3115 matches found
security flaw
Multiple integer overflows in the Javascript engine in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 might allow remote attackers to execute arbitrary code via vectors involving 1 long strings in the toSource method of the Object, Array, and String objects...
security flaw
Multiple integer overflows in the Javascript engine in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 might allow remote attackers to execute arbitrary code via vectors involving 1 long strings in the toSource method of the Object, Array, and String objects...
CVE-2006-3806
Multiple integer overflows in the Javascript engine in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 might allow remote attackers to execute arbitrary code via vectors involving 1 long strings in the toSource method of the Object, Array, and String objects...
CVE-2006-3806
Multiple integer overflows in the Javascript engine in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 might allow remote attackers to execute arbitrary code via vectors involving 1 long strings in the toSource method of the Object, Array, and String objects...
CVE-2006-3806
Multiple integer overflows in the Javascript engine in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 might allow remote attackers to execute arbitrary code via vectors involving 1 long strings in the toSource method of the Object, Array, and String objects...
GLSA-200607-02 : FreeType: Multiple integer overflows
The remote host is affected by the vulnerability described in GLSA-200607-02 FreeType: Multiple integer overflows Multiple integer overflows exist in a variety of files bdf/bdflib.c, sfnt/ttcmap.c, cff/cffgload.c, base/ftmac.c. Impact : A remote attacker could exploit these buffer overflows by...
FreeType: Multiple integer overflows
Background FreeType is a portable font engine. Description Multiple integer overflows exist in a variety of files bdf/bdflib.c, sfnt/ttcmap.c, cff/cffgload.c, base/ftmac.c. Impact A remote attacker could exploit these buffer overflows by enticing a user to load a specially crafted font, which cou...
CentOS 3 : tetex (CESA-2005:354)
Updated tetex packages that fix several integer overflows are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. TeTeX is an implementation of TeX for Linux or UNIX systems. TeX takes a text file and a set of formatting commands as...
CentOS 3 / 4 : tetex (CESA-2006:0160)
Updated tetex packages that fix several integer overflows are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. TeTeX is an implementation of TeX. TeX takes a text file and a set of formatting commands as input and creates a...
Mandrake Linux Security Advisory : libwmf (MDKSA-2006:114-1)
Multiple buffer overflows in the gd graphics library libgd 2.0.21 and earlier may allow remote attackers to execute arbitrary code via malformed image files that trigger the overflows due to improper calls to the gdMalloc function. CVE-2004-0941 Integer overflows were reported in the GD Graphics...
Mandrake Linux Security Advisory : tetex (MDKSA-2006:113)
Integer overflows were reported in the GD Graphics Library libgd 2.0.28, and possibly other versions. These overflows allow remote attackers to cause a denial of service and possibly execute arbitrary code via PNG image files with large image rows values that lead to a heap-based buffer overflow ...
[Full-disclosure] [ MDKSA-2006:113 ] - Updated tetex packages fix embedded GD vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDKSA-2006:113 http://www.mandriva.com/security/ Package : tetex Date : June 27, 2006 Affected: 10.2, 2006.0 Problem Description: Integer overflows were reported in the GD Graphics Library libgd 2.0.28, and possibly...
[SECURITY] [DSA 1095-1] New freetype packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 1095-1 [email protected] http://www.debian.org/security/ Martin Schulze June 10th, 2006 http://www.debian.org/security/faq -...
DSA-1095-1 freetype - integer overflows
Bulletin has no description...
GLSA-200605-17 : libTIFF: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200605-17 libTIFF: Multiple vulnerabilities Multiple vulnerabilities, ranging from integer overflows and NULL pointer dereferences to double frees, were reported in libTIFF. Impact : An attacker could exploit these vulnerabilities...
Multiple tor distributed anonymizing service security vulnerabilities
Log entries spoofing, integer overflows, DoS...
DEBIAN-CVE-2006-1861
Multiple integer overflows in FreeType before 2.2 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via attack vectors related to 1 bdf/bdflib.c, 2 sfnt/ttcmap.c, 3 cff/cffgload.c, and 4 the readlwfn function and a crafted LWFN file in base/ftmac.c. NOT...
CVE-2006-1861
Multiple integer overflows in FreeType before 2.2 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via attack vectors related to 1 bdf/bdflib.c, 2 sfnt/ttcmap.c, 3 cff/cffgload.c, and 4 the readlwfn function and a crafted LWFN file in base/ftmac.c. NOT...
CVE-2006-1861
Multiple integer overflows in FreeType before 2.2 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via attack vectors related to 1 bdf/bdflib.c, 2 sfnt/ttcmap.c, 3 cff/cffgload.c, and 4 the readlwfn function and a crafted LWFN file in base/ftmac.c. NOT...
FreeBSD : mplayer -- Multiple integer overflows (c7526a14-c4dc-11da-9699-00123ffe8333)
Secunia reports : The vulnerabilities are caused due to integer overflow errors in 'libmpdemux/asfheader.c' within the handling of an ASF file, and in 'libmpdemux/aviheader.c' when parsing the 'indx' chunk in an AVI file. This can be exploited to cause heap-based buffer overflows via a malicious...