CVE-2005-0180

Multiple integer signedness errors in the sgscsiioctl function in scsiioctl.c for Linux 2.6.x allow local users to read or modify kernel memory via negative integers in arguments to the scsi ioctl, which bypass a maximum length check before calling the copyfromuser and copytouser functions...

CVE-2005-0180

CVE-2005-0180 involves multiple signedness errors in sg_scsi_ioctl (scsi_ioctl.c) of Linux 2.6.x. The flaw lets a local user read or modify kernel memory by passing negative integers to the ioctl, bypassing a maximum-length check before copy_from_user/copy_to_user. Connected advisories (e.g., Man...

CVE-2004-1035

CVE-2004-1035 affects up-imapproxy IMAP proxy version 1.2.2. The vulnerability is described as multiple integer signedness errors in imapcommon.c, main.c, request.c, and select.c, allowing remote attackers to cause a denial of service (server crash) and possibly leak sensitive information via cer...

CVE-2004-0094

CVE-2004-0094 concerns XFree86 4.1.0 with integer signedness errors in the GLX extension/DRI. Remote attackers could cause a denial of service and potentially execute arbitrary code by sending crafted data to the X server. Related advisories (e.g., Debian DSA-443-1, Red Hat RHSA-2004:152, SUSE) d...

CVE-2003-0297

CVE-2003-0297 affects the c-client IMAP client (as used in imap-2002b and Pine 4.53). The flaw allows remote malicious IMAP servers to trigger a denial of service (crash) and potentially execute arbitrary code via large literal and mailbox size values, due to integer signedness/overflow errors. R...

CVE-2003-0300

The IMAP Client for Sylpheed 0.8.11 allows remote malicious IMAP servers to cause a denial of service crash via certain large literal size values that cause either integer signedness errors or integer overflow errors...

CVE-2003-0301

CVE-2003-0301 concerns the IMAP Client for Outlook Express 6.00.2800.1106. The issue is triggered by certain large literal size values that cause integer signedness or integer overflow errors during parsing, enabling remote servers to induce a denial of service (crash). The public sources in the ...

CVE-2003-0236

Integer signedness errors in the POP3 client for Mirabilis ICQ Pro 2003a allow remote attackers to execute arbitrary code via the 1 Subject or 2 Date headers...

CVE-2002-1355

Multiple integer signedness errors in the BGP dissector in Ethereal 0.9.7 and earlier allow remote attackers to cause a denial of service infinite loop via malformed messages...

CVE-2002-0666

CVE-2002-0666 affects multiple IPsec implementations (notably FreeS/WAN and KAME). The root cause is incorrect calculation of the authentication data length for very small ESP datagrams, which can result in an unsigned integer overflow and cause a kernel panic (remote denial of service). The NVD/...