Buffer overflow

Buffer overflow in ngxhttpmp4module.c in the ngxhttpmp4module module in nginx 1.0.7 through 1.0.14 and 1.1.3 through 1.1.18, when the mp4 directive is used, allows remote attackers to cause a denial of service memory overwrite or possibly execute arbitrary code via a crafted MP4 file...

Buffer overflow

Multiple buffer overflows in the 1 heapaddentry and 2 relocatedir functions in archivereadsupportformatiso9660.c in libarchive through 2.8.5 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted ISO9660 image...

Buffer overflow

Buffer overflow in libarchive through 2.8.5 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted TAR archive...

CVE-2011-1778

Buffer overflow in libarchive through 2.8.5 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted TAR archive...

CVE-2011-4874

CVE-2011-4874 affects MICROSYS PROMOTIC before 8.1.7. A use-after-free in handling a crafted project file (.pra) can lead to arbitrary code execution or data corruption with application crash. Affected products: PROMOTIC versions prior to 8.1.7. Exploitation is not remotely exploitable per ICS-CE...

Buffer overflow

Buffer overflow in the reassemblemessage function in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a series of fragmented RLC...

CVE-2012-0043

Buffer overflow in the reassemblemessage function in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a series of fragmented RLC...

DSA-2448-1 inspircd - buffer overflow

Bulletin has no description...

Mac OS X : Java for Mac OS X 10.6 Update 7

The remote Mac OS X host is running a version of Java for Mac OS X 10.6 that is missing Update 7, which updates the Java version to 1.6.031. As such, it is affected by several security vulnerabilities, the most serious of which may allow an untrusted Java applet to execute arbitrary code with the...

Ubuntu: Security Advisory (USN-1416-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2012-1335

Buffer overflow in the Cisco WebEx Recording Format WRF player T27 L through SP11 EP26, T27 LB through SP21 EP10, T27 LC before SP25 EP10, and T27 LD before SP32 CP1 allows remote attackers to execute arbitrary code via a crafted WRF file, a different vulnerability than CVE-2012-1336 and...

CVE-2012-1336

Buffer overflow in the Cisco WebEx Recording Format WRF player T27 L through SP11 EP26, T27 LB through SP21 EP10, T27 LC before SP25 EP10, and T27 LD before SP32 CP1 allows remote attackers to execute arbitrary code via a crafted WRF file, a different vulnerability than CVE-2012-1335 and...

Buffer overflow

Buffer overflow in TurboPower Abbrevia before 4.0, as used in ScadaTEC ScadaPhone 5.3.11.1230 and earlier, ScadaTEC ModbusTagServer 4.1.1.81 and earlier, and other products, allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted ZIP...

CVE-2011-4535

Buffer overflow in TurboPower Abbrevia before 4.0, as used in ScadaTEC ScadaPhone 5.3.11.1230 and earlier, ScadaTEC ModbusTagServer 4.1.1.81 and earlier, and other products, allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted ZIP...

Design/Logic Flaw

Use-after-free vulnerability in Google Chrome 17.0.963.66 and earlier allows remote attackers to bypass the DEP and ASLR protection mechanisms, and execute arbitrary code, via unspecified vectors, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2012. NOTE: the primary affected...

VLC Media Player Multiple Vulnerabilities (Mar 2012) - Mac OS X

VLC Media Player is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2011-5083

Unrestricted file upload vulnerability in inc/swf/swfupload.swf in Dotclear 2.3.1 and 2.4.2 allows remote attackers to execute arbitrary code by uploading a file with an executable PHP extension, then accessing it via a direct request to the file in an unspecified directory...

CVE-2012-1776

Multiple heap-based buffer overflows in VideoLAN VLC media player before 2.0.1 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted Real RTSP stream...

CVE-2012-1264

Unspecified vulnerability in Gretech GOM Media Player before 2.1.37.5091 allows remote attackers to execute arbitrary code via a crafted AVI file...

Ubuntu: Security Advisory (USN-1282-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...