3115 matches found
Debian DSA-591-1 : libgd2 - integer overflows
'infamous41md' discovered several integer overflows in the PNG image decoding routines of the GD graphics library. This could lead to the execution of arbitrary code on the victim's machine. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugi...
DSA-589-1 libgd - integer overflows
Bulletin has no description...
[SECURITY] [DSA 581-1] New xpdf packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 581-1 [email protected] http://www.debian.org/security/ Martin Schulze November 2nd, 2004 http://www.debian.org/security/faq -...
Quicktime Multiple Integer Overflows (deprecated)
Binary data 2380.prm...
DSA-581-1 xpdf - integer overflows
Bulletin has no description...
GPdf, KPDF, KOffice: Vulnerabilities in included xpdf
Background GPdf is a Gnome-based PDF viewer. KPDF, part of the kdegraphics package, is a KDE-based PDF viewer. KOffice is an integrated office suite for KDE. Description GPdf, KPDF and KOffice all include xpdf code to handle PDF files. xpdf is vulnerable to multiple integer overflows, as describe...
zgv multiple integer overflows
Multiple integer overflows on memory allocation...
CVE-2004-0803
Multiple vulnerabilities in the RLE run length encoding decoders for libtiff 3.6.1 and earlier, related to buffer overflows and integer overflows, allow remote attackers to execute arbitrary code via TIFF files...
CVE-2004-0803
Multiple vulnerabilities in the RLE run length encoding decoders for libtiff 3.6.1 and earlier, related to buffer overflows and integer overflows, allow remote attackers to execute arbitrary code via TIFF files...
CVE-2004-0888
Multiple integer overflows in xpdf 2.0 and 3.0, and other packages that use xpdf code such as CUPS, gpdf, and kdegraphics, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code, a different set of vulnerabilities than those identified by CVE-2004-0889...
CVE-2004-0886
CVE-2004-0886 is a libtiff integer overflow issue (v3.6.1 and earlier) that allows a remote attacker to crash or memory-corrupt a target via crafted TIFF images, due to incorrect malloc calls. Multiple advisories (RH/RHSA, CentOS, Slackware, Mandrake) note libtiff-related fixes; updates/patches e...
security flaw
Multiple integer overflows in xpdf 2.0 and 3.0, and other packages that use xpdf code such as CUPS, gpdf, and kdegraphics, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code, a different set of vulnerabilities than those identified by CVE-2004-0889...
[KDE security advisory] Multiple integer overflows in kpdf
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 KDE Security Advisory: kpdf integer overflows Original Release Date: 2004-10-21 URL: http://www.kde.org/info/security/advisory-20041021-1.txt 0. References http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0888...
Multiple libpng bugs
Stack overflow, NULL pointer dereference, integer overflows...
SUSE-SA:2004:038: libtiff
The remote host is missing the patch for the advisory SUSE-SA:2004:038 libtiff. libtiff is used by image viewers and web browser to view 'TIFF' images. These usually open and display those images without querying the user, making a normal system by default vulnerable to exploits of image library...
[SECURITY] [DSA 573-1] New cupsys packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 573-1 [email protected] http://www.debian.org/security/ Martin Schulze October 21st, 2004 http://www.debian.org/security/faq -...
[SECURITY] [DSA 561-1] New libxpm packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 561-1 [email protected] http://www.debian.org/security/ Martin Schulze October 11th, 2004 http://www.debian.org/security/faq -...
[SECURITY] [DSA 560-1] New lesstif packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 560-1 [email protected] http://www.debian.org/security/ Martin Schulze October 7th, 2004 http://www.debian.org/security/faq -...
Debian DSA-165-1 : postgresql - buffer overflows
Mordred Labs and others found several vulnerabilities in PostgreSQL, an object-relational SQL database. They are inherited from several buffer overflows and integer overflows. Specially crafted long date and time input, currency, repeat data and long timezone names could cause the PostgreSQL serv...
Debian DSA-313-1 : ethereal - buffer overflows, integer overflows
Timo Sirainen discovered several vulnerabilities in ethereal, a network traffic analyzer. These include one-byte buffer overflows in the AIM, GIOP Gryphon, OSPF, PPTP, Quake, Quake2, Quake3, Rsync, SMB, SMPP, and TSP dissectors, and integer overflows in the Mount and PPP dissectors. %NASLMINLEVEL...