3115 matches found
Debian DSA-232-1 : cupsys - several vulnerabilities
Multiple vulnerabilities were discovered in the Common Unix Printing System CUPS. Several of these issues represent the potential for a remote compromise or denial of service. The Common Vulnerabilities and Exposures project identifies the following problems : - CAN-2002-1383: Multiple integer...
CVE-2004-0688
The OpenMotif-related entries include CVE-2004-0687 and CVE-2004-0688, with multiple OpenMotif packages (e.g., openmotif, openmotif-libs, openmotif-devel) listed in several advisories. Ubuntu/USN-27-1 and Red Hat/SUSE advisories reference these CVEs alongside broader OpenMotif fixes, indicating t...
CVE-2004-0688
Multiple integer overflows in 1 the xpmParseColors function in parse.c, 2 XpmCreateImageFromXpmImage, 3 CreateXImage, 4 ParsePixels, and 5 ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to execute arbitrary code via a malformed XPM image file...
gdk-pixbuf -- image decoding vulnerabilities
Chris Evans discovered several flaws in the gdk-pixbuf XPM image decoder: Heap-based overflow in pixbufcreatefromxpm Stack-based overflow in xpmextractcolor Integer overflows in io-ico.c Some of these flaws are believed to be exploitable...
mozilla -- BMP decoder vulnerabilities
Gael Delalleau discovered several integer overflows in Mozilla's BMP decoder that can result in denial-of-service or arbitrary code execution...
SUSE-SA:2004:028: kernel
The remote host is missing the patch for the advisory SUSE-SA:2004:028 kernel. Various signedness issues and integer overflows have been fixed within kNFSd and the XDR decode functions of kernel 2.6. These bugs can be triggered remotely by sending a package with a trusted source IP address and a...
CVE-2004-0599
CVE-2004-0599 describes multiple integer overflow vulnerabilities in libpng up to version 1.2.5 and earlier, affecting the PNG reading paths (png_read_png in pngread.c, png_handle_sPLT in pngrutil.c, and progressive display reading). Exploitation could allow a remote attacker to crash the applica...
CVS 1.11.x - Multiple Vulnerabilities
CVS 1.11.x - Multiple Vulnerabilities // source: https://www.securityfocus.com/bid/10499/info CVS is prone to multiple vulnerabilities. The issues include a double free vulnerability, format string vulnerabilities, and integer overflows. There is also a null termination issue in the security patc...
CVS 1.11.x - Multiple Vulnerabilities
// source: https://www.securityfocus.com/bid/10499/info CVS is prone to multiple vulnerabilities. The issues include a double free vulnerability, format string vulnerabilities, and integer overflows. There is also a null termination issue in the security patch for BID 10384, potentially leading t...
ASN.1 Multiple Integer Overflows (SMTP check)
The remote Windows host has an ASN.1 library with multiple integer overflow vulnerabilities. These issues could lead to a heap-based buffer overflow. A remote attacker could exploit these issues to execute arbitrary code. This particular check sent a malformed SMTP authorization packet and...
CVE-2003-0818
CVE-2003-0818 covers a heap-based overflow in the Microsoft ASN.1 library (MSASN1.DLL) used by Windows components (LSASS.EXE, CRYPT32.DLL) on Windows NT 4.0/2000/XP. The vulnerability affects BER decoding of ASN.1 data, with two vectors: (1) very large length fields overwriting heap data, and (2)...
EEYE: Microsoft ASN.1 Library Bit String Heap Corruption
Microsoft ASN.1 Library Bit String Heap Corruption Release Date: February 10, 2004 Date Reported: September 25, 2003 Severity: High Remote Code Execution Systems Affected: Microsoft Windows NT 4.0 Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Description: eEye Digital...
Critical: Red Hat Security Advisory: : Updated Gaim packages fix various vulnerabiliies
Updated Gaim packages that fix a number of serious vulnerabilities are now available. Gaim is an instant messenger client that can handle multiple protocols. Stefan Esser audited the Gaim source code and found a number of bugs that have security implications. Due to the nature of instant messagin...
Important: Red Hat Security Advisory: : Updated XFree86 packages provide security and bug fixes
Updated XFree86 packages for Red Hat Linux 7.1 and 7.2 provide security fixes to font libraries and XDM. XFree86 is an implementation of the X Window System providing the core graphical user interface and video drivers in Red Hat Linux. XDM is the X display manager. Multiple integer overflows in...
CVE-2003-0730
Multiple integer overflows in the font libraries for XFree86 4.3.0 allow local or remote attackers to cause a denial of service or execute arbitrary code via heap-based and stack-based buffer overflow attacks...
CVE-2003-0861
CVE-2003-0861 concerns integer overflows in two PHP components prior to 4.3.3: (1) base64_encode and (2) the GD library. Root cause: integer overflow conditions in these functions. Affected software/components: PHP versions before 4.3.3, specifically the base64_encode path and GD library usage. I...
FreeBSD multiple integer overflows
Few integer overflows in procfs implementation and readv call...
Multiple pine bugs
Buffer overflows, integer overflows...
CVE-2003-0346
Multiple integer overflows in a Microsoft Windows DirectX MIDI library QUARTZ.DLL allow remote attackers to execute arbitrary code via a MIDI .mid file with 1 large length for a Text or Copyright string, or 2 a large number of tracks, which leads to a heap-based buffer overflow...
CERT Advisory CA-2003-18 Integer Overflows in Microsoft Windows DirectX MIDI Library
-----BEGIN PGP SIGNED MESSAGE----- CERT Advisory CA-2003-18 Integer Overflows in Microsoft Windows DirectX MIDI Library Original issue date: July 25, 2003 Last revised: -- Source: CERT/CC A complete revision history is at the end of this file. Systems Affected Microsoft Windows systems running...