Lucene search
K

296 matches found

securityvulns
securityvulns
added 2008/07/10 12:0 a.m.52 views

[Full-disclosure] #2008-007 libpoppler uninitialized pointer - POC

hi. I was in doubt about releasing this because of there is no official patch. I suppose at this point anyone could accomplish the same thing so, again I'm in doubt. A friend once told me that if in doubt take your pants off. I've already tried that and I didn't earn no resolution to my conflict...

7.5CVSS7.9AI score0.14253EPSS
Exploits2
securityvulns
securityvulns
added 2008/07/09 12:0 a.m.54 views

[oCERT-2008-007] libpoppler uninitialized pointer

2008/07/07 2008-007 libpoppler uninitialized pointer Description: The poppler PDF rendering library suffers a memory management bug which leads to arbitrary code execution. The vulnerability is present in the Page class constructor/destructor. The pageWidgets object is not initialized in the Page...

7.5CVSS1.4AI score0.14253EPSS
Exploits2
exploitpack
exploitpack
added 2008/07/08 12:0 a.m.36 views

Poppler 0.8.4 - libpoppler Uninitialized pointer Code Execution

Poppler 0.8.4 - libpoppler Uninitialized pointer Code Execution Felipe Andres Manzano [email protected] updates in http://felipe.andres.manzano.googlepages.com/home ''' Sumary: ======= The libpoppler pdf rendering library, can free uninitialized pointers, leading to arbitrary code...

0.5AI score
Exploits0
OSV
OSV
added 2008/07/07 11:41 p.m.1 views

DEBIAN-CVE-2008-2950

The Page destructor in Page.cc in libpoppler in Poppler 0.8.4 and earlier deletes a pageWidgets object even if it is not initialized by a Page constructor, which allows remote attackers to execute arbitrary code via a crafted PDF document...

7.5CVSS7.5AI score0.14253EPSS
Exploits2References1
NVD
NVD
added 2008/07/07 11:41 p.m.13 views

CVE-2008-2950

The Page destructor in Page.cc in libpoppler in Poppler 0.8.4 and earlier deletes a pageWidgets object even if it is not initialized by a Page constructor, which allows remote attackers to execute arbitrary code via a crafted PDF document...

7.5CVSS7.3AI score0.14253EPSS
Exploits2References20
Prion
Prion
added 2008/07/07 11:41 p.m.11 views

Code injection

The Page destructor in Page.cc in libpoppler in Poppler 0.8.4 and earlier deletes a pageWidgets object even if it is not initialized by a Page constructor, which allows remote attackers to execute arbitrary code via a crafted PDF document...

7.5CVSS7.5AI score0.14253EPSS
Exploits2References20Affected Software1
Cvelist
Cvelist
added 2008/07/07 11:0 p.m.19 views

CVE-2008-2950

The Page destructor in Page.cc in libpoppler in Poppler 0.8.4 and earlier deletes a pageWidgets object even if it is not initialized by a Page constructor, which allows remote attackers to execute arbitrary code via a crafted PDF document...

7.2AI score0.14253EPSS
Exploits2References20
Debian CVE
Debian CVE
added 2008/07/07 11:0 p.m.38 views

CVE-2008-2950

The Page destructor in Page.cc in libpoppler in Poppler 0.8.4 and earlier deletes a pageWidgets object even if it is not initialized by a Page constructor, which allows remote attackers to execute arbitrary code via a crafted PDF document...

7.5CVSS7.2AI score0.14253EPSS
Exploits2
UbuntuCve
UbuntuCve
added 2008/07/07 12:0 a.m.25 views

CVE-2008-2950

The Page destructor in Page.cc in libpoppler in Poppler 0.8.4 and earlier deletes a pageWidgets object even if it is not initialized by a Page constructor, which allows remote attackers to execute arbitrary code via a crafted PDF document...

7.5CVSS7.5AI score0.14253EPSS
Exploits2References2
Prion
Prion
added 2007/07/24 6:30 p.m.15 views

Design/Logic Flaw

The IM Server aka IMserve or IMserver 2.0.5.30 and probably earlier in Ipswitch Instant Messaging before 2.07 in Ipswitch Collaboration Suite ICS allows remote attackers to cause a denial of service daemon crash via certain data to TCP port 5179 that overwrites a destructor, as reachable by the 1...

5CVSS6.9AI score0.0646EPSS
Exploits0References6Affected Software2
NVD
NVD
added 2007/07/21 12:30 a.m.20 views

CVE-2007-3926

Ipswitch IMail Server 2006 before 2006.21 allows remote attackers to cause a denial of service daemon crash via unspecified vectors involving an "overwritten destructor."...

7.8CVSS6.7AI score0.02915EPSS
Exploits0References3
seebug.org
seebug.org
added 2007/03/28 12:0 a.m.88 views

PHP 4.4.5 / 4.4.6 session_decode() Double Free Exploit PoC

No description provided by source. ?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || // // | |/ || '|/ |/ -| ' / -/ |||| /| || / //...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2006/08/08 12:0 a.m.36 views

php local buffer underflow could lead to arbitary code execution

Affected versions: php 5.1.4 and older, 4.4.3 and possibly older Cause: when php-s sscanf functions format argument contains argument swap and extra arguments are given like. sscanf'foo ','$1s',$bar then it reads an pointer to pointer to zval structure past the end of argument array by one. Php...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2005/10/13 12:0 a.m.28 views

Microsoft Design Tools COM object uninitialized memory reference

CPolyCtrl class destructor attempts to call a function by the pointer from uninitialized dynamic memory region...

2.6AI score
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2005/07/13 12:0 a.m.42 views

FreeBSD : php -- memory_limit related vulnerability (dd7aa4f1-102f-11d9-8a8a-000c41e2cdad)

Stefan Esser of e-matters discovered a condition within PHP that may lead to remote execution of arbitrary code. The memorylimit facility is used to notify functions when memory contraints have been met. Under certain conditions, the entry into this facility is able to interrupt functions such as...

5.1CVSS6.1AI score0.54856EPSS
Exploits1References4
FreeBSD
FreeBSD
added 2004/07/07 12:0 a.m.57 views

php -- memory_limit related vulnerability

Stefan Esser of e-matters discovered a condition within PHP that may lead to remote execution of arbitrary code. The memorylimit facility is used to notify functions when memory contraints have been met. Under certain conditions, the entry into this facility is able to interrupt functions such as...

5.1CVSS6.9AI score0.54856EPSS
Exploits1References2
Rows per page
Query Builder