CVE-2008-4686

CVE-2008-4686 affects VideoLAN VLC Media Player, describing multiple integer overflows in the TY demux plugin (ty.c) of the TiVo demuxer. The vulnerability could allow remote attackers to execute arbitrary code via a crafted .ty file, likely affecting VLC 0.9.0 through 0.9.4; this is a distinct i...

Fedora 8 : cups-1.3.9-1.fc8 (2008-8801)

Security release. This updates to 1.3.9 and fixes three integer overflows in the CUPS text and image filters. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as...

CVE-2008-3477

Microsoft Excel 2000 SP3, 2002 SP3, and 2003 SP2 and SP3 does not properly validate data in the VBA Performance Cache when processing an Office document with an embedded object, which allows remote attackers to execute arbitrary code via an Excel file containing a crafted value, leading to...

CVE-2008-3477

CVE-2008-3477 affects Microsoft Excel 2000 SP3, 2002 SP3, and 2003 SP2/SP3, in which the VBA Performance Cache handling of embedded objects can be abused to execute arbitrary code. The root cause is from heap-based and other memory corruptions (overflow/invalid indexing) when processing an object...

CVE-2008-3477

Microsoft Excel 2000 SP3, 2002 SP3, and 2003 SP2 and SP3 does not properly validate data in the VBA Performance Cache when processing an Office document with an embedded object, which allows remote attackers to execute arbitrary code via an Excel file containing a crafted value, leading to...

CVE-2008-4478

Multiple integer overflows in dhost.exe in Novell eDirectory 8.8 before 8.8.3, and 8.73 before 8.7.3.10 ftf1, allow remote attackers to execute arbitrary code via a crafted 1 Content-Length header in a SOAP request or 2 Netware Core Protocol opcode 0x0F message, which triggers a heap-based buffer...

DSA-1644-1 mplayer - integer overflows

Bulletin has no description...

mplayer -- multiple integer overflows

The remote host is missing an update to the system as announced in the referenced advisory. VID 724e6f93-8f2a-11dd-821f-001cc0377035 OpenVAS Vulnerability Test $ Description: Auto generated from VID 724e6f93-8f2a-11dd-821f-001cc0377035 Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

mplayer -- multiple integer overflows

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2008-3520

Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation...

CVE-2008-3520

Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation...

CVE-2008-3520

Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation...

CVE-2008-3520

Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation...

FreeBSD : mplayer -- multiple integer overflows (724e6f93-8f2a-11dd-821f-001cc0377035)

The oCERT team reports : The MPlayer multimedia player suffers from a vulnerability which could result in arbitrary code execution and at the least, in unexpected process termination. Three integer underflows located in the Real demuxer code can be used to exploit a heap overflow, a specific vide...

MPlayer buffer overflow

Three integer overflows on video files parsing lead to buffer overflow...

DTSA-168-1 mplayer - integer overflows

Bulletin has no description...

mplayer -- multiple integer overflows

The oCERT team reports: The MPlayer multimedia player suffers from a vulnerability which could result in arbitrary code execution and at the least, in unexpected process termination. Three integer underflows located in the Real demuxer code can be used to exploit a heap overflow, a specific video...

CVE-2008-4064

Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.2 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to graphics rendering and 1 handling of a long alert messagebox in the...

Gentoo Security Advisory GLSA 200603-03 (MPlayer)

The remote host is missing updates announced in advisory GLSA 200603-03. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200705-13 (imagemagick)

The remote host is missing updates announced in advisory GLSA 200705-13. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...