3115 matches found
CVE-2009-2415
Multiple integer overflows in memcached 1.1.12 and 1.2.2 allow remote attackers to execute arbitrary code via vectors involving length attributes that trigger heap-based buffer overflows...
CVE-2009-2415
Multiple integer overflows in memcached 1.1.12 and 1.2.2 allow remote attackers to execute arbitrary code via vectors involving length attributes that trigger heap-based buffer overflows...
apr-util: Integer overflows in memory pool (apr) and relocatable memory (apr-util) management
Multiple integer overflows in the Apache Portable Runtime APR library and the Apache Portable Utility library aka APR-util 0.9.x and 1.3.x allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via vectors that trigger crafted calls to the 1...
GLSA-200908-03 : libTIFF: User-assisted execution of arbitrary code
The remote host is affected by the vulnerability described in GLSA-200908-03 libTIFF: User-assisted execution of arbitrary code Two vulnerabilities have been reported in libTIFF: wololo reported a buffer underflow in the LZWDecodeCompat function CVE-2009-2285. Tielei Wang of ICST-ERCIS, Peking...
USN-812-1: Subversion vulnerability
Matt Lewis discovered that Subversion did not properly sanitize its input when processing svndiff streams, leading to various integer and heap overflows. If a user or automated system processed crafted input, a remote attacker could cause a denial of service or potentially execute arbitrary code ...
Subversion / APR multiple buffer overflows
Multiple integer overflows in libsvndelta library...
CVE-2009-2411
Multiple integer overflows in the libsvndelta library in Subversion before 1.5.7, and 1.6.x before 1.6.4, allow remote authenticated users and remote Subversion servers to execute arbitrary code via an svndiff stream with large windows that trigger a heap-based buffer overflow, a related issue to...
CVE-2009-2411
Multiple integer overflows in the libsvndelta library in Subversion before 1.5.7, and 1.6.x before 1.6.4, allow remote authenticated users and remote Subversion servers to execute arbitrary code via an svndiff stream with large windows that trigger a heap-based buffer overflow, a related issue to...
CVE-2009-2411
Multiple integer overflows in the libsvndelta library in Subversion before 1.5.7, and 1.6.x before 1.6.4, allow remote authenticated users and remote Subversion servers to execute arbitrary code via an svndiff stream with large windows that trigger a heap-based buffer overflow, a related issue to...
libTIFF: User-assisted execution of arbitrary code
Background libTIFF provides support for reading and manipulating TIFF Tagged Image File Format images. Description Two vulnerabilities have been reported in libTIFF: wololo reported a buffer underflow in the LZWDecodeCompat function CVE-2009-2285. Tielei Wang of ICST-ERCIS, Peking University...
CVE-2009-2412
Multiple integer overflows in the Apache Portable Runtime APR library and the Apache Portable Utility library aka APR-util 0.9.x and 1.3.x allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via vectors that trigger crafted calls to the 1...
CVE-2009-2412
Multiple integer overflows in the Apache Portable Runtime APR library and the Apache Portable Utility library aka APR-util 0.9.x and 1.3.x allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via vectors that trigger crafted calls to the 1...
CVE-2009-2412
CVE-2009-2412 – summary: Multiple integer overflows in Apache APR (memory/unix/apr_pools.c) and APR-util (misc/apr_rmm.c) for APR 0.9.x/1.3.x allow remote attackers to trigger buffer overflows, causing application crash or, potentially, arbitrary code execution. Likely vectors involve crafted cal...
CVE-2009-2412
Multiple integer overflows in the Apache Portable Runtime APR library and the Apache Portable Utility library aka APR-util 0.9.x and 1.3.x allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via vectors that trigger crafted calls to the 1...
DEBIAN-CVE-2009-2688
Multiple integer overflows in glyphs-eimage.c in XEmacs 21.4.22, when running on Windows, allow remote attackers to cause a denial of service crash or execute arbitrary code via 1 the tiffinstantiate function processing a crafted TIFF file, 2 the pnginstantiate function processing a crafted PNG...
CVE-2009-2688
Multiple integer overflows in glyphs-eimage.c in XEmacs 21.4.22, when running on Windows, allow remote attackers to cause a denial of service crash or execute arbitrary code via 1 the tiffinstantiate function processing a crafted TIFF file, 2 the pnginstantiate function processing a crafted PNG...
CVE-2009-2660
Multiple integer overflows in CamlImages 2.2 might allow context-dependent attackers to execute arbitrary code via images containing large width and height values that trigger a heap-based buffer overflow, related to 1 crafted GIF files gifread.c and 2 crafted JPEG files jpegread.c, a different...
CVE-2009-2660
CVE-2009-2660 describes multiple integer overflows in the CamlImages library (versions around 2.x) that can cause heap-based buffer overflows when processing large images. The affected areas include GIF and JPEG handling (gifread.c and jpegread.c) as well as PNG-related paths (read_png_file and r...
CVE-2009-2660
Multiple integer overflows in CamlImages 2.2 might allow context-dependent attackers to execute arbitrary code via images containing large width and height values that trigger a heap-based buffer overflow, related to 1 crafted GIF files gifread.c and 2 crafted JPEG files jpegread.c, a different...
CVE-2009-2660
Multiple integer overflows in CamlImages 2.2 might allow context-dependent attackers to execute arbitrary code via images containing large width and height values that trigger a heap-based buffer overflow, related to 1 crafted GIF files gifread.c and 2 crafted JPEG files jpegread.c, a different...