CVE-2006-3460

Heap-based buffer overflow in the JPEG decoder in the TIFF library libtiff before 3.8.2 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an encoded JPEG stream that is longer than the scan line size TiffScanLineSize...

Multiple libtiff flaws (CVE-2006-3460 CVE-2006-3461 CVE-2006-3462 CVE-2006-3463 CVE-2006-3464 CVE-2006-3465)

Heap-based buffer overflow in the PixarLog decoder in the TIFF library libtiff before 3.8.2 might allow context-dependent attackers to execute arbitrary code via unknown vectors...

Multiple libtiff flaws (CVE-2006-3460 CVE-2006-3461 CVE-2006-3462 CVE-2006-3463 CVE-2006-3464 CVE-2006-3465)

Heap-based buffer overflow in the JPEG decoder in the TIFF library libtiff before 3.8.2 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an encoded JPEG stream that is longer than the scan line size TiffScanLineSize...

DSA-1137-1 tiff - several vulnerabilities

Bulletin has no description...

WebWasher Remote ARJ Decoder Malformed Archive Handling DoS

According to its version, the version of WebWasher installed on the remote host is affected by a denial of service vulnerability when handling a specially crafted ARJ file. C Tenable Network Security include"compat.inc"; if description scriptid21749; scriptversion"1.12"; scriptcvsdate"Date:...

USN-267-1: mailman vulnerability

A remote Denial of Service vulnerability was discovered in the decoder for multipart messages. Certain parts of type "message/delivery-status" or parts containing only two blank lines triggered an exception. An attacker could exploit this to crash Mailman by sending a specially crafted email to a...

- libtasn1 buffer overflow

Tiny ASN.1 Library libtasn1 before 0.2.18, as used by 1 GnuTLS 1.2.x before 1.2.10 and 1.3.x before 1.3.4, and 2 GNU Shishi, allows attackers to crash the DER decoder and possibly execute arbitrary code via "out-of-bounds access" caused by invalid input, as demonstrated by the ProtoVer SSL test...

CVE-2006-0645

Tiny ASN.1 Library libtasn1 before 0.2.18, as used by 1 GnuTLS 1.2.x before 1.2.10 and 1.3.x before 1.3.4, and 2 GNU Shishi, allows attackers to crash the DER decoder and possibly execute arbitrary code via "out-of-bounds access" caused by invalid input, as demonstrated by the ProtoVer SSL test...

Design/Logic Flaw

Tiny ASN.1 Library libtasn1 before 0.2.18, as used by 1 GnuTLS 1.2.x before 1.2.10 and 1.3.x before 1.3.4, and 2 GNU Shishi, allows attackers to crash the DER decoder and possibly execute arbitrary code via "out-of-bounds access" caused by invalid input, as demonstrated by the ProtoVer SSL test...

CVE-2006-0645

Tiny ASN.1 Library libtasn1 before 0.2.18, as used by 1 GnuTLS 1.2.x before 1.2.10 and 1.3.x before 1.3.4, and 2 GNU Shishi, allows attackers to crash the DER decoder and possibly execute arbitrary code via "out-of-bounds access" caused by invalid input, as demonstrated by the ProtoVer SSL test...

CVE-2006-0645

The CVE-2006-0645 entry concerns Tiny ASN.1 Library (libtasn1) before 0.2.18, used by GnuTLS 1.2.x before 1.2.10 and 1.3.x before 1.3.4, and by GNU Shishi. The issue is an out-of-bounds access in the DER decoder caused by invalid input, which can crash the DER decoder and possibly allow arbitrary...

CVE-2006-0645

Tiny ASN.1 Library libtasn1 before 0.2.18, as used by 1 GnuTLS 1.2.x before 1.2.10 and 1.3.x before 1.3.4, and 2 GNU Shishi, allows attackers to crash the DER decoder and possibly execute arbitrary code via "out-of-bounds access" caused by invalid input, as demonstrated by the ProtoVer SSL test...

[gnutls-dev] Libtasn1 0.2.18 - Tiny ASN.1 Library - Security release

All, this release fixes several serious bugs that would make the DER decoder in libtasn1 crash on invalid input. The problems were reported by Evgeny Legerov on the 31th of January. New releases of GnuTLS will follow later today. We invite more detailed analysis of the problem, following our...

Ubuntu 5.04 : kdelibs vulnerability (USN-114-1)

Bruno Rohee discovered a buffer overflow in the PCX decoder of kimgio. If an attacker tricked a user into loading a malicious PCX image with a KDE application, he could exploit this to execute arbitrary code with the privileges of the user opening the image. Note that Tenable Network Security has...

Ubuntu 4.10 / 5.04 : imagemagick vulnerabilities (USN-132-1)

Damian Put discovered a buffer overflow in the PNM image decoder. Processing a specially crafted PNM file with a small 'colors' value resulted in a crash of the application that used the ImageMagick library. CAN-2005-1275 Another Denial of Service vulnerability was found in the XWD decoder...

Ubuntu 5.04 : kdelibs fixed packages (USN-114-2)

USN-114-1 fixed a vulnerability in the PCX decoder of kimgio. Unfortunately it was discovered that the original patches were faulty and caused regressions. This update now has the correct patches. This update also fixes the disappearing KDE settings which were caused by the accidental removal of...

Ubuntu 4.10 : exim4 vulnerabilities (USN-56-1)

A flaw has been found in the hostaton function, which can overflow a buffer if it is presented with an illegal IPv6 address that has more than 8 components. When supplying certain command line parameters, the input was not checked, so that a local attacker could possibly exploit the buffer overfl...

PPC LongXOR Encoder

This encoder is ghandi's PPC dword xor encoder but uses a tag-based terminator rather than a length. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'PPC LongXOR Encoder', 'Description' = %q Thi...

Single-byte XOR Countdown Encoder

This encoder uses the length of the payload as a position-dependent encoder key to produce a small decoder stub. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Single-byte XOR Countdown...

CVE-2005-2308

The CVE-2005-2308 entry affects Microsoft Internet Explorer's JPEG decoding component. The provided documents describe a denial-of-service condition (CPU consumption or crash) and the possibility of arbitrary code execution triggered by specially crafted JPEG images (examples: mov_fencepost.jpg, ...