Stack overflow

Multiple stack-based buffer overflows in src/Task.cc in the FastCGI program in IIPImage Server before 0.9.8 might allow remote attackers to execute arbitrary code via vectors associated with crafted arguments to the 1 RGN::run, 2 JTLS::run, or 3 SHD::run function. NOTE: some of these details are...

CVE-2009-3994

Stack-based buffer overflow in the GetUID function in src-IL/src/ildicom.c in DevIL 1.7.8 allows remote attackers to cause a denial of service application crash or execute arbitrary code via a crafted DICOM file...

CVE-2009-3994

Stack-based buffer overflow in the GetUID function in src-IL/src/ildicom.c in DevIL 1.7.8 allows remote attackers to cause a denial of service application crash or execute arbitrary code via a crafted DICOM file...

gAlan 0.2.1 Universal Buffer Overflow Exploit (meta)

No description provided by source. require 'msf/core' class Metasploit3 Msf::Exploit::Remote include Msf::Exploit::FILEFORMAT def initializeinfo = superupdateinfoinfo, 'Name' = 'gAlan 0.2.1 Buffer Overflow Exploit', 'Description' = %q This module exploits a stack overflow in gAlan 0.2.1 By creati...

Mandriva Linux Security Advisory : wireshark (MDVSA-2009:292-1)

"Vulnerabilities have been discovered and corrected in wireshark, affecting DCERPC/NT dissector, which allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a file that records a malformed packet trace CVE-2009-3550 %NASLMINLEVEL 70300 C Tenable...

Xfig and Transfig 3.2.5 - '.fig' Remote Buffer Overflow

source: https://www.securityfocus.com/bid/37193/info Xfig and Transfig are prone to a buffer-overflow vulnerability because they fail to perform adequate boundary checks on user-supplied input. Attackers may leverage this issue to execute arbitrary code in the context of the application. Failed...

Ubuntu USN-861-1 (libvorbis)

The remote host is missing an update to libvorbis announced via advisory USN-861-1. OpenVAS Vulnerability Test $Id: ubuntu8611.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu8611.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-861-1 libvorbis Authors: Thoma...

Stack overflow

Multiple stack-based buffer overflows in pdfshade4.c in MuPDF before commit 20091125231942, as used in SumatraPDF before 1.0.1, allow remote attackers to cause a denial of service and possibly execute arbitrary code via a /Decode array for certain types of shading that are not properly handled by...

SAP DB 7.4 WebTools Buffer Overflow

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'SAP DB 7.4...

CVE-2009-3947

Buffer overflow in the FTP service on the Tandberg MXP F7.0 allows remote attackers to cause a denial of service process crash or device reboot or possibly execute arbitrary code via a long USER command, as demonstrated by a command ending with many space characters...

CVE-2009-3947

CVE-2009-3947 affects Tandberg MXP Series devices (F7.0 and below) where the FTP service is vulnerable to a buffer overflow triggered by a long USER command (ending with many spaces). This can cause a remote denial of service (process crash or device reboot) and, as stated in sources, may potenti...

Buffer overflow

Buffer overflow in the ABWOutputDev::endWord function in poppler/ABWOutputDev.cc in Poppler aka libpoppler 0.10.6, 0.12.0, and possibly other versions, as used by the Abiword pdftoabw utility, allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code v...

CVE-2009-3938

Buffer overflow in the ABWOutputDev::endWord function in poppler/ABWOutputDev.cc in Poppler aka libpoppler 0.10.6, 0.12.0, and possibly other versions, as used by the Abiword pdftoabw utility, allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code v...

CVE-2009-3938

Poppler (libpoppler) contains a buffer overflow in ABWOutputDev::endWord in ABWOutputDev.cc, exploitable via a crafted PDF and affecting versions including 0.10.6 and 0.12.0 (used by Abiword pdftoabw). The issue could cause denial of service and may allow arbitrary code execution. The vulnerabili...

CVE-2009-3938

Buffer overflow in the ABWOutputDev::endWord function in poppler/ABWOutputDev.cc in Poppler aka libpoppler 0.10.6, 0.12.0, and possibly other versions, as used by the Abiword pdftoabw utility, allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code v...

CVE-2009-0052

The Atheros wireless driver, as used in Netgear WNDAP330 Wi-Fi access point with firmware 2.1.11 and other versions before 3.0.3 on the Atheros AR9160-BC1A chipset, and other products, allows remote authenticated users to cause a denial of service device reboot or hang and possibly execute...

CVE-2009-0052

CVE-2009-0052 affects the Atheros wireless driver used in Netgear WNDAP330 wireless access points with firmware 2.1.11 and other products using the Atheros AR9160-BC1A chipset. The vulnerability arises from parsing malformed (truncated) reserved management frames, allowing remote authenticated us...

CVE-2009-3932

The Gears plugin in Google Chrome before 3.0.195.32 allows user-assisted remote attackers to cause a denial of service memory corruption and plugin crash or possibly execute arbitrary code via unspecified use of the Gears SQL API, related to putting "SQL metadata into a bad state."...

Memory corruption

The server in DirectoryService in Apple Mac OS X 10.5.8 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via unspecified vectors...

Buffer overflow

Buffer overflow in FTP Server in Apple Mac OS X before 10.6.2 allows remote attackers to execute arbitrary code or cause a denial of service daemon crash via a CWD command specifying a pathname in a deeply nested hierarchy of directories, related to a "CWD command line tool."...