CVE-2008-2470

The InstallShield Update Service Agent ActiveX control in isusweb.dll allows remote attackers to cause a denial of service memory corruption and browser crash and possibly execute arbitrary code via a call to ExecuteRemote with a URL that results in a 404 error response...

CVE-2008-2470

CVE-2008-2470 : The InstallShield Update Service Agent ActiveX control in isusweb.dll has a memory corruption vulnerability triggered by ExecuteRemote() with a URL returning 404. This can allow remote, unauthenticated attackers to execute arbitrary code or crash the browser. The issue affects the...

CVE-2008-4116

Buffer overflow in Apple QuickTime 7.5.5 and iTunes 8.0 allows remote attackers to cause a denial of service browser crash or possibly execute arbitrary code via a long type attribute in a quicktime tag 1 on a web page or embedded in a 2 .mp4 or 3 .mov file, possibly related to the Checkstackcook...

CVE-2008-3608

ImageIO in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 allows context-dependent attackers to cause a denial of service memory corruption and application crash or execute arbitrary code via a crafted JPEG image with an embedded ICC profile...

CVE-2008-3621

VideoConference in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 allows remote attackers to cause a denial of service memory corruption and application crash or execute arbitrary code via vectors involving H.264 encoded media...

CVE-2008-3621

CVE-2008-3621 affects Apple Mac OS X 10.4.11 and 10.5 through 10.5.4, via VideoConference vulnerability in H.264-encoded media. The issue allows remote attackers to trigger memory corruption and an application crash (DoS) or to execute arbitrary code. The provided documents describe the vulnerabl...

Buffer overflow

Buffer overflow in the SQLVDIRLib.SQLVDirControl ActiveX control in Tools\Binn\sqlvdir.dll in Microsoft SQL Server 2000 aka SQL Server 8.0 allows remote attackers to cause a denial of service browser crash or possibly execute arbitrary code via a long URL in the second argument to the Connect...

CVE-2008-4087

Affected product: Acoustica Beatcraft 1.02 Build 19. The CVE describes a stack-based buffer overflow in a Beatcraft Project file (bcproj) where a long string in an instrument title field can be processed by Beatcraft, enabling user-assisted attackers to trigger a denial of service or arbitrary co...

CVE-2008-3529

Heap-based buffer overflow in the xmlParseAttValueComplex function in parser.c in libxml2 before 2.7.0 allows context-dependent attackers to cause a denial of service crash or execute arbitrary code via a long XML entity name...

CVE-2008-3529

Heap-based buffer overflow in the xmlParseAttValueComplex function in parser.c in libxml2 before 2.7.0 allows context-dependent attackers to cause a denial of service crash or execute arbitrary code via a long XML entity name...

CVE-2008-3529

Heap-based buffer overflow in the xmlParseAttValueComplex function in parser.c in libxml2 before 2.7.0 allows context-dependent attackers to cause a denial of service crash or execute arbitrary code via a long XML entity name...

Heap overflow

Heap-based buffer overflow in a certain ActiveX control in fwRemoteCfg.dll 3.3.3.1 in Friendly Technologies FriendlyPPPoE Client 3.0.0.57 allows remote attackers to execute arbitrary code via a long third argument to the CreateURLShortcut method...

ZoneAlarm Security Suite 7.0 - AntiVirus Directory Path Buffer Overflow (PoC)

source: https://www.securityfocus.com/bid/31124/info ZoneAlarm Security Suite is prone to a buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied input when performing virus scans on long directory paths. Remote attackers may leverage thi...

CVE-2008-3628

Summary: CVE-2008-3628 affects Apple QuickTime for Windows prior to 7.5.5. The issue is an invalid pointer in QuickTime’s handling of PICT images, which can allow remote attackers to execute arbitrary code or cause a denial of service (application crash). Affected product/behavior: Apple QuickTim...

FreeBSD Ports: imlib2

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

FreeBSD Ports: grip

The remote host is missing an update to the system as announced in the referenced advisory. VID bcf27002-94c3-11d9-a9e0-0001020eed82 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

FreeBSD Ports: sdl_image

The remote host is missing an update to the system as announced in the referenced advisory. VID b1bcab7d-1880-11dd-a914-0016179b2dd5 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

FreeBSD Ports: qt

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

FreeBSD Ports: mod_security

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

FreeBSD Ports: portupgrade

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...