CVE-2006-1462

Multiple integer overflows in Apple QuickTime before 7.1 allow remote attackers to execute arbitrary code via a crafted QuickTime H.264 M4V video format file...

CVE-2006-1462

Multiple integer overflows in Apple QuickTime before 7.1 allow remote attackers to execute arbitrary code via a crafted QuickTime H.264 M4V video format file...

CVE-2006-2327

Multiple integer overflows in the DPRPC library DPRPCNLM.NLM NDPS/iPrint module in Novell Distributed Print Services in Novell NetWare 6.5 SP3, SP4, and SP5 allow remote attackers to execute arbitrary code via an XDR encoded array with a field that specifies a large number of elements, which...

CVE-2006-2327

Multiple integer overflows in the DPRPC library DPRPCNLM.NLM NDPS/iPrint module in Novell Distributed Print Services in Novell NetWare 6.5 SP3, SP4, and SP5 allow remote attackers to execute arbitrary code via an XDR encoded array with a field that specifies a large number of elements, which...

Integer overflow

Multiple integer overflows in the DPRPC library DPRPCW32.DLL in Novell Client 4.83 SP3, 4.90 SP2 and 4.91 SP2 allow remote attackers to execute arbitrary code via an XDR encoded array with a field that specifies a large number of elements, which triggers the overflows in the ndpsxdrarray function...

CVE-2006-2304

Multiple integer overflows in the DPRPC library DPRPCW32.DLL in Novell Client 4.83 SP3, 4.90 SP2 and 4.91 SP2 allow remote attackers to execute arbitrary code via an XDR encoded array with a field that specifies a large number of elements, which triggers the overflows in the ndpsxdrarray function...

Multiple Firefox / Netscape / SeaMonkey vulnerabilities

Crossite scripting, memory corruptions, buffer overflows, array overflows, integer overflows. Can be exploited to silently install malware code...

CVE-2006-1502

Multiple integer overflows in MPlayer 1.0pre7try2 allow remote attackers to cause a denial of service and trigger heap-based buffer overflows via 1 a certain ASF file handled by asfheader.c that causes the asfdescrambling function to be passed a negative integer after the conversion from a char t...

[Full-disclosure] [xfocus-SD-060329]MPlayer: Multiple integer overflows

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 xfocus-SD-060329MPlayer: Multiple integer overflows MPlayer is a media player capable of handling multiple multimedia file formats. XFOCUS team http://www.xfocus.org/ had discovered Multiple integer overflows .Those can lead to a heap-based buffer...

Sendmail 8.13.6 release notes

8.13.6/8.13.6 2006/03/22 SECURITY: Replace unsafe use of setjmp3/longjmp3 in the server and client side of sendmail with timeouts in the libsm I/O layer and fix problems in that code. Also fix handling of a buffer in smsyslog which could have been used as an attack vector to exploit the unsafe...

GLSA-200603-02 : teTeX, pTeX, CSTeX: Multiple overflows in included XPdf code

The remote host is affected by the vulnerability described in GLSA-200603-02 teTeX, pTeX, CSTeX: Multiple overflows in included XPdf code CSTeX, teTex, and pTeX include XPdf code to handle PDF files. This XPdf code is vulnerable to several heap overflows GLSA 200512-08 as well as several buffer a...

GLSA-200603-03 : MPlayer: Multiple integer overflows

The remote host is affected by the vulnerability described in GLSA-200603-03 MPlayer: Multiple integer overflows MPlayer makes use of the FFmpeg library, which is vulnerable to a heap overflow in the avcodecdefaultgetbuffer function discovered by Simon Kilvington see GLSA 200601-06. Furthermore,...

eStara Softphone SIP VoIP phone buffer overflow

Buffer overflow on oversized SIP packet attribute field. Integer overflows and format string bugs...

CVE-2006-0579

Multiple integer overflows in 1 the newdemuxpacket function in demuxer.h and 2 the demuxasfreadpacket function in demuxasf.c in MPlayer 1.0pre7try2 and earlier allow remote attackers to execute arbitrary code via an ASF file with a large packet length value. NOTE: the provenance of this informati...

CVE-2006-0579

Multiple integer overflows in 1 the newdemuxpacket function in demuxer.h and 2 the demuxasfreadpacket function in demuxasf.c in MPlayer 1.0pre7try2 and earlier allow remote attackers to execute arbitrary code via an ASF file with a large packet length value. NOTE: the provenance of this informati...

CVE-2006-0579

CVE-2006-0579 affects MPlayer up to the 1.0pre7ty2 line, due to two integer/heap overflows in ASF demuxing code: new_demux_packet in libmpdemux/demuxer.h and demux_asf_read_packet in libmpdemux/demux_asf.c. The flaws enable remote attackers to execute arbitrary code by feeding a crafted ASF file ...

Multiple Mozilla / Firefox / Thinderbird vulnerabilities

Javascript code execution, heap memory corruption with styles, memory corruption with QueryInterface, code execution with XULDocument.persist, multiple integer overflows, information leak from nsExpatDriver::ParseBuffer. Silen trojan code installation is potentially possible...

CVE-2006-0297

Multiple integer overflows in Mozilla Firefox 1.5, Thunderbird 1.5 if Javascript is enabled in mail, and SeaMonkey before 1.0 might allow remote attackers to execute arbitrary code via the 1 EscapeAttributeValue in jsxml.c for E4X, 2 nsSVGCairoSurface::Init in SVG, and 3...

CVE-2006-0297

Multiple integer overflows in Mozilla Firefox 1.5, Thunderbird 1.5 if Javascript is enabled in mail, and SeaMonkey before 1.0 might allow remote attackers to execute arbitrary code via the 1 EscapeAttributeValue in jsxml.c for E4X, 2 nsSVGCairoSurface::Init in SVG, and 3...

CVE-2006-0297

Multiple integer overflows in Mozilla Firefox 1.5, Thunderbird 1.5 if Javascript is enabled in mail, and SeaMonkey before 1.0 might allow remote attackers to execute arbitrary code via the 1 EscapeAttributeValue in jsxml.c for E4X, 2 nsSVGCairoSurface::Init in SVG, and 3...