Lucene search
K

6464 matches found

RedHat Linux
RedHat Linux
added 2009/04/16 10:33 p.m.4 views

Important: Red Hat Security Advisory: xpdf security update

An updated xpdf package that fixes multiple security issues is now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having important security impact by the Red Hat Security Response Team. Xpdf is an X Window System based viewer for Portable Document Format PDF files...

7.5CVSS6.3AI score0.07347EPSS
Exploits1References12
RedHat Linux
RedHat Linux
added 2009/04/16 10:11 p.m.5 views

PDF JBIG2 invalid free()

The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to execute arbitrary code via a crafted PDF file that triggers a free of invalid data...

6.8CVSS6.2AI score0.05411EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/04/16 10:11 p.m.3 views

PDF JBIG2 MMR infinite loop DoS

The JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service infinite loop and hang via a crafted PDF file...

4.3CVSS5.9AI score0.0377EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/04/16 10:11 p.m.6 views

xpdf: Freeing of potentially uninitialized memory in JBIG2 decoder

The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allows remote attackers to cause a denial of service crash via a crafted PDF file that triggers a free of uninitialized memory...

4.3CVSS5.8AI score0.02318EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/04/16 10:11 p.m.2 views

PDF JBIG2 integer overflow

Integer overflow in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to execute arbitrary code via a crafted PDF file...

6.8CVSS6.3AI score0.05549EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/04/16 10:11 p.m.3 views

PDF JBIG2 MMR decoder buffer overflows

Multiple buffer overflows in the JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allow remote attackers to execute arbitrary code via a crafted PDF file...

7.5CVSS6.3AI score0.07347EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/04/16 10:11 p.m.6 views

xpdf: Multiple integer overflows in JBIG2 decoder

Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service crash via a crafted PDF file, related to 1 JBIG2Stream::readSymbolDictSeg, 2 JBIG2Stream::readSymbolDictSeg, and 3...

4.3CVSS5.9AI score0.02577EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/04/16 10:11 p.m.6 views

PDF JBIG2 decoder OOB read

The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service crash via a crafted PDF file that triggers an out-of-bounds read...

4.3CVSS5.8AI score0.0377EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/04/16 10:11 p.m.6 views

xpdf: Multiple buffer overflows in JBIG2 decoder (setBitmap, readSymbolDictSeg) (CVE-2009-0195)

Multiple buffer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service crash via a crafted PDF file, related to 1 JBIG2SymbolDict::setBitmap and 2 JBIG2Stream::readSymbolDictSeg...

6.8CVSS6AI score0.05374EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2009/04/15 12:0 a.m.28 views

SuSE Security Advisory SUSE-SA:2009:019 (krb5)

The remote host is missing updates announced in advisory SUSE-SA:2009:019. OpenVAS Vulnerability Test $Id: susesa2009019.nasl 6668 2017-07-11 13:34:29Z cfischer $ Description: Auto-generated from advisory SUSE-SA:2009:019 krb5 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

10CVSS0.6AI score0.08898EPSS
Exploits3
OpenVAS
OpenVAS
added 2009/04/15 12:0 a.m.23 views

RedHat Security Advisory RHSA-2009:0409

The remote host is missing updates announced in advisory RHSA-2009:0409. Kerberos is a network authentication system which allows clients and servers to authenticate to each other using symmetric encryption and a trusted third party, the Key Distribution Center KDC. An input validation flaw was...

10CVSS7.1AI score0.08898EPSS
Exploits0References3
Prion
Prion
added 2009/04/09 12:30 a.m.21 views

Null pointer dereference

The asn1decodegeneraltime function in lib/krb5/asn.1/asn1decode.c in the ASN.1 GeneralizedTime decoder in MIT Kerberos 5 aka krb5 before 1.6.4 allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via vectors involving an invalid DER encoding that...

10CVSS8.4AI score0.08898EPSS
Exploits0References50Affected Software9
NVD
NVD
added 2009/04/09 12:30 a.m.19 views

CVE-2009-0846

The asn1decodegeneraltime function in lib/krb5/asn.1/asn1decode.c in the ASN.1 GeneralizedTime decoder in MIT Kerberos 5 aka krb5 before 1.6.4 allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via vectors involving an invalid DER encoding that...

10CVSS8AI score0.08898EPSS
Exploits0References50
OSV
OSV
added 2009/04/09 12:30 a.m.2 views

DEBIAN-CVE-2009-0847

The asn1bufimbed function in the ASN.1 decoder in MIT Kerberos 5 aka krb5 1.6.3, when PK-INIT is used, allows remote attackers to cause a denial of service application crash via a crafted length value that triggers an erroneous malloc call, related to incorrect calculations with pointer arithmeti...

4.3CVSS7.1AI score0.02773EPSS
Exploits1References1
NVD
NVD
added 2009/04/09 12:30 a.m.32 views

CVE-2009-0847

The asn1bufimbed function in the ASN.1 decoder in MIT Kerberos 5 aka krb5 1.6.3, when PK-INIT is used, allows remote attackers to cause a denial of service application crash via a crafted length value that triggers an erroneous malloc call, related to incorrect calculations with pointer arithmeti...

4.3CVSS7.1AI score0.02773EPSS
Exploits1References38
Prion
Prion
added 2009/04/09 12:30 a.m.25 views

Design/Logic Flaw

The asn1bufimbed function in the ASN.1 decoder in MIT Kerberos 5 aka krb5 1.6.3, when PK-INIT is used, allows remote attackers to cause a denial of service application crash via a crafted length value that triggers an erroneous malloc call, related to incorrect calculations with pointer arithmeti...

4.3CVSS6.8AI score0.02773EPSS
Exploits1References38Affected Software1
OSV
OSV
added 2009/04/09 12:30 a.m.8 views

CVE-2009-0847

The asn1bufimbed function in the ASN.1 decoder in MIT Kerberos 5 aka krb5 1.6.3, when PK-INIT is used, allows remote attackers to cause a denial of service application crash via a crafted length value that triggers an erroneous malloc call, related to incorrect calculations with pointer arithmeti...

6.3AI score
Exploits0References38
OSV
OSV
added 2009/04/09 12:0 a.m.37 views

DSA-1766-1 krb5 - several vulnerabilities

Bulletin has no description...

10CVSS6.3AI score0.08898EPSS
Exploits3
Cvelist
Cvelist
added 2009/04/09 12:0 a.m.30 views

CVE-2009-0846

The asn1decodegeneraltime function in lib/krb5/asn.1/asn1decode.c in the ASN.1 GeneralizedTime decoder in MIT Kerberos 5 aka krb5 before 1.6.4 allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via vectors involving an invalid DER encoding that...

7.6AI score0.08898EPSS
Exploits0References50
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.33 views

Mandriva Update for qt4 MDKSA-2007:075 (qt4)

Check for the Version of qt4 OpenVAS Vulnerability Test Mandriva Update for qt4 MDKSA-2007:075 qt4 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

4.3CVSS6.3AI score0.02054EPSS
Exploits0References2
Rows per page
Query Builder