Novell GroupWise <= 8.0 Malformed RCPT command Off-by-one Exploit

Exploit for unknown platform in category dos / poc ================================================================= Novell GroupWise = 8.0 Malformed RCPT command Off-by-one Exploit ================================================================= !usr/bin/perl -w QUICK AND DIRTY EXPLOIT Off-by-o...

Mandrake Security Advisory MDVSA-2009:030 (amarok)

The remote host is missing an update to amarok announced via advisory MDVSA-2009:030. OpenVAS Vulnerability Test $Id: mdksa2009030.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:030 amarok Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft In...

CVE-2009-0351

Stack-based buffer overflow in WFTPSRV.exe in WinFTP 2.3.0 allows remote authenticated users to execute arbitrary code via a long LIST argument beginning with an asterisk character...

CVE-2009-0349

Stack-based buffer overflow in FTPShell Server 4.3 allows user-assisted remote attackers to cause a denial of service persistent daemon crash and possibly execute arbitrary code via a long string in a licensing key aka .key file...

CVE-2009-0314

Untrusted search path vulnerability in the Python module in gedit allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySysSetArgv function CVE-2008-5983...

CVE-2009-0315

Untrusted search path vulnerability in the Python module in xchat allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySysSetArgv function CVE-2008-5983...

CVE-2008-5984

Untrusted search path vulnerability in the Python plugin in Dia 0.96.1, and possibly other versions, allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySysSetArgv function CVE-2008-5983...

SuSE Update for qt3 SUSE-SA:2007:048

Check for the Version of qt3 OpenVAS Vulnerability Test $Id: gbsuse2007048.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for qt3 SUSE-SA:2007:048 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you c...

CVE-2008-5982

Format string vulnerability in BMC PATROL Agent before 3.7.30 allows remote attackers to execute arbitrary code via format string specifiers in an invalid version number to TCP port 3181, which are not properly handled when writing a log message...

Format string

Format string vulnerability in BMC PATROL Agent before 3.7.30 allows remote attackers to execute arbitrary code via format string specifiers in an invalid version number to TCP port 3181, which are not properly handled when writing a log message...

CVE-2009-0282

Integer overflow in Ralink Technology USB wireless adapter RT73 3.08 for Windows, and other wireless card drivers including rt2400, rt2500, rt2570, and rt61, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a Probe Request packet with a long SSID,...

CVE-2009-0282

Integer overflow in Ralink Technology USB wireless adapter RT73 3.08 for Windows, and other wireless card drivers including rt2400, rt2500, rt2570, and rt61, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a Probe Request packet with a long SSID,...

Buffer overflow

Multiple buffer overflows in Winamp 5.541 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via 1 a large Common Chunk COMM header value in an AIFF file and 2 a large invalid value in an MP3 file...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in ccTiddly 1.7.4 and 1.7.6 allow remote attackers to execute arbitrary PHP code via a URL in the cctbase parameter to 1 index.php; 2 handle/proxy.php; 3 header.php, 4 include.php, and 5 workspace.php in includes/; and 6 plugins/RSS/files/rss.php...

Stack overflow

Stack-based buffer overflow in easyHDR PRO 1.60.2 allows user-assisted attackers to execute arbitrary code via an invalid Flexible Image Transport System FITS file. NOTE: some of these details are obtained from third party information...

CVE-2009-0008

The CVE-2009-0008 issue affects Apple QuickTime MPEG-2 Playback Component (Windows) prior to version 7.60.92.0. Documents describe a vulnerability where processing a crafted MPEG-2 movie can cause an application crash (DoS) or allow remote code execution. Exploitation described in sources indicat...

Design/Logic Flaw

Multiple array index errors in the Audible::Tag::readTag function in metadata/audible/audibletag.cpp in Amarok 1.4.10 through 2.0.1 allow remote attackers to cause a denial of service application crash or execute arbitrary code via an Audible Audio .aa file with a crafted 1 nlen or 2 vlen Tag...

CVE-2009-0136

The CVE-2009-0136 issue affects Amarok 1.4.10–2.0.1 through an insecure parsing path in Audible Audio (.aa) files. Specifically, multiple array index errors in Audible::Tag::readTag (metadata/audible/audibletag.cpp) can lead to an invalid pointer dereference or writing a 0x00 byte, after an alloc...

CVE-2008-5876

Buffer overflow in Irrlicht before 1.5 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unspecified vectors in the B3D loader...

CVE-2008-5722

Buffer overflow in SAWStudio 3.9i allows user-assisted remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a long SAWSTUDIO PREFERENCES STRUCT value in a .prf preferences file...