Tiki Wiki CMS Groupware 'unserialize()' Multiple PHP Code Execution Vulnerabilities

Tiki Wiki CMS Groupware is prone to multiple remote PHP code- execution vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

2 Buffer Overflows in Wireless Manager Sony VAIO

Advisory ID: HTB23063 Product: Wireless Manager Sony VAIO Vendor: Sony Computers Vulnerable Versions: 4.0.0.0 and probably prior Tested Version: 4.0.0.0 Vendor Notification: 7 December 2011 Vendor Patch: 20 January 2012 Public Disclosure: 30 May 2012 Vulnerability Type: Buffer Overflow CVE...

CVE-2011-3442

The kernel in Apple iOS before 5.0.1 does not ensure the validity of flag combinations for an mmap system call, which allows local users to execute arbitrary unsigned code via a crafted app...

qt/harfbuzz buffer overflow

Heap-based buffer overflow in the LookupMarkMarkPos function in the HarfBuzz module harfbuzz-gpos.c, as used by Qt before 4.7.4 and Pango, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted font file...

CVE-2010-4307

Buffer overflow in Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code via unspecified vectors...

CVE-2011-0310

Buffer overflow in IBM WebSphere MQ 7.0 before 7.0.1.4 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted header field in a message...

Joomla JE Messenger 1.0 Shell Upload

JE Messenger 1.0 Arbitrary File Upload Vulnerability Name JE Messenger Vendor http://joomlaextensions.co.in Versions Affected 1.0 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date 2010-12-09 X. INDEX I. ABOUT THE APPLICATIO...

Openswan cisco banner option handling vulnerability

Buffer overflow in programs/pluto/xauth.c in the client in Openswan 2.6.26 through 2.6.28 might allow remote authenticated gateways to execute arbitrary code or cause a denial of service via a long ciscobanner aka serverbanner field...

Microsoft Windows - Win32k!GreStretchBltInternal() Does Not Handle src dest

Microsoft Windows - Win32k!GreStretchBltInternal Does Not Handle src dest Microsoft Windows win32k!GreStretchBltInternal does not handle src == dest ---------------------------------------------------------------------------- A bitblt bit block transfer is used to copy one rectangular region of...

EnjoySAP SAP GUI - ActiveX Control Buffer Overflow (Metasploit)

$Id: enjoysapguipreparetoposthtml.rb 9525 2010-06-15 07:18:08Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

CVE-2010-0395

OpenOffice.org 2.x and 3.0 before 3.2.1 allows user-assisted remote attackers to bypass Python macro security restrictions and execute arbitrary Python code via a crafted OpenDocument Text ODT file that triggers code execution when the macro directory structure is previewed...

SystemTap 1.0/1.1 - '__get_argv()' / '__get_compat_argv()' Local Memory Corruption

source: https://www.securityfocus.com/bid/38120/info SystemTap is prone to multiple local memory-corruption vulnerabilities. An attacker may exploit these issues to execute arbitrary code with SYSTEM privileges. Failed exploit attempts will result in a denial of service. SystemTap 1.1 is...

RedHat Security Advisory RHSA-2009:1680

The remote host is missing updates announced in advisory RHSA-2009:1680. Xpdf is an X Window System based viewer for Portable Document Format PDF files. Petr Gajdos and Christian Kornacker of SUSE reported a buffer overflow flaw in Xpdf's Type 1 font parser. A specially-crafted PDF file with an...

Certain domain names can allow execution of arbitrary code

Specially crafted domain names can cause a memory corruption in Opera, which may lead to a crash. Successful exploitation can lead to execution of arbitrary code...

Sendmail 8.12.x - 'X-header' Remote Heap Buffer Overflow (PoC)

source: https://www.securityfocus.com/bid/34944/info Sendmail is prone to a heap-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied input before copying it to an insufficiently sized buffer. Successfully exploiting this issue may allow an attacker to...

CVE-2009-1444

PHP remote file inclusion vulnerability in indexk.php in WebPortal CMS 0.8-beta allows remote attackers to execute arbitrary PHP code via a URL in the libpath parameter...

Security Update for Microsoft Excel 2002 (KB959988)

A security vulnerability exists in Microsoft Excel 2002 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...

Ubuntu: Security Advisory (USN-617-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS Update for vim-common CESA-2008:0617 centos4 x86_64

Check for the Version of vim-common OpenVAS Vulnerability Test CentOS Update for vim-common CESA-2008:0617 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modi...

Security Update for Microsoft Office Word 2003 (KB956357)

A security vulnerability exists in Microsoft Office Word 2003 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...