Lucene search
K

8517 matches found

Debian
Debian
added 2007/07/09 5:56 p.m.21 views

[SECURITY] [DSA 1332-1] New vlc packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1332-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff July 9th, 2007 http://www.debian.org/security/faq -...

9.3CVSS7.3AI score0.17079EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/07/01 12:0 a.m.24 views

FreeBSD : vlc -- format string vulnerability and integer overflow (7128fb45-2633-11dc-94da-0016179b2dd5)

isecpartners reports : VLC is vulnerable to a format string attack in the parsing of Vorbis comments in Ogg Vorbis and Ogg Theora files, CDDA data or SAP/SDP service discovery messages. Additionally, there are two errors in the handling of wav files, one a denial of service due to an uninitialize...

9.3CVSS5.4AI score0.17079EPSS
Exploits0References5
OSV
OSV
added 2007/06/29 12:0 a.m.28 views

DSA-1325-1 evolution

Bulletin has no description...

6.8CVSS5.6AI score0.03364EPSS
Exploits0
NVD
NVD
added 2007/06/27 12:30 a.m.15 views

CVE-2007-3441

Format string vulnerability in the Aastra 9112i SIP Phone with firmware 1.4.0.1048 and boot version 1.1.0.10 allows remote attackers to cause a denial of service blocked call reception and slow calling via format string specifiers in an SDP header value, a different vulnerability than CVE-2007-33...

5CVSS6.6AI score0.01382EPSS
Exploits0References3
Prion
Prion
added 2007/06/27 12:30 a.m.20 views

Format string

Format string vulnerability in the Aastra 9112i SIP Phone with firmware 1.4.0.1048 and boot version 1.1.0.10 allows remote attackers to cause a denial of service blocked call reception and slow calling via format string specifiers in an SDP header value, a different vulnerability than CVE-2007-33...

5CVSS6.9AI score0.01916EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2007/06/27 12:0 a.m.54 views

CVE-2007-3441

CVE-2007-3441 affects the Aastra 9112i SIP Phone (firmware 1.4.0.1048, boot 1.1.0.10). The vulnerability is a format string flaw in an SDP header value that remote attackers can exploit to cause a denial of service (blocked call reception and slow calling). This entry is distinct from CVE-2007-33...

5CVSS6.6AI score0.01382EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2007/06/27 12:0 a.m.18 views

CVE-2007-3441

Format string vulnerability in the Aastra 9112i SIP Phone with firmware 1.4.0.1048 and boot version 1.1.0.10 allows remote attackers to cause a denial of service blocked call reception and slow calling via format string specifiers in an SDP header value, a different vulnerability than CVE-2007-33...

6.6AI score0.01382EPSS
Exploits0References3
CVE
CVE
added 2007/06/27 12:0 a.m.45 views

CVE-2007-3442

The CVE-2007-3442 entry concerns Research in Motion BlackBerry 7270 prior to 4.0 SP1 Bundle 108. A format-string vulnerability in SIP INVITE messages that lack a host name in the Contact header can allow remote attackers to cause a denial of service by blocking call reception and calling. Affecte...

2.3CVSS6.6AI score0.00669EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2007/06/27 12:0 a.m.14 views

CVE-2007-3442

Format string vulnerability on the Research in Motion BlackBerry 7270 before 4.0 SP1 Bundle 108 allows remote attackers to cause a denial of service blocked call reception and calling via format string specifiers in an SIP INVITE message that lacks a host name in the Contact header...

6.6AI score0.00669EPSS
Exploits0References6
seebug.org
seebug.org
added 2007/06/25 12:0 a.m.130 views

BlackBerry 7270 Phone SIP堆栈格式串漏洞

BlackBerry 7270 Phone是一款IP电话解决方案。 BlackBerry 7270 Phone处理INVITE消息存在问题,远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。 由于存在格式串问题,提交包含恶意数据的SIP INVITE消息,可导致程序不能使用,必须重新启动获得正常功能。当漏洞被利用时,设备生成如下错误: "Uncaught exception: java.lang.IllegalArgumentException" BlackBerry Device Software 4.0.1 .83 BlackBerry 7270 0 可联系供应商获得补丁信息:...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2007/06/22 12:0 a.m.36 views

VLC 0.8.6b format string vulnerability & integer overflow

iSEC Partners Security Advisory - 2007-001-vlc http://www.isecpartners.com ---------------------------------------------- VLC 0.8.6b format string vulnerability & integer overflow Vendor: VideoLan Vendor URL: http://www.videolan.org Systems Affected: Confirmed on Windows XP, FreeBSD 6.2, MacOS X...

2.9AI score
Exploits0
UbuntuCve
UbuntuCve
added 2007/06/21 6:30 p.m.33 views

CVE-2007-3316

Multiple format string vulnerabilities in plugins in VideoLAN VLC Media Player before 0.8.6c allow remote attackers to cause a denial of service crash or execute arbitrary code via format string specifiers in 1 an Ogg/Vorbis file, 2 an Ogg/Theora file, 3 a CDDB entry for a CD Digital Audio CDDA...

9.3CVSS6.3AI score0.17079EPSS
Exploits0References1
NVD
NVD
added 2007/06/21 6:30 p.m.23 views

CVE-2007-3316

Multiple format string vulnerabilities in plugins in VideoLAN VLC Media Player before 0.8.6c allow remote attackers to cause a denial of service crash or execute arbitrary code via format string specifiers in 1 an Ogg/Vorbis file, 2 an Ogg/Theora file, 3 a CDDB entry for a CD Digital Audio CDDA...

9.3CVSS7.8AI score0.17079EPSS
Exploits0References16
Prion
Prion
added 2007/06/21 6:30 p.m.24 views

Format string

Multiple format string vulnerabilities in plugins in VideoLAN VLC Media Player before 0.8.6c allow remote attackers to cause a denial of service crash or execute arbitrary code via format string specifiers in 1 an Ogg/Vorbis file, 2 an Ogg/Theora file, 3 a CDDB entry for a CD Digital Audio CDDA...

9.3CVSS8AI score0.17079EPSS
Exploits0References16Affected Software1
OSV
OSV
added 2007/06/21 6:30 p.m.3 views

DEBIAN-CVE-2007-3316

Multiple format string vulnerabilities in plugins in VideoLAN VLC Media Player before 0.8.6c allow remote attackers to cause a denial of service crash or execute arbitrary code via format string specifiers in 1 an Ogg/Vorbis file, 2 an Ogg/Theora file, 3 a CDDB entry for a CD Digital Audio CDDA...

9.3CVSS7.7AI score0.17079EPSS
Exploits0References1
OSV
OSV
added 2007/06/21 6:30 p.m.9 views

CVE-2007-3316

Multiple format string vulnerabilities in plugins in VideoLAN VLC Media Player before 0.8.6c allow remote attackers to cause a denial of service crash or execute arbitrary code via format string specifiers in 1 an Ogg/Vorbis file, 2 an Ogg/Theora file, 3 a CDDB entry for a CD Digital Audio CDDA...

7.7AI score
Exploits0References17
Cvelist
Cvelist
added 2007/06/21 6:0 p.m.36 views

CVE-2007-3316

Multiple format string vulnerabilities in plugins in VideoLAN VLC Media Player before 0.8.6c allow remote attackers to cause a denial of service crash or execute arbitrary code via format string specifiers in 1 an Ogg/Vorbis file, 2 an Ogg/Theora file, 3 a CDDB entry for a CD Digital Audio CDDA...

7.6AI score0.17079EPSS
Exploits0References16
CVE
CVE
added 2007/06/21 6:0 p.m.89 views

CVE-2007-3316

VLC media player (before version 0.8.6c) is affected by multiple format-string vulnerabilities in plugins for Ogg Vorbis, Ogg Theora, CDDA, and SAP. The underlying issue is a C-style format string error in parsing the media data stream, which could allow a remote attacker to crash the player or e...

9.3CVSS7.6AI score0.17079EPSS
Exploits0References16Affected Software1
Debian CVE
Debian CVE
added 2007/06/21 6:0 p.m.22 views

CVE-2007-3316

Multiple format string vulnerabilities in plugins in VideoLAN VLC Media Player before 0.8.6c allow remote attackers to cause a denial of service crash or execute arbitrary code via format string specifiers in 1 an Ogg/Vorbis file, 2 an Ogg/Theora file, 3 a CDDB entry for a CD Digital Audio CDDA...

9.3CVSS6.6AI score0.17079EPSS
Exploits0
Cvelist
Cvelist
added 2007/06/20 10:0 p.m.25 views

CVE-2005-4846

Format string vulnerability in Logger.cc for Spey 0.3.3 allows attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers in a syslog call...

7.6AI score0.01935EPSS
Exploits1References4
Rows per page
Query Builder