libgda: Format string vulnerabilities

Background libgda is the library handling the data abstraction layer in the Gnome data access architecture GNOME-DB. It can also be used by non-GNOME applications to manage data stored in databases or XML files. Description Steve Kemp discovered two format string vulnerabilities in the gdalogerro...

CVE-2005-3373

Multiple interpretation error in Dr.Web 4.32b allows remote attackers to bypass virus scanning via a file such as BAT, HTML, and EML with an "MZ" magic byte sequence which is normally associated with EXE, which causes the file to be treated as a safe type that could still be executed as a dangero...

[SECURITY] [DSA 871-2] New libgda2 packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 871-2 [email protected] http://www.debian.org/security/ Martin Schulze October 25th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 871-2] New libgda2 packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 871-2 [email protected] http://www.debian.org/security/ Martin Schulze October 25th, 2005 http://www.debian.org/security/faq -...

[Full-disclosure] [SECURITY] [DSA 869-1] New eric packages fix arbitrary code execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 869-1 [email protected] http://www.debian.org/security/ Martin Schulze October 21st, 2005 http://www.debian.org/security/faq -...

Linux kernel console keyboard mapping commands execution

User can set keyboard mapping which will impact next users on this console...

w-Agora <= 4.2.0 Multiple Vulnerabilities

The version of w-Agora installed on the remote host fails to validate files uploaded with the 'browseavatar.php' and 'insert.php' scripts, which allows an attacker to upload scripts with arbitrary PHP code and then to execute it subject to the privileges of the web server user id. In addition, it...

GLSA-200510-12 : KOffice, KWord: RTF import buffer overflow

The remote host is affected by the vulnerability described in GLSA-200510-12 KOffice, KWord: RTF import buffer overflow Chris Evans discovered that the KWord RTF importer was vulnerable to a heap-based buffer overflow. Impact : An attacker could entice a user to open a specially crafted RTF file,...

GLSA-200510-10 : uw-imap: Remote buffer overflow

The remote host is affected by the vulnerability described in GLSA-200510-10 uw-imap: Remote buffer overflow Improper bounds checking of user-supplied data while parsing IMAP mailbox names can lead to overflowing the stack buffer. Impact : Successful exploitation requires an authenticated IMAP us...

CVE-2005-2978

pnmtopng in netpbm before 10.25, when using the -trans option, uses uninitialized size and index variables when converting Portable Anymap PNM images to Portable Network Graphics PNG, which might allow attackers to execute arbitrary code by modifying the stack...

KOffice, KWord: RTF import buffer overflow

Background KOffice is an integrated office suite for KDE. KWord is the KOffice word processor. Description Chris Evans discovered that the KWord RTF importer was vulnerable to a heap-based buffer overflow. Impact An attacker could entice a user to open a specially-crafted RTF file, potentially...

DSA-860-1 ruby - programming error

Bulletin has no description...

[SECURITY] [DSA 852-1] New up-imapproxy packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 852-1 [email protected] http://www.debian.org/security/ Martin Schulze October 9th, 2005 http://www.debian.org/security/faq -...

Oracle HTML DB 1.51.6 - f?p Cross-Site Scripting

Oracle HTML DB 1.51.6 - f?p Cross-Site Scripting source: https://www.securityfocus.com/bid/15031/info Oracle HTML DB is prone to cross-site scripting vulnerabilities. An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user in the context...

CVE-2005-2758

Integer signedness error in the administrative interface for Symantec AntiVirus Scan Engine 4.0 and 4.3 allows remote attackers to execute arbitrary code via crafted HTTP headers with negative values, which lead to a heap-based buffer overflow...

Ruby safe-level security model bypass

Overview Ruby contains a vulnerability that may allow arbitrary code to be run without the intended safe-level checks being applied. Description Ruby is a object-oriented scripting language that supports execution of untrusted code with two mechanisms: taint flagging and safe levels. Safe levels...

[SECURITY] [DSA 840-1] New drupal packages fix remote command execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 840-1 [email protected] http://www.debian.org/security/ Martin Schulze October 4th, 2005 http://www.debian.org/security/faq -...

RealPlayer/Helix Player Remote Format String Exploit (linux)

Exploit for linux platform in category remote exploits ============================================================ RealPlayer/Helix Player Remote Format String Exploit linux ============================================================ / $ An open security advisory 13 - RealPlayer and Helix Playe...

Cisco IOS IPv6 Packet Processing Arbitrary Code Execution (CSCef68324)

The remote version of IOS is vulnerable to a code execution attack when processing malformed IPv6 packets. To exploit this flaw, an attacker would need to ability to send a malformed packet from a local segment and may exploit this issue to cause the remote device to reload repeatedly or to execu...

CVE-2005-2657

Unknown vulnerability in common-lisp-controller 4.18 and earlier allows local users to gain privileges by compiling arbitrary code in the cache directory, which is executed by another user if the user has not run Common Lisp before...