Microsoft VML buffer overflow

Buffer overflow and integer overflows on Vector Markup Language parsing. May be used for hidden malware installation...

CVE-2006-5870

Multiple integer overflows in OpenOffice.org OOo 2.0.4 and earlier, and possibly other versions before 2.1.0; and StarOffice 6 through 8; allow user-assisted remote attackers to execute arbitrary code via a crafted a WMF or b EMF file that triggers heap-based buffer overflows in 1 wmf/winwmf.cxx,...

CVE-2006-5870

Multiple integer overflows in OpenOffice.org OOo 2.0.4 and earlier, and possibly other versions before 2.1.0; and StarOffice 6 through 8; allow user-assisted remote attackers to execute arbitrary code via a crafted a WMF or b EMF file that triggers heap-based buffer overflows in 1 wmf/winwmf.cxx,...

CVE-2006-5870

Multiple integer overflows in OpenOffice.org OOo 2.0.4 and earlier, and possibly other versions before 2.1.0; and StarOffice 6 through 8; allow user-assisted remote attackers to execute arbitrary code via a crafted a WMF or b EMF file that triggers heap-based buffer overflows in 1 wmf/winwmf.cxx,...

Mandrake Linux Security Advisory : ImageMagick (MDKSA-2006:155)

Multiple buffer overflows in ImageMagick before 6.2.9 allow user-assisted attackers to execute arbitrary code via crafted XCF images. CVE-2006-3743 Multiple integer overflows in ImageMagick before 6.2.9 allows user-assisted attackers to execute arbitrary code via crafted Sun bitmap images that...

GLSA-200612-01 : wv library: Multiple integer overflows

The remote host is affected by the vulnerability described in GLSA-200612-01 wv library: Multiple integer overflows The wv library fails to do proper arithmetic checks in multiple places, possibly leading to integer overflows. Impact : An attacker could craft a malicious file that, when handled...

Important xorg-x11 security update

6.8.2-1.EL.13.37.2.1 - Add oracle detection to Imake and xprint 6.8.2-1.EL.13.37.2 - Fix for CID font parser integer overflows. CVE-2006-3470, 204548 - Remove withalternateprojectroot macros...

OWASP JBroFuzz 0.3 Fuzzer Released!

JBroFuzz is an OWASP Project that emerged from penetration testing. It deals with fuzzing stateless network protocols such as HTTP, SOAP, XML, LDAP, etc. Apart from fancy terminology, JBroFuzz 0.3 has inbuilt the following Generators ready to be used: basic cross site scripting checks XSS basic S...

Moderate ImageMagick security update

6.0.7.1-16 - fix more integer overflows 202771, CVE-2006-4144 6.0.7.1-15 - fix several integer and buffer overflows 202193, CVE-2006-3743...

CVE-2006-5937

Multiple integer overflows in Grisoft AVG Anti-Virus before 7.1.407 allow remote attackers to execute arbitrary code via crafted 1 CAB or 2 RAR archives that trigger a heap-based buffer overflow. NOTE: some of these details are obtained from third party information...

CVE-2006-5937

CVE-2006-5937 relates to multiple integer overflows in Grisoft AVG Anti-Virus prior to 7.1.407. The vulnerability allows remote attackers to execute arbitrary code by supplying crafted CAB or RAR archives that trigger a heap-based buffer overflow. Publicly included references note this involves r...

CVE-2006-4806

Multiple integer overflows in imlib2 allow user-assisted remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted 1 ARGB loaderargb.c, 2 PNG loaderpng.c, 3 LBM loaderlbm.c, 4 JPEG loaderjpeg.c, or 5 TIFF loadertiff.c images...

CVE-2006-4806

Multiple integer overflows in imlib2 allow user-assisted remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted 1 ARGB loaderargb.c, 2 PNG loaderpng.c, 3 LBM loaderlbm.c, 4 JPEG loaderjpeg.c, or 5 TIFF loadertiff.c images...

CVE-2006-4806

Multiple integer overflows in imlib2 allow user-assisted remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted 1 ARGB loaderargb.c, 2 PNG loaderpng.c, 3 LBM loaderlbm.c, 4 JPEG loaderjpeg.c, or 5 TIFF loadertiff.c images...

CVE-2006-4806

Multiple integer overflows in imlib2 allow user-assisted remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted 1 ARGB loaderargb.c, 2 PNG loaderpng.c, 3 LBM loaderlbm.c, 4 JPEG loaderjpeg.c, or 5 TIFF loadertiff.c images...

wvWare library integer overflows

Few integer overflows on Microsoft Word document parsing...

CVE-2006-4513

Multiple integer overflows in the WV library in wvWare formerly mswordview before 1.2.3, as used by AbiWord, KWord, and possibly other products, allow user-assisted remote attackers to execute arbitrary code via a crafted Microsoft Word DOC file that produces 1 large LFO clfolvl values in the...

CVE-2006-4513

Multiple integer overflows in the WV library in wvWare formerly mswordview before 1.2.3, as used by AbiWord, KWord, and possibly other products, allow user-assisted remote attackers to execute arbitrary code via a crafted Microsoft Word DOC file that produces 1 large LFO clfolvl values in the...

CVE-2006-4513

Multiple integer overflows in the WV library in wvWare formerly mswordview before 1.2.3, as used by AbiWord, KWord, and possibly other products, allow user-assisted remote attackers to execute arbitrary code via a crafted Microsoft Word DOC file that produces 1 large LFO clfolvl values in the...

Debian DSA-1159-2 : mozilla-thunderbird - several vulnerabilities

The latest security updates of Mozilla Thunderbird introduced a regression that led to a dysfunctional attachment panel which warrants a correction to fix this issue. For reference please find below the original advisory text : Several security related problems have been discovered in Mozilla and...