ZDI-12-075 : Apple Quicktime RLE Sample Decoding Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-075 : Apple Quicktime RLE Sample Decoding Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-075 June 6, 2012 - -- CVE ID: CVE-2012-0668 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected Vendors: Apple...

ZDI-12-092 : RealNetworks RealPlayer QCELP Stream Parsing Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-092 : RealNetworks RealPlayer QCELP Stream Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-092 June 8, 2012 - -- CVE ID: CVE-2011-4247 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected...

ZDI-12-078 : Apple QuickTime SVQ3 Codec mb_skip_run Parsing Remote Code Execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-078 : Apple QuickTime SVQ3 Codec mbskiprun Parsing Remote Code Execution http://www.zerodayinitiative.com/advisories/ZDI-12-078 June 6, 2012 - -- CVE ID: CVE-2012-0669 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected Vendors: Apple - --...

RealNetworks RealPlayer QCELP Stream Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of RealNetworks RealPlayer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way...

Apple QuickTime SVQ3 Codec mb_skip_run Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Apple...

Apple QuickTime RLE Sample Decoding Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the...

CVE-2012-0947

Heap-based buffer overflow in the vqadecodechunk function in the VQA codec vqavideo.c in libavcodec in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.2 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a...

VMware ESXi/ESX patches resolve multiple security issues (VMSA-2010-0007)

The remote ESXi is missing one or more security related Updates from VMSA-2010-0007. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2012-1499

The JPEG 2000 codec jp2.c in OpenJPEG before 1.5 allows remote attackers to execute arbitrary code via a crafted palette index in a CMAP record of a JPEG image, which triggers memory corruption, aka "out-of heap-based buffer write."...

Heap overflow

The JPEG 2000 codec jp2.c in OpenJPEG before 1.5 allows remote attackers to execute arbitrary code via a crafted palette index in a CMAP record of a JPEG image, which triggers memory corruption, aka "out-of heap-based buffer write."...

K-Lite Mega Codec Pack 5.7.0 (.avi) use-after-free vulnerability

Exploit for windows platform in category local exploits Application :K-Lite Mega Codec Pack 5.7.0 .avi use-after-free vulnerability Auther : Senator of Pirates E-Mail : email protected FaceBook : /SenatorofPirates Bug : ---- Registers: eax=aa000080 ebx=00000000 ecx=719b3800 edx=00100000...

Fedora Update for libvpx FEDORA-2012-1140

Check for the Version of libvpx OpenVAS Vulnerability Test Fedora Update for libvpx FEDORA-2012-1140 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

Fedora Update for libvpx FEDORA-2011-11057

Check for the Version of libvpx OpenVAS Vulnerability Test Fedora Update for libvpx FEDORA-2011-11057 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

RealNetworks RealPlayer RV30 Sample Arbitrary Index Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of RealNetworks Real Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the...

RealNetworks RealPlayer Cook Codec Channel Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of RealNetworks Real Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the...

VMSA-2010-0018 VMware hosted products and ESX patches resolve multiple security issues

The remote ESXi is missing one or more security related Updates from VMSA-2010-0018. Summary VMware hosted products and ESX patches resolve multiple security issues. Relevant releases VMware Workstation 7.1.1 and earlier, VMware Workstation 6.5.4 and earlier, VMware Player 3.1.1 and earlier, VMwa...

VMware ESXi/ESX patches resolve multiple security issues (VMSA-2010-0018)

The remote ESXi is missing one or more security related Updates from VMSA-2010-0018. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

[ MDVSA-2012:023-1 ] libvpx

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2012:023-1 http://www.mandriva.com/security/ Package : libvpx Date : February 28, 2012 Affected: 2010.1, 2011. Problem Description: A vulnerability has been found and corrected in libvpx: VP8 Codec SDK libvpx...

Mandriva Update for libvpx MDVSA-2012:023 (libvpx)

Check for the Version of libvpx OpenVAS Vulnerability Test Mandriva Update for libvpx MDVSA-2012:023 libvpx Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

Mandriva Update for libvpx MDVSA-2012:023-1 (libvpx)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...