161 matches found
CVE-2007-5330
The cadbd RPC service in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows remote attackers to 1 execute arbitrary code via stack-based buffer overflows in unspecified RPC procedures, and 2 trigger memory corruption related to the use of "handle" RPC arguments...
CVE-2007-2057
Stack-based buffer overflow in aircrack-ng airodump-ng 0.7 allows remote attackers to execute arbitrary code via crafted 802.11 authentication packets...
CVE-2007-0654
XMMS 1.2.10 contains an integer underflow in the BMP skin header processing, leading to a stack-based buffer overflow that enables remote code execution. Affected files: the skin bitmap handling code within XMMS; impact includes arbitrary code execution on the affected system. Public advisories a...
X.org: libXpm vulnerability
Background libXpm is a pixmap manipulation library for the X Window System, included in X.org. Description Chris Gilbert has discovered potentially exploitable buffer overflow cases in libXpm that weren't fixed in previous libXpm versions. Impact A carefully-crafted XPM file could crash X.org,...
CVE-2005-0639
Multiple vulnerabilities in xli before 1.17 may allow remote attackers to execute arbitrary code via "buffer management errors" from certain image properties, some of which may be related to integer overflows in PPM files...
CVE-2005-0639
Multiple vulnerabilities in xli before 1.17 may allow remote attackers to execute arbitrary code via "buffer management errors" from certain image properties, some of which may be related to integer overflows in PPM files...
CVE-2005-0011
Multiple vulnerabilities in fliccd, when installed setuid root as part of the kdeedu Kstars support for Instrument Neutral Distributed Interface INDI in KDE 3.3 to 3.3.2, allow local users and remote attackers to execute arbitrary code via stack-based buffer overflows...
CVE-2004-1481
Integer overflow in pnen3260.dll in RealPlayer 8 through 10.5 6.0.12.1040 and earlier, and RealOne Player 1 or 2 on Windows or Mac OS, allows remote attackers to execute arbitrary code via a SMIL file and a .rm movie file with a large length field for the data chunk, which leads to a heap-based...
GNU a2ps - Anything to PostScript Not SUID Local Overflow
GNU a2ps - Anything to PostScript Not SUID Local Overflow / Not added to Local Non Poc section /str0ke / include include include // by lizard / lizstyleatgmail.com // greets go to slider/trog for helpin me // not suid by default ; define VULNTHING "/usr/bin/a2ps" define DEFRET 0xbffffffa - strlen...
CVE-2005-0102
Integer overflow in camel-lock-helper in Evolution 2.0.2 and earlier allows local users or remote malicious POP3 servers to execute arbitrary code via a length value of -1, which leads to a zero byte memory allocation and a buffer overflow...
[SECURITY] [DSA 654-1] New enscript packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 654-1 [email protected] http://www.debian.org/security/ Martin Schulze January 21st, 2005 http://www.debian.org/security/faq -...
abcm2ps: Buffer overflow vulnerability
Background abcm2ps is a utility used to convert ABC music sheet files into PostScript format. Description Limin Wang has located a buffer overflow inside the putwords function in the abcm2ps code. Impact A remote attacker could convince the victim to download a specially-crafted ABC file. Upon...
Youngzsoft CMailServer < 5.2.1 Multiple Remote Vulnerabilities
The remote host is running YoungZSoft CMailServer, a mail server for Microsoft Windows. The version of CMailServer running on the remote machine has multiple vulnerabilities, including buffer overflow, SQL injection, and HTML injection. These vulnerabilities could allow a remote attacker to execu...
Mandrake Linux Security Advisory : xine-lib (MDKSA-2004:105)
A number of string overflows were discovered in the xine-lib program, some of which can be used for remote buffer overflow exploits that lead to the execution of arbitrary code with the permissions of the user running a xine-lib-based media application. xine-lib versions 1-rc2 through, and...
LHa: Multiple vulnerabilities
Background LHa is a console-based program for packing and unpacking LHarc archives. Description The command line argument as well as the archive parsing code of LHa lack sufficient bounds checking. Furthermore, a shell meta character command execution vulnerability exists in LHa, since it does no...
[Full-Disclosure] [ GLSA 200405-17 ] Multiple vulnerabilities in metamail
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200405-17 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - -...
cadaver heap-based buffer overflow
Background cadaver is a command-line WebDAV client. Description Stefan Esser discovered a vulnerability in the code of the neon library see GLSA 200405-13. This library is also included in cadaver. Impact When connected to a malicious WebDAV server, this vulnerability could allow remote execution...
ADA.image.txt
hello, Advisory for ADA Image Server ImgSvr 0.4. ADA Image Server ImgSvr 0.4 Multiple vulnerabilities Release Date: April 3, 2004 Severity: High Remote Code Execution Vendor: sourceforge.net/projects/adaimgsvr/ Services Affected: http service 1234 Description of the product: ADA Image Server is a...
Ethereal contains multiple vulnerabilities in the EIGRP protocol dissector
Overview Ethereal contains multiple vulnerabilities in the Enhanced Interior Gateway Routing Protocol EIGRP protocol dissector. These vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code. Description Ethereal is a network traffic analysis package. It includes t...
DSA-425 tcpdump - multiple vulnerabilities
Bulletin has no description...