8517 matches found
[SECURITY] [DSA 1332-1] New vlc packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 1332-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff July 9th, 2007 http://www.debian.org/security/faq -...
FreeBSD : vlc -- format string vulnerability and integer overflow (7128fb45-2633-11dc-94da-0016179b2dd5)
isecpartners reports : VLC is vulnerable to a format string attack in the parsing of Vorbis comments in Ogg Vorbis and Ogg Theora files, CDDA data or SAP/SDP service discovery messages. Additionally, there are two errors in the handling of wav files, one a denial of service due to an uninitialize...
DSA-1325-1 evolution
Bulletin has no description...
CVE-2007-3441
Format string vulnerability in the Aastra 9112i SIP Phone with firmware 1.4.0.1048 and boot version 1.1.0.10 allows remote attackers to cause a denial of service blocked call reception and slow calling via format string specifiers in an SDP header value, a different vulnerability than CVE-2007-33...
Format string
Format string vulnerability in the Aastra 9112i SIP Phone with firmware 1.4.0.1048 and boot version 1.1.0.10 allows remote attackers to cause a denial of service blocked call reception and slow calling via format string specifiers in an SDP header value, a different vulnerability than CVE-2007-33...
CVE-2007-3441
CVE-2007-3441 affects the Aastra 9112i SIP Phone (firmware 1.4.0.1048, boot 1.1.0.10). The vulnerability is a format string flaw in an SDP header value that remote attackers can exploit to cause a denial of service (blocked call reception and slow calling). This entry is distinct from CVE-2007-33...
CVE-2007-3441
Format string vulnerability in the Aastra 9112i SIP Phone with firmware 1.4.0.1048 and boot version 1.1.0.10 allows remote attackers to cause a denial of service blocked call reception and slow calling via format string specifiers in an SDP header value, a different vulnerability than CVE-2007-33...
CVE-2007-3442
The CVE-2007-3442 entry concerns Research in Motion BlackBerry 7270 prior to 4.0 SP1 Bundle 108. A format-string vulnerability in SIP INVITE messages that lack a host name in the Contact header can allow remote attackers to cause a denial of service by blocking call reception and calling. Affecte...
CVE-2007-3442
Format string vulnerability on the Research in Motion BlackBerry 7270 before 4.0 SP1 Bundle 108 allows remote attackers to cause a denial of service blocked call reception and calling via format string specifiers in an SIP INVITE message that lacks a host name in the Contact header...
BlackBerry 7270 Phone SIP堆栈格式串漏洞
BlackBerry 7270 Phone是一款IP电话解决方案。 BlackBerry 7270 Phone处理INVITE消息存在问题,远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。 由于存在格式串问题,提交包含恶意数据的SIP INVITE消息,可导致程序不能使用,必须重新启动获得正常功能。当漏洞被利用时,设备生成如下错误: "Uncaught exception: java.lang.IllegalArgumentException" BlackBerry Device Software 4.0.1 .83 BlackBerry 7270 0 可联系供应商获得补丁信息:...
VLC 0.8.6b format string vulnerability & integer overflow
iSEC Partners Security Advisory - 2007-001-vlc http://www.isecpartners.com ---------------------------------------------- VLC 0.8.6b format string vulnerability & integer overflow Vendor: VideoLan Vendor URL: http://www.videolan.org Systems Affected: Confirmed on Windows XP, FreeBSD 6.2, MacOS X...
CVE-2007-3316
Multiple format string vulnerabilities in plugins in VideoLAN VLC Media Player before 0.8.6c allow remote attackers to cause a denial of service crash or execute arbitrary code via format string specifiers in 1 an Ogg/Vorbis file, 2 an Ogg/Theora file, 3 a CDDB entry for a CD Digital Audio CDDA...
CVE-2007-3316
Multiple format string vulnerabilities in plugins in VideoLAN VLC Media Player before 0.8.6c allow remote attackers to cause a denial of service crash or execute arbitrary code via format string specifiers in 1 an Ogg/Vorbis file, 2 an Ogg/Theora file, 3 a CDDB entry for a CD Digital Audio CDDA...
Format string
Multiple format string vulnerabilities in plugins in VideoLAN VLC Media Player before 0.8.6c allow remote attackers to cause a denial of service crash or execute arbitrary code via format string specifiers in 1 an Ogg/Vorbis file, 2 an Ogg/Theora file, 3 a CDDB entry for a CD Digital Audio CDDA...
DEBIAN-CVE-2007-3316
Multiple format string vulnerabilities in plugins in VideoLAN VLC Media Player before 0.8.6c allow remote attackers to cause a denial of service crash or execute arbitrary code via format string specifiers in 1 an Ogg/Vorbis file, 2 an Ogg/Theora file, 3 a CDDB entry for a CD Digital Audio CDDA...
CVE-2007-3316
Multiple format string vulnerabilities in plugins in VideoLAN VLC Media Player before 0.8.6c allow remote attackers to cause a denial of service crash or execute arbitrary code via format string specifiers in 1 an Ogg/Vorbis file, 2 an Ogg/Theora file, 3 a CDDB entry for a CD Digital Audio CDDA...
CVE-2007-3316
Multiple format string vulnerabilities in plugins in VideoLAN VLC Media Player before 0.8.6c allow remote attackers to cause a denial of service crash or execute arbitrary code via format string specifiers in 1 an Ogg/Vorbis file, 2 an Ogg/Theora file, 3 a CDDB entry for a CD Digital Audio CDDA...
CVE-2007-3316
VLC media player (before version 0.8.6c) is affected by multiple format-string vulnerabilities in plugins for Ogg Vorbis, Ogg Theora, CDDA, and SAP. The underlying issue is a C-style format string error in parsing the media data stream, which could allow a remote attacker to crash the player or e...
CVE-2007-3316
Multiple format string vulnerabilities in plugins in VideoLAN VLC Media Player before 0.8.6c allow remote attackers to cause a denial of service crash or execute arbitrary code via format string specifiers in 1 an Ogg/Vorbis file, 2 an Ogg/Theora file, 3 a CDDB entry for a CD Digital Audio CDDA...
CVE-2005-4846
Format string vulnerability in Logger.cc for Spey 0.3.3 allows attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers in a syslog call...