Mandriva Linux Security Advisory : OpenEXR (MDVSA-2009:191-1)

Multiple vulnerabilities has been found and corrected in OpenEXR : Multiple integer overflows in OpenEXR 1.2.2 and 1.6.1 allow context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via unspecified vectors that trigger heap-based buffer...

Hack stunt invasion site automatic installation of back door analysis-vulnerability warning-the black bar safety net

autorun. inf 2. shell. bat 3.hao.exeself-extracting file Idea: put all in C drive. When broiler master double-click the C drive to run automatically when the first file. The first file drive run the second file. While the second run of the third You run can be normal into the C drive. Will not...

Mandrake Security Advisory MDVSA-2009:191 (OpenEXR)

The remote host is missing an update to OpenEXR announced via advisory MDVSA-2009:191. OpenVAS Vulnerability Test $Id: mdksa2009191.nasl 6587 2017-07-07 06:35:35Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:191 OpenEXR Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

Mandrake Security Advisory MDVSA-2009:190 (OpenEXR)

The remote host is missing an update to OpenEXR announced via advisory MDVSA-2009:190. OpenVAS Vulnerability Test $Id: mdksa2009190.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:190 OpenEXR Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

CVE-2009-2675

Integer overflow in the unpack200 utility in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows context-dependent attackers to gain privileges via unspecified length fields in the header of a Pack200-compressed JAR file, which leads to...

Mandriva Linux Security Advisory : OpenEXR (MDVSA-2009:190)

Multiple vulnerabilities has been found and corrected in OpenEXR : Multiple integer overflows in OpenEXR 1.2.2 and 1.6.1 allow context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via unspecified vectors that trigger heap-based buffer...

CVE-2009-1721

The decompression implementation in the Imf::hufUncompress function in OpenEXR 1.2.2 and 1.6.1 allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via vectors that trigger a free of an uninitialized pointer...

CVE-2009-1721

The decompression implementation in the Imf::hufUncompress function in OpenEXR 1.2.2 and 1.6.1 allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via vectors that trigger a free of an uninitialized pointer...

Apple Quicktime Picture Viewer FLC Delta-Encoded Frame Decompression Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of QuickTime Player. User interaction is required to exploit this vulnerability in that the target must either open a malicious file, or visit a malicious web page. The specific flaw exists during...

ZDI-09-025: Apple Quicktime Picture Viewer FLC Delta-Encoded Frame Decompression Vulnerability

ZDI-09-025: Apple Quicktime Picture Viewer FLC Delta-Encoded Frame Decompression Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-025 June 2, 2009 -- CVE ID: CVE-2009-0951 -- Affected Vendors: Apple -- Affected Products: Apple Quicktime -- TippingPointTM IPS Customer Protection:...

Microsoft DirectShow MJPEG Decompression Remote Code Execution (MS09-011; CVE-2009-0084)

Microsoft DirectShow is used for streaming media on Microsoft Windows operating systems. The DirectShow technology performs client-side audio and video sourcing, manipulation and rendering.An MJPEG file is a media file where a number of JPEG images are connected together to create a video stream...

Microsoft DirectShow memory corruption

Memory corruption on Motion JPEG files decompression...

CentOS Update for bzip2 CESA-2008:0893 centos3 i386

Check for the Version of bzip2 OpenVAS Vulnerability Test CentOS Update for bzip2 CESA-2008:0893 centos3 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

OpenJDK Jar200 Decompression buffer overflow (6755943)

Integer overflow in the JAR unpacking utility unpack200 in the unpack library unpack.dll in Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier, and JDK and JRE 5.0 Update 16 and earlier, allows untrusted applications and applets to gain privileges via a Pack200 compressed JA...

Moderate: Red Hat Security Advisory: bzip2 security update

Updated bzip2 packages that fix a security issue are now available for Red Hat Enterprise Linux 2.1, 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Bzip2 is a freely available, high-quality data compressor. It provides both...

FreeBSD Ports: bzip2

The remote host is missing an update to the system as announced in the referenced advisory. VID 197f444f-e8ef-11d9-b875-0001020eed82 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

Debian Security Advisory DSA 886-1 (chmlib)

The remote host is missing an update to chmlib announced via advisory DSA 886-1. Several vulnerabilities have been discovered in chmlib, a library for dealing with CHM format files. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2005-2659 Palasik Sandor...

CVE-2007-6337

Unspecified vulnerability in the bzip2 decompression algorithm in nsis/bzlibprivate.h in ClamAV before 0.92 has unknown impact and remote attack vectors...

CVE-2007-6337

Unspecified vulnerability in the bzip2 decompression algorithm in nsis/bzlibprivate.h in ClamAV before 0.92 has unknown impact and remote attack vectors...

ClamAV: Multiple vulnerabilities

Background Clam AntiVirus is a free anti-virus toolkit for UNIX, designed especially for e-mail scanning on mail gateways. Description iDefense reported an integer overflow vulnerability in the cliscanpe function when parsing Portable Executable PE files packed in the MEW format, that could be...