86 matches found
EUVD-2010-4308
Malware in sbrugna...
EUVD-2012-1205
Malware in sbrugna...
EUVD-2011-4260
Malware in sbrugna...
Malicious code in test-mlw2-peaks-gnash-duply-talky (npm)
The package test-mlw2-peaks-gnash-duply-talky was found to contain malicious code...
MAL-2025-35952 Malicious code in test-mlw2-peaks-gnash-duply-talky (npm)
The package test-mlw2-peaks-gnash-duply-talky was found to contain malicious code...
SUSE CVE-2007-2500
server/parser/spritedefinition.cpp in GNU Gnash aka GNU Flash Player 0.7.2 allows remote attackers to execute arbitrary code via a large number of SHOWFRAME elements within a DEFINESPRITE element, which triggers memory corruption and enables the attacker to call free with an arbitrary address,...
SUSE CVE-2011-4328
plugin/npapi/plugin.cpp in Gnash before 0.8.10 uses weak permissions world readable for cookie files with predictable names in /tmp, which allows local users to obtain sensitive information...
SUSE CVE-2012-1175
Integer overflow in the GnashImage::size method in libbase/GnashImage.h in GNU Gnash 0.8.10 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted SWF file, which triggers a heap-based buffer overflow...
openSUSE Security Update : gnash (openSUSE-SU-2012:0369-1)
gnash used predictable and world readable temporary file names to store HTTP cookies %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-164. The text description of this plugin is C...
openSUSE Security Update : gnash (openSUSE-SU-2012:0330-1)
gnash used predictable and world readable temporary file names to store HTTP cookies CVE-2011-4328. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update gnash-5931. The text description of this...
openSUSE Security Update : gnash (openSUSE-SU-2012:0415-1)
specially crafted swf files could cause an integer overflow in gnash %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-177. The text description of this plugin is C SUSE LLC...
Fedora Update for gnash FEDORA-2012-2617
Check for the Version of gnash OpenVAS Vulnerability Test Fedora Update for gnash FEDORA-2012-2617 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
Fedora Update for gnash FEDORA-2012-3837
Check for the Version of gnash OpenVAS Vulnerability Test Fedora Update for gnash FEDORA-2012-3837 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
Fedora Update for gnash FEDORA-2012-2617
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for gnash FEDORA-2012-3837
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Integer overflow
Integer overflow in the GnashImage::size method in libbase/GnashImage.h in GNU Gnash 0.8.10 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted SWF file, which triggers a heap-based buffer overflow...
Gentoo Security Advisory GLSA 201207-08 (Gnash)
The remote host is missing updates announced in advisory GLSA 201207-08. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
Gentoo Security Advisory GLSA 201207-08 (Gnash)
The remote host is missing updates announced in advisory GLSA 201207-08. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
GLSA-201207-08 : Gnash: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201207-08 Gnash: Multiple vulnerabilities Multiple vulnerabilities have been found in Gnash: The 'nsPluginInstance::setupCookies' function in plugin.cpp creates world-readable cookies with predictable file names CVE-2011-4328. The...
Gnash: Multiple vulnerabilities
Background Gnash is a GNU flash movie player that supports many SWF features. Description Multiple vulnerabilities have been found in Gnash: The "nsPluginInstance::setupCookies" function in plugin.cpp creates world-readable cookies with predictable file names CVE-2011-4328. The "GnashImage::size"...