4161 matches found
Debian DSA-3150-1 : vlc - security update
Fabian Yamaguchi discovered multiple vulnerabilities in VLC, a multimedia player and streamer : - CVE-2014-9626 The MP4 demuxer, when parsing string boxes, did not properly check the length of the box, leading to a possible integer underflow when using this length value in a call to memcpy. This...
Updated ettercap packages fix security vulnerabilities
Updated ettercap package fixes security vulnerabilities: Heap-based buffer overflow in the dissectorpostgresql function in dissectors/ecpostgresql.c in Ettercap before 8.1 allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted password length value...
VLC Media Player 'real_get_rdt_chunk' BOF Vulnerability-02 (Jan 2015) - Linux
VLC media player is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
VLC Media Player 'real_get_rdt_chunk' BOF Vulnerability-02 (Jan 2015) - Windows
VLC media player is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
RealNetworks RealPlayer MPG Width Integer Underflow Memory Corruption - Ver2 (CVE-2011-4259)
A memory corruption vulnerability has been reported in RealNetworks RealPlayer. The vulnerability is due to an integer underflow condition caused while handling MPEG-2 files with a specially crafted width parameter. An attacker could exploit this vulnerability by enticing a target user to open a...
CVE-2010-2062
Integer underflow in the realgetrdtchunk function in real.c, as used in modules/access/rtsp/real.c in VideoLAN VLC media player before 1.0.1 and stream/realrtsp/real.c in MPlayer before r29447, allows remote attackers to execute arbitrary code via a crafted length value in an RDT chunk header...
CVE-2010-2062
Integer underflow in the realgetrdtchunk function in real.c, as used in modules/access/rtsp/real.c in VideoLAN VLC media player before 1.0.1 and stream/realrtsp/real.c in MPlayer before r29447, allows remote attackers to execute arbitrary code via a crafted length value in an RDT chunk header...
DEBIAN-CVE-2010-2062
Integer underflow in the realgetrdtchunk function in real.c, as used in modules/access/rtsp/real.c in VideoLAN VLC media player before 1.0.1 and stream/realrtsp/real.c in MPlayer before r29447, allows remote attackers to execute arbitrary code via a crafted length value in an RDT chunk header...
CVE-2010-2062
Integer underflow in the realgetrdtchunk function in real.c, as used in modules/access/rtsp/real.c in VideoLAN VLC media player before 1.0.1 and stream/realrtsp/real.c in MPlayer before r29447, allows remote attackers to execute arbitrary code via a crafted length value in an RDT chunk header...
CVE-2010-2062
Integer underflow in the realgetrdtchunk function in real.c, as used in modules/access/rtsp/real.c in VideoLAN VLC media player before 1.0.1 and stream/realrtsp/real.c in MPlayer before r29447, allows remote attackers to execute arbitrary code via a crafted length value in an RDT chunk header...
CVE-2010-2062
Integer underflow in the realgetrdtchunk function in real.c, as used in modules/access/rtsp/real.c in VideoLAN VLC media player before 1.0.1 and stream/realrtsp/real.c in MPlayer before r29447, allows remote attackers to execute arbitrary code via a crafted length value in an RDT chunk header...
CVE-2011-1795
Integer underflow in the HTMLFormElement::removeFormElement function in html/HTMLFormElement.cpp in WebCore in WebKit in Google Chrome before 11.0.696.65 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted HTML document...
Integer overflow
Integer underflow in the HTMLFormElement::removeFormElement function in html/HTMLFormElement.cpp in WebCore in WebKit in Google Chrome before 11.0.696.65 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted HTML document...
CVE-2011-1795
CVE-2011-1795 describes an integer underflow in WebKit’s WebCore HTMLFormElement::removeFormElement, exposed in Google Chrome prior to 11.0.696.65. A crafted HTML document containing a FORM element could remotely crash the app or cause other unspecified impact. Affected software is Google Chrome ...
CVE-2011-1795
Removed by vendor...
CVE-2011-1795
Integer underflow in the HTMLFormElement::removeFormElement function in html/HTMLFormElement.cpp in WebCore in WebKit in Google Chrome before 11.0.696.65 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted HTML document...
RealNetworks RealPlayer MPG Width Integer Underflow Memory Corruption - ver 2 (CVE-2011-4259)
An memory corruption vulnerability has been reported in RealNetworks RealPlayer. The vulnerability is due to an integer underflow condition caused while handling MPEG-2 files with a specially crafted width parameter. A remote attacker may exploit this issue by enticing a target user to open a...
CVE-2014-9376
Integer underflow in Ettercap 0.8.1 allows remote attackers to cause a denial of service out-of-bounds write and possibly execute arbitrary code via a small 1 size variable value in the dissectordhcp function in dissectors/ecdhcp.c, 2 length value to the dissectorgg function in dissectors/ecgg.c,...
CVE-2014-9376
Integer underflow in Ettercap 0.8.1 allows remote attackers to cause a denial of service out-of-bounds write and possibly execute arbitrary code via a small 1 size variable value in the dissectordhcp function in dissectors/ecdhcp.c, 2 length value to the dissectorgg function in dissectors/ecgg.c,...
CVE-2014-9376
Integer underflow in Ettercap 0.8.1 allows remote attackers to cause a denial of service out-of-bounds write and possibly execute arbitrary code via a small 1 size variable value in the dissectordhcp function in dissectors/ecdhcp.c, 2 length value to the dissectorgg function in dissectors/ecgg.c,...