USN-604-1: Gnumeric vulnerability

Thilo Pfennig and Morten Welinder discovered that the XLS spreadsheet handling code in Gnumeric did not correctly calculate needed memory sizes. If a user or automated system were tricked into loading a specially crafted XLS document, a remote attacker could execute arbitrary code with user...

Ubuntu 6.06 LTS / 6.10 / 7.04 / 7.10 : xorg-server regression (USN-571-2)

USN-571-1 fixed vulnerabilities in X.org. The upstream fixes were incomplete, and under certain situations, applications using the MIT-SHM extension e.g. Java, wxWidgets would crash with BadAlloc X errors. This update fixes the problem. We apologize for the inconvenience. Multiple overflows were...

USN-571-1: X.org vulnerabilities

Multiple overflows were discovered in the XFree86-Misc, XInput-Misc, TOG-CUP, EVI, and MIT-SHM extensions which did not correctly validate function arguments. An authenticated attacker could send specially crafted requests and gain root privileges. CVE-2007-5760, CVE-2007-6427, CVE-2007-6428,...

Debian: Security Advisory (DSA-774-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DSA-190)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 158-1 (gaim)

The remote host is missing an update to gaim announced via advisory DSA 158-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Windows Malformed RTF Handling Code Execution (MS07-011; CVE-2006-1311; CVE-2007-0025; CVE-2007-0026)

Rich Text Format RTF provides a format for text and graphics interchange that can be used with different operating systems. OLE is the technology that applications use to create and edit compound documents. By using OLE technology, an application can provide embedding and linking support. By...

Sun Solaris 10 - 'UFS' Local Denial of Service

source: https://www.securityfocus.com/bid/20919/info Sun Solaris 10 is prone to a local denial-of-service vulnerability. This issue affects the UFS filesystem-handling code. An attacker can exploit this issue to crash the affected computer, denying service to legitimate users. Solaris 10 on the...

Sun Solaris 10 - UFS Local Denial of Service

Sun Solaris 10 - UFS Local Denial of Service source: https://www.securityfocus.com/bid/20919/info Sun Solaris 10 is prone to a local denial-of-service vulnerability. This issue affects the UFS filesystem-handling code. An attacker can exploit this issue to crash the affected computer, denying...

DSA-1196-1 clamav

Bulletin has no description...

CVE-2006-2935

CVE-2006-2935 affects the Linux kernel starting with 2.2.16 and later, where the dvd_read_bca function in the DVD handling code (drivers/cdrom/cdrom.c) assigns the wrong value to a length variable, enabling a local user to trigger a buffer overflow via a crafted USB Storage device and execute arb...

Ubuntu 4.10 : linux-source-2.6.8.1 vulnerabilities (USN-38-1)

CAN-2004-0814 : Vitaly V. Bursov discovered a Denial of Service vulnerability in the 'serio' code; opening the same tty device twice and doing some particular operations on it caused a kernel panic and/or a system lockup. Fixing this vulnerability required a change in the Application Binary...

NetPanzer <= 0.8 Remote Denial of Service Exploit

No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h ifdef WIN32 include winsock.h / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h include errno.h void stderrvoid ch...

CVE-2004-0642

Double free vulnerabilities in the error handling code for ASN.1 decoders in the 1 Key Distribution Center KDC library and 2 client library for MIT Kerberos 5 krb5 1.3.4 and earlier may allow remote attackers to execute arbitrary code...

CVE-2004-0772

Double free vulnerabilities in error handling code in krb524d for MIT Kerberos 5 krb5 1.2.8 and earlier may allow remote attackers to execute arbitrary code...

CVE-2004-0642

Double free vulnerabilities in the error handling code for ASN.1 decoders in the 1 Key Distribution Center KDC library and 2 client library for MIT Kerberos 5 krb5 1.3.4 and earlier may allow remote attackers to execute arbitrary code...

acroread: UUDecode filename buffer overflow

Background acroread is Adobe's Acrobat PDF reader for Linux. Description acroread contains two errors in the handling of UUEncoded filenames. First, it fails to check the length of a filename before copying it into a fixed size buffer and, secondly, it fails to check for the backtick shell...

CVE-2002-0014

CVE-2002-0014 affects Pine up to version 4.43 and earlier. The vulnerability lies in URL-handling code that allows remote attackers to execute arbitrary commands when a URL enclosed in single quotes and containing shell metacharacters is processed. Impact is remote code execution with network acc...

[SECURITY] [DSA-190-1] buffer overflow in Window Maker

Package : wmaker Problem type : buffer overflow Debian-specific: no Al Viro found a problem in the image handling code use in Window Maker, a popular NEXTSTEP like window manager. When creating an image it would allocate a buffer by multiplying the image width and height, but did not check for an...

[SECURITY] [DSA-134-1] OpenSSH remote vulnerability

Package : ssh Problem type : remote exploit Debian-specific: no Theo de Raadt announced that the OpenBSD team is working with ISS on a remote exploit for OpenSSH a free implementation of the Secure SHell protocol. They are refusing to provide any details on the vulnerability but instead are...