3291 matches found
multiple vulnerabilities in lha
Array index error in the maketable function in unlzh.c in the LZH decompression component in gzip 1.3.5, when running on certain platforms, allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted GZIP archive that triggers an...
gzip -- multiple vulnerabilities
Problem Description Multiple programming errors have been found in gzip which can be triggered when gzip is decompressing files. These errors include insufficient bounds checks in buffer use, a NULL pointer dereference, and a potential infinite loop. Impact The insufficient bounds checks in buffe...
CVE-2006-4335
Array index error in the maketable function in unlzh.c in the LZH decompression component in gzip 1.3.5, when running on certain platforms, allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted GZIP archive that triggers an...
FreeBSD-SA-06:21.gzip
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-06:21.gzip Security Advisory The FreeBSD Project Topic: Multiple vulnerabilities in gzip Category: contrib Module: gzip Announced: 2006-09-19 Credits: Tavis...
RHEL 4 : ncompress (RHSA-2006:0663)
The remote Redhat Enterprise Linux 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2006:0663 advisory. The ncompress package contains file compression and decompression utilities, which are compatible with the original UNIX compress utility .Z file...
CVE-2005-4786
The CVE-2005-4786 issue is a buffer overflow in the ALZ archive decompression in vrAZMain.dll (version 5.8.22.137) used by HAURI antivirus products (ViRobot Expert 4.0, ViRobot Advanced Server, HAURI LiveCall). It can allow user‑assisted attackers to execute arbitrary code by processing an ALZ ar...
DSA-1026-1 sash - buffer overflows
Bulletin has no description...
Directory traversal
Directory traversal vulnerability in KGB Archiver before 1.1.5.22 allows remote attackers to overwrite arbitrary files wile decompressing an archive, possibly due to directory traversal sequences in a filename...
Socket unreachable and decompression buffer-overflow in Vavoom 1.19.1
Luigi Auriemma Application: Vavoom http://www.vavoom-engine.com Versions: = 1.19.1 Platforms: Windows, DOS, nix, BSD and more Bugs: A socket unreachable B decompression crash Exploitation: remote, versus server and client Date: 26 Mar 2006 Author: Luigi Auriemma e-mail: [email protected] web:...
In the WEBSHELL, the clever use of file sharing to perform system commands-bug warning-the black bar safety net
Article author: pt007 (article is very concise, but make it so difficult Recently in the invasion of Win2003 when found default case not use the system comes with the cmd. exe files to execute system commands, upload the cmd. exe file because the file is too big to fail, then I pass a station...
In the WEBSHELL, the clever use of file sharing to perform system commands-bug warning-the black bar safety net
Recently in the invasion of Win2003 when found default case not use the system comes with the cmd. exe files to execute system commands, upload the cmd. exe file because the file is too big to fail, then I pass a station adjacent to the machine's file share successfully upload the cmd. exe file,...
Heap overflow
Heap-based buffer overflow in T2EMBED.DLL in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 up to SP1, Windows 98, and Windows ME allows remote attackers to execute arbitrary code via an e-mail message or web page with a crafted Embedded Open Type EOT web font that triggers the...
CVE-2005-4786
Buffer overflow in the archive decompression library vrAZMain.dll 5.8.22.137, as used in HAURI anti-virus products including 1 ViRobot Expert 4.0, 2 ViRobot Advanced Server, and 3 HAURI LiveCall, allows user-assisted attackers to execute arbitrary code via an ALZ archive containing a file with a...
CVE-2005-2659
Buffer overflow in the LZX decompression in CHM Lib chmlib 0.35, as used in products such as KchmViewer, has unknown impact and attack vectors...
DEBIAN-CVE-2005-2659
Buffer overflow in the LZX decompression in CHM Lib chmlib 0.35, as used in products such as KchmViewer, has unknown impact and attack vectors...
CVE-2005-2659
Buffer overflow in the LZX decompression in CHM Lib chmlib 0.35, as used in products such as KchmViewer, has unknown impact and attack vectors...
CVE-2005-2659
Buffer overflow in the LZX decompression in CHM Lib chmlib 0.35, as used in products such as KchmViewer, has unknown impact and attack vectors...
CVE-2005-2659
Buffer overflow in the LZX decompression in CHM Lib chmlib 0.35, as used in products such as KchmViewer, has unknown impact and attack vectors...
CVE-2005-2659
CVE-2005-2659 is a buffer overflow in the LZX decompression path of CHM Lib (chmlib) 0.35, used by KchmViewer. Root cause: overflow in LZX decompression. The impact and attack vectors are described as unknown in initial sources; later advisories (Debian DSA-886-1 and related OpenVAS entries) refe...
CVE-2005-2659
Buffer overflow in the LZX decompression in CHM Lib chmlib 0.35, as used in products such as KchmViewer, has unknown impact and attack vectors...