Debian Security Advisory DSA 708-1 (php3)

The remote host is missing an update to php3 announced via advisory DSA 708-1. OpenVAS Vulnerability Test $Id: deb7081.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 708-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian DSA-1414-1 : wireshark - several vulnerabilities

Several remote vulnerabilities have been discovered in the Wireshark network traffic analyzer, which may lead to denial of service or execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-6114 Stefan Esser discovered a buffer...

openSUSE 10 Security Update : libvorbis (libvorbis-4583)

Specially crafted OGG files could crash libvorbis or make it run into an endless loop CVE-2007-4029, CVE-2007-4065, CVE-2007-4066. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update libvorbis-458...

Wireshark DoS

Endless loop on MMS and SSL parsing, off-by-one on iSeries and DHCP/BOOTP parsing...

Multiple Zoo archivers DoS

Endless loop on archive content parsing...

Debian DSA-1264-1 : php4 - several vulnerabilities

Several remote vulnerabilities have been discovered in PHP, a server-side, HTML-embedded scripting language, which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-0906 It was discovered that an integer...

Remote DoS in libevent DNS parsing <= 1.2a

Author: Jon Oberheide [email protected] Date: Sun, February 18th, 2007 Summary ======= Application: libevent Affected Versions: 1.2 - 1.2a Vendor Website: http://monkey.org/provos/libevent/ Type of Vulnerability: Denial of Service - Remote Background ========== The libevent API provides a mechani...

USN-419-1: Samba vulnerabilities

A flaw was discovered in Samba's file opening code, which in certain situations could lead to an endless loop, resulting in a denial of service. CVE-2007-0452 A format string overflow was discovered in Samba's ACL handling on AFS shares. Remote users with access to an AFS share could create craft...

Avahi DNS response DoS

Malcrafted DNS response causes endless loop...

Linux kernel DoS

/proc/net/ip6flowlabel endless loop...

Multiple libtiff library vulnerabilities

Multiple buffer overflows on TIFF images parsing, endless loop, integer overflows, memory corruption...

Counter Strike (Half Life) game servers DoS

Incomplete client request leads to endless loop...

Ubuntu 4.10 / 5.04 / 5.10 : gtk+2.0, gdk-pixbuf vulnerabilities (USN-216-1)

Two integer overflows have been discovered in the XPM image loader of the GDK pixbuf library. By tricking an user into opening a specially crafted XPM image with any Gnome desktop application that uses this library, this could be exploited to execute arbitrary code with the privileges of the user...

Hasbani-WindWeb2.0 - GET Remote Denial of Service

Hasbani-WindWeb2.0 - GET Remote Denial of Service / . \ \ \ \ | | / | | | | \ / / /\ \ / \ | \ / / / / 26\09\05 / || / / i Title: Hasbani-WindWeb/2.0 - HTTP GET Remote DoS i Discovered by: Expanders i Exploit by: Expanders What is Hasbani-WindWeb/2.0 Hasbani server is a httpd created for...

Linux IPv6 sockets DoS

Endless loop is possible within udpv6getport function...

Multiple IBM DB2 Universal Database vulnerabilities

Server crash on constant string processing in queries; endless loop on hash joins processing; multiple problems with invalid connection termination; unauthorized creation of routine based objects; array overflow on oversized number of elements in 'in' list; db2jd crash on certain clients...

Endless loop in NetPanzer 0.8

Luigi Auriemma Application: NetPanzer http://netpanzer.berlios.de Versions: = 0.8 Platforms: Windows, Linux and Mac Bugs: endless loop Exploitation: remote, versus server and clients also if useless Date: 13 Jul 2005 Author: Luigi Auriemma e-mail: [email protected] web:...

Debian DSA-729-1 : php4 - missing input sanitising

An iDEFENSE researcher discovered two problems in the image processing functions of PHP, a server-side, HTML-embedded scripting language, of which one is present in woody as well. When reading a JPEG image, PHP can be tricked into an endless loop due to insufficient input validation. %NASLMINLEVE...

Server termination in Raknet 2.33 (before 30 May 2005)

Luigi Auriemma Application: Raknet network library http://www.rakkarsoft.com Versions: = 2.33 before 30 May 2005 the bug has been introduced in some recent updates but is not known what is the exact first vulnerable version Platforms: Windows and Unix Bug: server termination and endless loop...

[SECURITY] [DSA 729-1] New PHP4 packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 729-1 [email protected] http://www.debian.org/security/ Martin Schulze May 26th, 2005 http://www.debian.org/security/faq -...