161 matches found
Remote Code Execution (RCE) Through Buffer Overread
libfontforge.so is vulnerable to remote code execution RCE attacks. A malicious user can pass a ttf file that when parsed causes an out-of-bound error that can crash the application or cause arbitrary code to be executed...
Buffer overflow
KadNode version version 2.2.0 contains a Buffer Overflow vulnerability in Arguments when starting up the binary that can result in Control of program execution flow, leading to remote code execution...
CVE-2018-7183
Buffer overflow in the decodearr function in ntpq in ntp 4.2.8p6 through 4.2.8p10 allows remote attackers to execute arbitrary code by leveraging an ntpq query and sending a response with a crafted array...
Delta Industrial Automation DOPSoft DOP File ButtonOffMacro Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Delta Industrial Automation DOPSoft. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...
MGASA-2017-0398 Updated sdl2 packages fix security vulnerability
Yves Younan of Cisco Talos discovered an exploitable integer overflow vulnerability when creating a new RGB Surface in SDL 2.0.x before version 2.0.7. A specially crafted file can cause an integer overflow resulting in too little memory being allocated which can lead to a buffer overflow and...
EUVD-2017-15795
A vulnerability in the SNMP implementation of could allow an authenticated, remote attacker to cause a reload of the affected system or to remotely execute code. An attacker could exploit this vulnerability by sending a crafted SNMP packet to the affected device. The vulnerability is due to a...
CVE-2015-3210
Heap-based buffer overflow in PCRE 8.34 through 8.37 and PCRE2 10.10 allows remote attackers to execute arbitrary code via a crafted regular expression, as demonstrated by /^?P=B?P=B?J:?Pc?Pa?P=BWGXCREDITS/, a different vulnerability than CVE-2015-8384...
Debian Security Advisory DSA 3468-1 (polarssl - security update)
It was discovered that polarssl, a library providing SSL and TLS support, contained two heap-based buffer overflows that could allow a remote attacker to trigger denial of service via application crash or arbitrary code execution. OpenVAS Vulnerability Test $Id: deb3468.nasl 6608 2017-07-07...
Flash Player for Mac <= 11.7.700.261 / 12.0.0.44 Multiple Vulnerabilities (APSB14-07) (Mac OS X)
According to its version, the instance of Flash Player installed on the remote Mac OS X host is equal or prior to 11.7.700.261 / 11.8.x / 11.9.x / 12.0.0.44. It is, therefore, potentially affected by multiple vulnerabilities : - A stack overflow vulnerability exists that could result in arbitrary...
CVE-2012-5671
Heap-based buffer overflow in the dkimeximquerydnstxt function in dkim.c in Exim 4.70 through 4.80, when DKIM support is enabled and aclsmtpconnect and aclsmtprcpt are not set to "warn control = dkimdisableverify," allows remote attackers to execute arbitrary code via an email from a malicious DN...
KLA10167 DoS vulnerabilities in GIMP
Multiple serious vulnerabilities have been found in GIMP. Malicious can use these vulnerabilities to cause denial of service and possibly execute arbitrary code. Below is a complete list of vulnerabilities 1. An integer overflow can be exploited remotely via a specially designed GIF; 2. A buffer...
Mozilla Products Multiple Vulnerabilities (Sep 2011) - Windows
Mozilla Firefox/Thunderbird/Seamonkey is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 2210-1] tiff security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2210-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst April 03, 2011 http://www.debian.org/security/faq -...
CVE-2010-2628
The IKE daemon in strongSwan 4.3.x before 4.3.7 and 4.4.x before 4.4.1 does not properly check the return values of snprintf calls, which allows remote attackers to execute arbitrary code via crafted 1 certificate or 2 identity data that triggers buffer overflows...
RedHat Update for thunderbird RHSA-2010:0154-02
Check for the Version of thunderbird OpenVAS Vulnerability Test RedHat Update for thunderbird RHSA-2010:0154-02 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...
CVE-2009-3569
Stack-based buffer overflow in OpenOffice.org OOo allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.8, aka "Client-side stack overflow exploit." NOTE: as of 20091005, this disclosure has no actionable...
Quiksoft EasyMail 6.0.3.0 imap connect() ActiveX stack overflow exploit
!-- I - TITLE Security advisory: Quiksoft EasyMail 6.0.3.0 imap connect ActiveX stack overflow exploit II - SUMMARY Description: Remotely exploitable buffer overflow in ActiveX component Quiksoft EasyMail 6.0.3.0 allows for the arbitrary code execution in the user context. Author: Sebastian...
DSA-1780-1 libdbd-pg-perl - potential code execution
Bulletin has no description...
SuSE Update for IBMJava2,IBMJava5,java-1_4_2-ibm,java-1_5_0-ibm SUSE-SA:2008:025
Check for the Version of IBMJava2,IBMJava5,java-142-ibm,java-150-ibm OpenVAS Vulnerability Test $Id: gbsuse2008025.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for IBMJava2,IBMJava5,java-142-ibm,java-150-ibm SUSE-SA:2008:025 Authors: System Generated Check Copyright: Copyright c 2009...
CVE-2007-2264
Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a RAM .ra or .ram file with a large size value in the RA header...