Integer overflow

Integer overflow in the Embedded OpenType EOT Font Engine t2embed.dll in Microsoft Windows 2000 SP4; Windows XP SP2 and SP3; Windows Server 2003 SP2; Windows Vista Gold, SP1, and SP2; Windows Server 2008 Gold, SP2, and R2; and Windows 7 allows remote attackers to execute arbitrary code via...

CVE-2010-0018

Integer overflow in the Embedded OpenType EOT Font Engine t2embed.dll in Microsoft Windows 2000 SP4; Windows XP SP2 and SP3; Windows Server 2003 SP2; Windows Vista Gold, SP1, and SP2; Windows Server 2008 Gold, SP2, and R2; and Windows 7 allows remote attackers to execute arbitrary code via...

CVE-2010-0018

CVE-2010-0018 is an integer overflow in the Windows Embedded OpenType (EOT) Font Engine (t2embed.dll) that could allow remote code execution via specially crafted EOT fonts. The issue occurs when decompressing EOT fonts and affects multiple Windows platforms (including Windows 2000 SP4, XP SP2/SP...

CVE-2010-0018

Integer overflow in the Embedded OpenType EOT Font Engine t2embed.dll in Microsoft Windows 2000 SP4; Windows XP SP2 and SP3; Windows Server 2003 SP2; Windows Vista Gold, SP1, and SP2; Windows Server 2008 Gold, SP2, and R2; and Windows 7 allows remote attackers to execute arbitrary code via...

Microsoft Embedded OpenType Font Engine Remote Code Execution Vulnerabilities (972270)

This host is missing a critical security update according to Microsoft Bulletin MS10-001. OpenVAS Vulnerability Test $Id: secpodms10-001.nasl 5934 2017-04-11 12:28:28Z antu123 $ Microsoft Embedded OpenType Font Engine Remote Code Execution Vulnerabilities 972270 Authors: Antu Sanadi Updated By:...

Ubuntu 4.10 / 5.04 : bzip2 vulnerabilities (USN-127-1)

Imran Ghory discovered a race condition in the file permission restore code of bunzip2. While a user was decompressing a file, a local attacker with write permissions in the directory of that file could replace the target file with a hard link. This would cause bzip2 to restore the file permissio...

SUSE-SA:2005:038: clamav

The remote host is missing the patch for the advisory SUSE-SA:2005:038 clamav. This security update upgrades the Clamav virus scan engine to the version 0.68.1. Among other bugfixes and improvements, this update fixes a bug in the Quantum decompressor routines that can be used for a remote denial...

Mandrake Linux Security Advisory : clamav (MDKSA-2005:113)

Andrew Toller and Stefan Kanthak discovered that a flaw in libmspack's Quantum archive decompressor renders Clam AntiVirus vulnerable to a Denial of Service attack. The updated packages have been patched to correct the problem. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...

CVE-2005-2056

CVE-2005-2056 affects ClamAV (clamav) via the Quantum archive decompressor in the libmspack component. A crafted Quantum archive can cause a remote denial of service (application crash) in ClamAV, including clamd, for versions before 0.86.1. Multiple open advisories (Gentoo GLSA, Debian DSA, SUSE...

[SA15811] ClamAV Quantum Decompressor Denial of Service Vulnerability

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

Debian DSA-730-1 : bzip2 - race condition

Imran Ghory discovered a race condition in bzip2, a high-quality block-sorting file compressor and decompressor. When decompressing a file in a directory an attacker has access to, bunzip2 could be tricked to set the file permissions to a different file the user has permissions to. %NASLMINLEVEL...

Mandrake Linux Security Advisory : bzip2 (MDKSA-2005:091)

A race condition in the file permission restore code of bunzip2 was discovered by Imran Ghory. While a user was decompressing a file, a local attacker with write permissions to the directory containing the compressed file could replace the target file with a hard link which would cause bunzip2 to...

unarj: Long filenames buffer overflow and a path traversal vulnerability

Background unarj is an ARJ archive decompressor. Description unarj has a bounds checking vulnerability within the handling of long filenames in archives. It also fails to properly sanitize paths when extracting an archive if the "x" option is used to preserve paths. Impact An attacker could trigg...