3115 matches found
Sun JRE / JDK multiple security vulnerabilities
Buffer and integer overflows in JPG and BMP processing, sandbox protection bypass with system classes...
GLSA-200705-19 : PHP: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200705-19 PHP: Multiple vulnerabilities Several vulnerabilities were found in PHP, most of them during the Month Of PHP Bugs MOPB by Stefan Esser. The most severe of these vulnerabilities are integer overflows in wbmp.c from the G...
PHP: Multiple vulnerabilities
Background PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. Description Several vulnerabilities were found in PHP, most of them during the Month Of PHP Bugs MOPB by Stefan Esser. The most severe of these...
LibXfont, TightVNC: Multiple vulnerabilities
Background LibXfont is the X.Org font library. TightVNC is a VNC client/server for X displays. Description The libXfont code is prone to several integer overflows, in functions ProcXCMiscGetXIDList, bdfReadCharacters and FontFileInitTable. TightVNC contains a local copy of this code and is also...
GLSA-200705-06 : X.Org X11 library: Multiple integer overflows
The remote host is affected by the vulnerability described in GLSA-200705-06 X.Org X11 library: Multiple integer overflows Multiple integer overflows have been reported in the XGetPixel function of the X.Org X11 library. Impact : By enticing a user to open a specially crafted image, an attacker...
X.Org X11 library: Multiple integer overflows
Background X.Org is an implementation of the X Window System. The X.Org X11 library provides the X11 protocol library files. Description Multiple integer overflows have been reported in the XGetPixel function of the X.Org X11 library. Impact By enticing a user to open a specially crafted image, a...
Fedora Core 5 : ImageMagick-6.2.5.4-4.2.1.fc5.8 (2007-414)
Thu Apr 5 2007 Norm Murray 6.2.5.4-4.2.1.fc5.8 - more overflows 235075, CVE-2007-1797 - Fri Sep 22 2006 Norm Murray 6.2.5.4-4.2.1.fc5.7 - more overflows 210921 CVE-2006-5456 - Fri Sep 22 2006 Norm Murray 6.2.5.4-4.2.1.fc5.6 - fix ImageMagick-perl building 203975 - Thu Sep 7 2006 Norm Murray -...
CVE-2007-1001
Multiple integer overflows in the 1 createwbmp and 2 readwbmp functions in wbmp.c in the GD library libgd in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allow context-dependent attackers to execute arbitrary code via Wireless Bitmap WBMP images with large width or height values...
CVE-2007-1001
Multiple integer overflows in the 1 createwbmp and 2 readwbmp functions in wbmp.c in the GD library libgd in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allow context-dependent attackers to execute arbitrary code via Wireless Bitmap WBMP images with large width or height values...
CVE-2007-1001
Multiple integer overflows in the 1 createwbmp and 2 readwbmp functions in wbmp.c in the GD library libgd in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allow context-dependent attackers to execute arbitrary code via Wireless Bitmap WBMP images with large width or height values...
CVE-2007-1001
Multiple integer overflows in the 1 createwbmp and 2 readwbmp functions in wbmp.c in the GD library libgd in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allow context-dependent attackers to execute arbitrary code via Wireless Bitmap WBMP images with large width or height values...
CVE-2007-1001
CVE-2007-1001 is a heap-based buffer overflow in PHP’s gd extension (WBMP handling) that can allow arbitrary code execution when processing WBMP images from untrusted sources. The issue affects PHP 4.0.0–4.4.6 and 5.0.0–5.2.1. Connected advisories confirm it as a PHP/gd-related vulnerability; a p...
Mandrake Linux Security Advisory : freetype2 (MDKSA-2007:081-1)
iDefense integer overflows in the way freetype handled various font files. A malicious local user could exploit these issues to potentially execute arbitrary code. Updated packages have been patched to correct this issue. Update : Packages for Mandriva Linux 2007.1 are now available. %NASLMINLEVE...
Multiple vulnerabilities in X.Org X11 server
Multiple inteer overflows and memory corruptions...
Important: Red Hat Security Advisory: libXfont security update
Updated X.org libXfont packages that fix a security issue are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. X.org is an open source implementation of the X Window System. It provides the basic...
CVE-2007-1797
Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via 1 a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or 2 the a colors or b comments field in a crafted XWD image, which results in a heap-based...
CVE-2007-1797
Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via 1 a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or 2 the a colors or b comments field in a crafted XWD image, which results in a heap-based...
CVE-2007-1797
Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via 1 a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or 2 the a colors or b comments field in a crafted XWD image, which results in a heap-based...
CVE-2007-1797
Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via 1 a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or 2 the a colors or b comments field in a crafted XWD image, which results in a heap-based...
CVE-2007-1797
Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via 1 a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or 2 the a colors or b comments field in a crafted XWD image, which results in a heap-based...