally, this module will not work when the Samba "log level" parameter is higher...

10CVSS7.6AI score0.77806EPSS
Exploits23
RedHat Linux
RedHat Linux
added 2009/03/05 12:48 a.m.4 views

libpng arbitrary free() flaw

The PNG reference library aka libpng before 1.0.43, and 1.2.x before 1.2.35, as used in pngcrush and other applications, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PNG file that triggers a free of an...

6.8CVSS7.5AI score0.04825EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2009/03/05 12:10 a.m.5 views

libpng arbitrary free() flaw

The PNG reference library aka libpng before 1.0.43, and 1.2.x before 1.2.35, as used in pngcrush and other applications, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PNG file that triggers a free of an...

6.8CVSS7.5AI score0.04825EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2009/03/04 8:20 p.m.4 views

libpng arbitrary free() flaw

The PNG reference library aka libpng before 1.0.43, and 1.2.x before 1.2.35, as used in pngcrush and other applications, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PNG file that triggers a free of an...

6.8CVSS7.5AI score0.04825EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2009/03/04 7:58 p.m.5 views

libpng arbitrary free() flaw

The PNG reference library aka libpng before 1.0.43, and 1.2.x before 1.2.35, as used in pngcrush and other applications, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PNG file that triggers a free of an...

6.8CVSS7.5AI score0.04825EPSS
Exploits2References4
NVD
NVD
added 2009/02/22 10:30 p.m.23 views

CVE-2009-0040

The PNG reference library aka libpng before 1.0.43, and 1.2.x before 1.2.35, as used in pngcrush and other applications, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PNG file that triggers a free of an...

6.8CVSS7.4AI score0.04825EPSS
Exploits2References82
OpenVAS
OpenVAS
added 2009/01/29 12:0 a.m.21 views

Winamp AIFF File Multiple Buffer Overflow Vulnerabilities

This host is installed with Winamp and is prone to Buffer Overflow vulnerability. OpenVAS Vulnerability Test $Id: secpodwinampmultbofvuln.nasl 5148 2017-01-31 13:16:55Z teissa $ Winamp AIFF File Multiple Buffer Overflow Vulnerabilities Authors: Sharath S Copyright: Copyright c 2009 SecPod,...

10CVSS0.9AI score0.16738EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.15 views

mplayer -- multiple vulnerabilities

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

10CVSS6.6AI score0.05178EPSS
Exploits0References9
OSV
OSV
added 2008/07/07 11:41 p.m.1 views

DEBIAN-CVE-2008-2430

Integer overflow in the Open function in modules/demux/wav.c in VLC Media Player 0.8.6h on Windows allows remote attackers to execute arbitrary code via a large fmt chunk in a WAV file...

9.3CVSS8.2AI score0.05879EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2008/06/30 3:33 p.m.4 views

mod_jk chunk too long

The AJP connector in Apache Tomcat 5.5.15 uses an incorrect length for chunks, which can cause a buffer over-read in the ajpprocesscallback in modjk, which allows remote attackers to read portions of sensitive memory...

7.8CVSS7.6AI score0.08319EPSS
Exploits0References4
seebug.org
seebug.org
added 2008/06/05 12:0 a.m.14 views

LibPNG Graphics Library Remote Buffer Overflow Exploit

No description provided by source. / exploit for libpng, tested on version 1.2.5 infamous42md AT hotpop DOT com shouts to mitakeet hope u patched :D n00batlocalho.outernet ./po Usage: ./po retaddr outfile ...

7.1AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2008/05/21 12:0 a.m.18 views

Trillian Multiple Protocol XML Parsing Memory Corruption Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Cerulean Studios Trillian Pro. Authentication is not required to exploit this vulnerability. The specific flaw exists within XML parsing in talk.dll. When processing certain malformed attributes...

9.3CVSS4.8AI score0.06149EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2008/05/20 2:12 p.m.2 views

mod_jk chunk too long

The AJP connector in Apache Tomcat 5.5.15 uses an incorrect length for chunks, which can cause a buffer over-read in the ajpprocesscallback in modjk, which allows remote attackers to read portions of sensitive memory...

7.8CVSS7.6AI score0.08319EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2008/05/01 12:0 a.m.51 views

FreeBSD : png -- unknown chunk processing uninitialized memory access (57c705d6-12ae-11dd-bab7-0016179b2dd5)

Secunia reports : Tavis Ormandy has reported a vulnerability in libpng, which can be exploited by malicious people to cause a Denial of Service, disclose potentially sensitive information, or potentially compromise an application using the library. The vulnerability is caused due to the improper...

7.5CVSS8.3AI score0.05514EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2008/04/17 12:0 a.m.2 views

PT-2008-3409 · Xine · Xine-Lib

Name of the Vulnerable Software and Affected Versions: xine-lib versions 1.1.12 and earlier Description: The issue is a stack-based buffer overflow in the demux nsf send chunk function, located in src/demuxers/demux nsf.c. This allows remote attackers to cause a denial of service, potentially...

7.5CVSS8.1AI score0.15038EPSS
Exploits0References21
securityvulns
securityvulns
added 2008/04/14 12:0 a.m.43 views

libpng uninitialized memory reference

Uninitilized memory reference on zero-sized chunk with external chunk handlers...

7.5CVSS3.3AI score0.05514EPSS
Exploits1References1Affected Software1
FreeBSD
FreeBSD
added 2008/04/12 12:0 a.m.44 views

png -- unknown chunk processing uninitialized memory access

Secunia reports: Tavis Ormandy has reported a vulnerability in libpng, which can be exploited by malicious people to cause a Denial of Service, disclose potentially sensitive information, or potentially compromise an application using the library. The vulnerability is caused due to the improper...

7.5CVSS7.3AI score0.05514EPSS
Exploits1References2
Zero Day Initiative
Zero Day Initiative
added 2008/04/08 12:0 a.m.31 views

Microsoft GDI WMF Parsing Heap Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required in that a user must open a malicious file or visit a malicious web page. The specific flaw exists within the parsing of malformed WMF files. A...

9.3CVSS2.4AI score0.56828EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2007/12/13 12:0 a.m.49 views

SuSE 10 Security Update : libpng (ZYPP Patch Number 2325)

The sPLT chunk handling in libpng was incorrect and a handcrafted PNG file could be use to cause an out-of-bounds read, effectively crashing the PNG viewer or webbrowser. CVE-2006-5793 Additionally a 2 byte stackoverflow was fixed which we do not believe to be exploitable. It will cause an abort ...

7.5CVSS7.7AI score0.03975EPSS
Exploits1References4
Rows per page
Query Builder