CVE-2006-1827

Integer signedness error in formatjpeg.c in Asterisk 1.2.6 and earlier allows remote attackers to execute arbitrary code via a length value that passes a length check as a negative number, but triggers a buffer overflow when it is used as an unsigned length...

CVE-2006-1827

Vulnerability: Asterisk

CVE-2006-1827

Integer signedness error in formatjpeg.c in Asterisk 1.2.6 and earlier allows remote attackers to execute arbitrary code via a length value that passes a length check as a negative number, but triggers a buffer overflow when it is used as an unsigned length...

CVE-2006-1194

Integer signedness error in the enetprotocolhandleincomingcommands function in protocol.c for ENet library CVS version Jul 2005 and earlier, as used in products including 1 Cube, 2 Sauerbraten, and 3 Duke3dw32, allows remote attackers to cause a denial of service application crash via a packet wi...

CVE-2006-1194

The CVE-2006-1194 entry concerns an integer signedness error in the ENet library’s enet_protocol_handle_incoming_commands (protocol.c) affecting CVS-version Jul 2005 and earlier. It is used by products including Cube, Sauerbraten, and Duke3d_w32. The flaw allows a remote attacker to cause an appl...

CVE-2006-1194

Integer signedness error in the enetprotocolhandleincomingcommands function in protocol.c for ENet library CVS version Jul 2005 and earlier, as used in products including 1 Cube, 2 Sauerbraten, and 3 Duke3dw32, allows remote attackers to cause a denial of service application crash via a packet wi...

CVE-2002-2188

OpenBSD before 3.2 allows local users to cause a denial of service kernel crash via a call to getrlimit2 with invalid arguments, possibly due to an integer signedness error...

CVE-2002-2180

OpenBSD 2.0–3.1 setitimer(2) syscall contains input validation issues that allow a local user to write to kernel memory and potentially gain root privileges. The root cause is described as an argument-check problem, possibly related to an integer signedness error. Affected component: setitimer(2)...

CVE-2002-2188

OpenBSD before 3.2 is affected by a local denial-of-service in the kernel caused by getrlimit(2) with invalid arguments, likely due to an integer signedness error. The impact is a kernel crash. Mitigation provided in the references includes patches such as 018_kernresource.patch (OpenBSD 3.1 comm...

CVE-2005-2806

client.cpp in BNBT EasyTracker 7.7r3.2004.10.27 and earlier allows remote attackers to cause a denial of service application hang via an HTTP header containing only a ":" colon, possibly leading to an integer signedness error due to a missing field name or value...

CVE-2005-2806

BNBT EasyTracker (Windows BNBT EasyTracker, client.cpp) vulnerability CVE-2005-2806 affects version 7.7r3.2004.10.27 and earlier. A remote attacker can cause a denial of service (application hang) by sending an HTTP header containing only a ":". The description notes this may involve an integer s...

FreeBSD : gaim -- MSN Remote DoS vulnerability (b6612eee-df5f-11d9-b875-0001020eed82)

The GAIM team reports : Remote attackers can cause a denial of service crash via a malformed MSN message that leads to a memory allocation of a large size, possibly due to an integer signedness error. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...

CVE-2005-1934

Gaim before 1.3.1 allows remote attackers to cause a denial of service crash via a malformed MSN message that leads to a memory allocation of a large size, possibly due to an integer signedness error...

CVE-2005-1934

Gaim before 1.3.1 allows remote attackers to cause a denial of service crash via a malformed MSN message that leads to a memory allocation of a large size, possibly due to an integer signedness error...

CVE-2005-1934

Gaim before 1.3.1 allows remote attackers to cause a denial of service crash via a malformed MSN message that leads to a memory allocation of a large size, possibly due to an integer signedness error...

CVE-2005-1515

CVE-2005-1513, CVE-2005-1514, CVE-2005-1515, CVE-2020-3811, CVE-2020-3812 are referenced in the Debian DLA-2234-1 advisory for netqmail. The Debian advisory reports multiple issues in netqmail (qmail) affecting 64-bit platforms with large memory, including: CVE-2005-1513 (overflow in stralloc_rea...

CVE-2005-1402

CVE-2005-1402 affects older versions of the NeL library (as used in Mtp-Target 1.2.2 and earlier). The flaw is an integer signedness error in a STLport call, not caught by a signed comparison, allowing remote attackers to cause a denial of service via memory consumption or a server crash. The pro...

CVE-2005-0975

Integer signedness error in the parsemachfile function in the mach-o loader machloader.c for the Darwin Kernel as used in Mac OS X 10.3.7, and other versions before 10.3.9, allows local users to cause a denial of service CPU consumption via a crafted mach-o header...

CVE-2005-0340

Integer signedness error in Apple File Service AFP Server allows remote attackers to cause a denial of service application crash via a negative UAM string length in a FPLoginExt packet...

CVE-2005-0975

Integer signedness error in the parsemachfile function in the mach-o loader machloader.c for the Darwin Kernel as used in Mac OS X 10.3.7, and other versions before 10.3.9, allows local users to cause a denial of service CPU consumption via a crafted mach-o header...