5334 matches found
CVE-2004-1244
CVE-2004-1244 is a PNG-processing remote-code-execution vulnerability in Windows Media Player 9 (WMP9) that occurs when parsing PNG images with excessively large width/height values. Affects WMP9 and related Windows components (e.g., Windows Messenger, MSN Messenger) and can allow arbitrary code ...
Microsoft COM Structured Storage Vulnerability
Overview A vulnerability in a way that various programs handle COM objects could allow a local attacker to execute arbitrary code on a vulnerable system. Description Microsoft's COM is a data representation that allows multiple kinds of objects to be stored in one document. COM structured storage...
Microsoft Internet Explorer contains URL decoding cross-domain vulnerability
Overview A URL decoding vulnerability in Microsoft Internet Explorer may allow remote attackers to bypass zone security restrictions and execute arbitrary code on affected systems. Description IE uses a cross-domain security model to maintain separation between browser frames from different...
Important: Red Hat Security Advisory: cups security update
Updated CUPS packages that fixes a security issue are now available. The Common UNIX Printing System provides a portable printing layer for UNIXR operating systems. A buffer overflow flaw was found in the Decrypt::makeFileKey2 function of Xpdf which also affects the CUPS pdftops filter due to a...
Vim - mch_expand_wildcards() Heap Buffer Overflow
Vim - mchexpandwildcards Heap Buffer Overflow source: https://www.securityfocus.com/bid/30648/info Vim is prone to a heap-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. An attacker may exploit this issue to execute arbitrary code wi...
CVE-2004-0812
Unknown vulnerability in the Linux kernel before 2.4.23, on the AMD AMD64 and Intel EM64T architectures, associated with "setting up TSS limits," allows local users to cause a denial of service crash and possibly execute arbitrary code...
CVE-2004-1373
CVE-2004-1373 describes a format-string vulnerability in SHOUTcast 1.9.4 where a specially crafted filename in a URL can cause a crash or remote code execution. Multiple public sources (Metasploit module, Exploit-DB, and vendor/OpenVAS advisories) corroborate remote code execution and denial of s...
CVE-2004-1374
Multiple buffer overflows in NetBSD kernel may allow local users to execute arbitrary code and gain privileges...
CVE-2005-0012
Format string vulnerability in the aInterfacemsg function in Dillo before 0.8.3-r4 allows remote attackers to execute arbitrary code via format string specifiers in a web page...
Debian Linux Netkit telnetd-ssl contains a format string vulnerability
Overview Debian Linux Netkit telnetd-ssl contains a format string vulnerability that may allow a remote attacker to execute arbitrary code. Description An unspecified format string vulnerability in Debian Linux Netkit telnetd-ssl may allow a remote attacker to execute arbitrary code on a vulnerab...
pdftohtml: Vulnerabilities in included Xpdf
Background pdftohtml is a utility to convert PDF files to HTML or XML formats. It makes use of Xpdf code to decode PDF files. Description Xpdf is vulnerable to integer overflows, as described in GLSA 200412-24. Impact An attacker could entice a user to convert a specially-crafted PDF file,...
CVE-2004-1494
Buffer overflow in the Screen Fetch option in XDICT 2002 through 2005 allows remote attackers to cause a denial of service CPU consumption or application exit and possibly execute arbitrary code via a long string...
CVE-2004-2690
Unrestricted file upload vulnerability in the Administration Panel for NewsPHP allows remote authenticated administrators to upload and execute arbitrary code instead of video files...
Fedora Core 2 : cups-1.1.20-11.8 (2004-574)
This package fixes a buffer overflow which may possibly allow attackers to execute arbitrary code as the 'lp' user. The Common Vulnerabilities and Exposures projects cve.mitre.org has assigned the name CVE-2004-1125 to this issue. Note that Tenable Network Security has extracted the preceding...
Solaris 7/8/9 CDE LibDTHelp - Local Buffer Overflow (2)
/ $Id: raptorlibdthelp2.c,v 1.1 2004/12/04 14:44:38 raptor Exp $ raptorlibdthelp2.c - libDtHelp.so local, Solaris/SPARC 7/8/9 Copyright c 2003-2004 Marco Ivaldi Buffer overflow in CDE libDtHelp library allows local users to execute arbitrary code via a modified DTHELPUSERSEARCHPATH environment...
Solaris 7/8/9 CDE LibDTHelp Local Buffer Overflow Exploit (2)
Exploit for solaris platform in category local exploits ============================================================= Solaris 7/8/9 CDE LibDTHelp Local Buffer Overflow Exploit 2 ============================================================= / $Id: raptorlibdthelp2.c,v 1.1 2004/12/04 14:44:38 rapto...
CVE-2004-1262
Buffer overflow in the bsbopenheader function in libbsb for bsb2ppm 0.0.6 allows remote attackers to execute arbitrary code via crafted BSB pictures...
CVE-2004-1258
Buffer overflow in the putwords function in subs.c for abcm2ps 3.7.20 allows remote attackers to execute arbitrary code via crafted ABC files...
CVE-2004-1261
Multiple buffer overflows in the preparse function in asp2php 0.76.23 allow remote attackers to execute arbitrary code via crafted ASP scripts...
CVE-2004-1192
Format string vulnerability in the lprintf function in Citadel/UX 6.27 and earlier allows remote attackers to execute arbitrary code via format string specifiers sent to the server...