Alsaplayer 0.99.71 Local Buffer Overflow Vulnerablity

No description provided by source. source: http://www.securityfocus.com/bid/5767/info Alsaplayer is a PCM player that utilizes the ALSA libraries and drivers. It is availabe for Linux and Unix platforms. A vulnerability has been discovered in Alsaplayer. By specifying an overly long add-on path, ...

RTF2LATEX2E 1.0 Stack Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11994/info It is reported that rtf2latex2e is susceptible to a stack buffer overflow vulnerability. This issue is due to a failure of the application to properly bounds check user-supplied image data prior to copying it...

Stack overflow

Stack-based buffer overflow in Kolibri 2.0 allows remote attackers to execute arbitrary code via a long URI in a GET request...

AIX OpenSSL Advisory : openssl_advisory9.doc

The version of OpenSSL installed on the remote host is potentially affected by the following remote code execution and denial of service vulnerabilities : - OpenSSL could allow an attacker to cause a buffer overrun situation when an attacker sends invalid DTLS fragments to an OpenSSL DTLS client ...

ClassLoader manipulation vulnerability

We have fixed a vulnerability in our fork of Apache Struts. Attackers can use this vulnerability to execute Java code of their choice on systems that use these frameworks. The attacker needs to be able to access the Crowd web interface. In cases when anonymous access is enabled, a valid user...

Debian DSA-2762-1 : icedove - several vulnerabilities

Multiple security issues have been found in Icedove, Debian's version of the Mozilla Thunderbird mail and news client. Multiple memory safety errors and buffer overflows may lead to the execution of arbitrary code. The Icedove version in the oldstable distribution squeeze is no longer supported...

USN-1786-2: Unity Firefox Extension update

USN-1786-1 fixed vulnerabilities in Firefox. This update provides the corresponding update for Unity Firefox Extension. Original advisory details: Olli Pettay, Jesse Ruderman, Boris Zbarsky, Christian Holler, Milan Sreckovic, Joe Drew, Andrew McCreight, Randell Jesup, Gary Kwong and Mats Palmgren...

Slackware: Security Advisory (SSA:2008-312-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

WeBid Remote File Include and SQLi Vulnerabilities

WeBid to a remote file-include issue and an SQL injection SQLi issue. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Socusoft Photo 2 Video 8.05 - Local Buffer Overflow

Socusoft Photo 2 Video 8.05 - Local Buffer Overflow Title: ====== Socusoft Photo 2 Video v8.05 - Buffer Overflow Vulnerability Date: ===== 2012-02-27 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=460 VL-ID: ===== 460 Introduction: ============= Socusoft photo to video...

Socusoft Photo2Video 8.05 - Buffer Overflow Vulnerability

Document Title: =============== Socusoft Photo2Video 8.05 - Buffer Overflow Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=460 Release Date: ============= 2012-02-26 Vulnerability Laboratory ID VL-ID: ==================================== 4...

Windows GDI Privilege Elevation

Added: 05/25/2009 CVE: CVE-2006-5758 BID: 20940 OSVDB: 30214 Background The Graphics Rendering Engine in Microsoft Windows 2000 and Windows XP maps GDI Kernel structures on a global shared memory section that is created with insecure permissions. Problem Users with local access can remap the shar...

Gentoo Security Advisory GLSA 200410-28 (rssh)

The remote host is missing updates announced in advisory GLSA 200410-28. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Adobe Album Starter 3.2 Unchecked Local Buffer Overflow Exploit

No description provided by source. Exploitable issue in various Adobe products c0ntex [email protected] Scott Laurie February 2008 Vulnerable applications, tested: Adobe Photoshop Album Starter Adobe After Effects CS3 Adobe Photoshop CS3 Not Vulnerable applications, tested: Adobe Reader...

Knusperleicht Shoutbox 2.6 - 'Shout.php' HTML Injection

source: https://www.securityfocus.com/bid/21637/info Knusperleicht Shoutbox is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting this issue may allow an attacker to execute HTML and script code in the context of the affected...

QK SMTP 3.01 - RCPT TO Remote Denial of Service

QK SMTP 3.01 - RCPT TO Remote Denial of Service / ============================================================= 0-day RCPT TO DoS Exploit for QK SMTP version 3.01 and lower. ============================================================= Exploit affects a format string error in the RCPT TO command ...

Mesh Viewer 0.2.2 - Remote Buffer Overflow

Mesh Viewer 0.2.2 - Remote Buffer Overflow source: https://www.securityfocus.com/bid/12025/info It is reported that Mesh Viewer is susceptible to a buffer overflow vulnerability. This issue is due to a failure of the application to properly bounds check user-supplied data prior to copying it into...

LibTIFF contains multiple integer overflows

Overview Multiple integer overflows in the LibTIFF library may allow an attacker to execute arbitrary code. Description LibTIFF is a library used to encode and decode images in Tag Image File Format TIFF format. A number of potential integer overflow errors exist in the LibTIFF library. A lack of...

BES-CMS 0.4/0.5 - 'message.php' File Inclusion

source: https://www.securityfocus.com/bid/9268/info It has been reported that BES-CMS is vulnerable to a remote file include vulnerability that may allow an attacker to include malicious files containing arbitrary code to be executed on a vulnerable system. The problem exists in the...

Abuse-SDL 0.7 - Command Line Argument Buffer Overflow

// source: https://www.securityfocus.com/bid/7982/info A buffer overflow vulnerability has been reported for Abuse-SDL that may result in the execution of attacker-supplied code. The vulnerability exists due to insufficient bounds checking performed on certain command-line options. / hey all.. th...