5353 matches found
Mandriva Linux Security Advisory : freetype2 (MDVSA-2009:243-2)
Multiple integer overflows in FreeType 2.3.9 and earlier allow remote attackers to execute arbitrary code via vectors related to large values in certain inputs in 1 smooth/ftsmooth.c, 2 sfnt/ttcmap.c, and 3 cff/cffload.c. This update corrects the problem. Update : Packages for 2008.0 are provided...
Design/Logic Flaw
The saveForwardAttachments procedure in the Compose Mail functionality in vtiger CRM 5.0.4 allows remote authenticated users to execute arbitrary code by composing an e-mail message with an attachment filename ending in 1 .php in installations based on certain Apache HTTP Server configurations, 2...
CVE-2009-3244
Heap-based buffer overflow in the SwDir.dll ActiveX control in Adobe Shockwave Player 11.5.1.601 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long PlayerVersion property value...
Buffer overflow
Buffer overflow in the perfcopyattr function in kernel/perfcounter.c in the Linux kernel 2.6.31-rc1 allows local users to cause a denial of service crash and execute arbitrary code via a "big size data" to the perfcounteropen system call...
CVE-2008-7225
Heap-based buffer overflow in Foxit Remote Access Server aka WAC Server 2.0 Build 3503 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via long SSH packets, a different vulnerability than CVE-2008-0151...
CVE-2009-3169
Multiple unspecified vulnerabilities in Hitachi JP1/File Transmission Server/FTP before 09-00 allow remote attackers to execute arbitrary code via unknown attack vectors...
CVE-2009-3071
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.0.14, and 3.5.x before 3.5.2, allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown vectors...
CVE-2008-7159
The silcasn1encoder function in lib/silcasn1/silcasn1encode.c in Secure Internet Live Conferencing SILC Toolkit before 1.1.8 allows remote attackers to overwrite a stack location and possibly execute arbitrary code via a crafted OID value, related to incorrect use of a %lu format string...
CVE-2009-3163
Multiple format string vulnerabilities in lib/silcclient/command.c in Secure Internet Live Conferencing SILC Toolkit before 1.1.10, and SILC Client 1.1.8 and earlier, allow remote attackers to execute arbitrary code via format string specifiers in a channel name, related to 1...
CVE-2009-3074
CVE-2009-3074 is associated with Mozilla Firefox’s JavaScript engine and is described in connected advisories as an unspecified vulnerability in the Firefox JavaScript engine prior to 3.0.14, enabling remote attackers to trigger memory corruption and crash the application or possibly execute arbi...
Memory corruption
Microsoft Windows Media Format Runtime 9.0, 9.5, and 11; and Microsoft Media Foundation on Windows Vista Gold, SP1, and SP2 and Server 2008; allows remote attackers to execute arbitrary code via an MP3 file with crafted metadata that triggers memory corruption, aka "Windows Media Playback Memory...
Pidgin MSN SLP Packets Denial Of Service Vulnerability (Windows)
This host has Pidgin installed and is prone to Denial of Service vulnerability. OpenVAS Vulnerability Test $Id: secpodpidginmsnslpdosvulnwin.nasl 5122 2017-01-27 12:16:00Z teissa $ Pidgin MSN SLP Packets Denial Of Service Vulnerability Windows Authors: Nikita MR Copyright: Copyright c 2009 SecPod...
CVE-2009-2961
CVE-2009-2961 describes a stack-based buffer overflow in the player Thaddy de Konng KOL Player 1.0 , triggered by a long URL in a .MP3 playlist file. According to the records, this can allow a remote attacker to cause a denial of service or execute arbitrary code. The provided documents confirm t...
Buffer overflow
Multiple buffer overflows in Rumpus before 6.0.1 allow remote attackers to 1 cause a denial of service segmentation fault via a long HTTP verb in the HTTP component; and allow remote authenticated users to execute arbitrary code via a long argument to the 2 MKD, 3 XMKD, 4 RMD, and other unspecifi...
CVE-2008-7074
CVE-2008-7074 describes a format string vulnerability in MemeCode Software i.Scribe (versions 1.88 through 2.00 before Beta9) that is triggered by format specifiers in the signon message of server responses. The issue can be exploited by remote SMTP servers to cause a denial of service (crash) an...
CVE-2008-7074
Format string vulnerability in MemeCode Software i.Scribe 1.88 through 2.00 before Beta9 allows remote SMTP servers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers in a server response, which is not properly handled "when displaying the signon...
Remote file inclusion
PHP remote file inclusion vulnerability in kernel/smarty/Smarty.class.php in PHPEcho CMS 2.0 rc3 allows remote attackers to execute arbitrary PHP code via a URL in unspecified vectors that modify the smartycompilepath variable in the fetch function...
CVE-2008-7026
CVE-2008-7026 describes an unrestricted file-upload vulnerability in eFront (version 3.5.1 build 2710 and earlier) where an attacker can upload a file with an executable extension as a user avatar via the filesystem3.class.php upload process, and then access it through a direct request to the fil...
CVE-2009-2916
Format string vulnerability in the CNSAddTxt function in logs.dll in 2K Games Vietcong 2 1.10 and earlier might allow remote attackers to execute arbitrary code via format string specifiers in the nickname...
Code injection
WP-Syntax plugin 0.9.1 and earlier for Wordpress, with registerglobals enabled, allows remote attackers to execute arbitrary PHP code via the testfilterwphead array parameter to test/index.php, which is used in a call to the calluserfuncarray function...