2228 matches found
Microsoft Outlook Express 4.x/5.x/6.0 - Attachment Processing File Extension Obfuscation
source: https://www.securityfocus.com/bid/13837/info Microsoft Outlook Express is prone to an attachment file extension obfuscation vulnerability that may present a risk under certain configurations. The issue manifests due to Microsoft Outlook Express behavior while handling an 'EML' email...
iDEFENSE Security Advisory 04.26.05: Citrix Program Neighborhood Agent Arbitrary Shortcut Creation Vulnerability
Citrix Program Neighborhood Agent Arbitrary Shortcut Creation Vulnerability iDEFENSE Security Advisory 04.26.05 www.idefense.com/application/poi/display?id=237&type=vulnerabilities April 26, 2005 I. BACKGROUND Citrix Program Neighborhood Agent is a part of the Citrix Presentation Server Client an...
GLSA-200503-06 : BidWatcher: Format string vulnerability
The remote host is affected by the vulnerability described in GLSA-200503-06 BidWatcher: Format string vulnerability Ulf Harnhammar discovered a format string vulnerability in 'netstuff.cpp'. Impact : Remote attackers can potentially exploit this vulnerability by sending specially crafted respons...
CVE-2005-0605
scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmapunit value that leads to a buffer overflow...
Cyrus IMAP Server: Multiple overflow vulnerabilities
Background The Cyrus IMAP Server is an efficient, highly-scalable IMAP e-mail server. Description Possible single byte overflows have been found in the imapd annotate extension and mailbox handling code. Furthermore stack buffer overflows have been found in fetchnews, the backend and imapd. Impac...
GLSA-200501-11 : Dillo: Format string vulnerability
The remote host is affected by the vulnerability described in GLSA-200501-11 Dillo: Format string vulnerability Gentoo Linux developer Tavis Ormandy found a format string bug in Dillo's handling of messages in aInterfacemsg. Impact : An attacker could craft a malicious web page which, when access...
GraphicsMagick: PSD decoding heap overflow
Background GraphicsMagick is a collection of tools to read, write and manipulate images in many formats. GraphicsMagick is originally derived from ImageMagick 5.5.2. Description Andrei Nigmatulin discovered that handling a Photoshop Document PSD file with more than 24 layers in ImageMagick could...
teTeX, pTeX, CSTeX: Multiple vulnerabilities
Background teTeX is a complete and open source TeX distribution. CSTeX is another TeX distribution including Czech and Slovak support. pTeX is another alternative that allows Japanese publishing with TeX. xdvizilla is an auxiliary script used to integrate DVI file viewing in Mozilla-based browser...
RHEL 2.1 / 3 : libtiff (RHSA-2005:019)
Updated libtiff packages that fix various integer overflows are now available. The libtiff package contains a library of functions for manipulating TIFF Tagged Image File Format image format files. iDEFENSE has reported an integer overflow bug that affects libtiff. An attacker who has the ability...
CVE-2004-1419
PHP remote file inclusion vulnerability in ZeroBoard 4.1pl4 and earlier allows remote attackers to execute arbitrary PHP code by modifying the 1 zbpath parameter to outlogin.php or 2 dir parameter to write.php to reference a URL on a remote web server that contains the code...
Xpdf, GPdf: New integer overflows
Background Xpdf is an open source viewer for Portable Document Format PDF files. GPdf is a Gnome-based PDF viewer that includes some Xpdf code. Description A new integer overflow issue was discovered in Xpdf's Gfx::doImage function. Impact An attacker could entice an user to open a...
security flaw
Unknown vulnerability in the Linux kernel before 2.4.23, on the AMD AMD64 and Intel EM64T architectures, associated with "setting up TSS limits," allows local users to cause a denial of service crash and possibly execute arbitrary code...
Debian DSA-567-1 : tiff - heap overflows
Several problems have been discovered in libtiff, the Tag Image File Format library for processing TIFF graphics files. An attacker could prepare a specially crafted TIFF graphic that would cause the client to execute arbitrary code or crash. The Common Vulnerabilities and Exposures Project has...
rssh: pizzacode security alert
PIZZACODE SECURITY ALERT program: rssh risk: low problem: string format vulnerability in log.c details: rssh is a restricted shell for use with OpenSSH, allowing only scp and/or sftp. For example, if you have a server which you only want to allow users to copy files off of via scp, without...
Debian DSA-291-1 : ircii - buffer overflows
Timo Sirainen discovered several problems in ircII, a popular client for Internet Relay Chat IRC. A malicious server could craft special reply strings, triggering the client to write beyond buffer boundaries. This could lead to a denial of service if the client only crashes, but may also lead to...
GLSA-200409-27 : glFTPd: Local buffer overflow vulnerability
The remote host is affected by the vulnerability described in GLSA-200409-27 glFTPd: Local buffer overflow vulnerability The glFTPd server is vulnerable to a buffer overflow in the 'dupescan' program. This vulnerability is due to an unsafe strcpy call which can cause the program to crash when a...
SUSE-SA:2004:033: gtk2, gdk-pixbuf
The remote host is missing the patch for the advisory SUSE-SA:2004:033 gtk2, gdk-pixbuf. gdk-pixbuf is an image loading and rendering library mostly used by GTK and GNOME applications. It is distributed as a separate package for gtk1 and integrated into the gtk2 package. Chris Evans has discovere...
MailEnable HTTPMail Service Content-Length Header Overflow
The target is running at least one instance of MailEnable that has a flaw in the HTTPMail service MEHTTPS.exe in the Professional and Enterprise Editions. The flaw can be exploited by issuing an HTTP GET with an Content-Length header exceeding 100 bytes, which causes a fixed-length buffer to...
CVE-2004-0068
PHP remote file inclusion vulnerability in config.php for PhpDig 1.6.5 and earlier allows remote attackers to execute arbitrary PHP code by modifying the $relativescriptpath parameter to reference a URL on a remote web server that contains the code...
CVE-2002-0844
Off-by-one overflow in the CVS PreservePermissions of rcs.c for CVSD before 1.11.2 allows local users to execute arbitrary code...