4161 matches found
PT-2013-3486 · None +2 · Autotrace +1
Name of the Vulnerable Software and Affected Versions: AutoTrace version 0.31.1 ALT Linux affected versions not specified Description: The issue is related to an integer underflow in the input bmp reader function, which can be triggered by a small value in the biSize field of a BMP file header...
OpenSSL AES-NI Integer Underflow (CVE-2012-2686)
An integer underflow vulnerability has been reported in OpenSSL...
SuSE 11.2 Security Update : Acrobat Reader (SAT Patch Number 7734)
Acrobat Reader has been updated to version 9.5.5. The Adobe Advisory can be found at: https://www.adobe.com/support/security/bulletins/apsb13-15.html These updates resolve : - memory corruption vulnerabilities that could lead to code execution. CVE-2013-2718 / CVE-2013-2719 / CVE-2013-2720 /...
Adobe Reader < 11.0.3 / 10.1.7 / 9.5.5 Multiple Vulnerabilities (APSB13-15)
The version of Adobe Reader installed on the remote host is earlier than 11.0.3 / 10.1.7 / 9.5.5. It is, therefore, affected by multiple vulnerabilities : - Unspecified memory corruption vulnerabilities exist that could lead to code execution. CVE-2013-2718, CVE-2013-2719, CVE-2013-2720,...
Adobe Reader < 11.0.3 / 10.1.7 / 9.5.5 Multiple Vulnerabilities (APSB13-15) (Mac OS X)
The version of Adobe Reader installed on the remote Mac OS X host is prior to 11.0.3, 10.1.7, or 9.5.5. It is, therefore, affected by the following vulnerabilities : - Unspecified memory corruption issues exist that allow an attacker to execute arbitrary code. CVE-2013-2718, CVE-2013-2719,...
Adobe Acrobat < 11.0.3 / 10.1.7 / 9.5.5 Multiple Vulnerabilities (APSB13-15)
The version of Adobe Acrobat installed on the remote host is earlier than 11.0.3 / 10.1.7 / 9.5.5. It is, therefore, affected by multiple vulnerabilities : - Unspecified memory corruption vulnerabilities exist that could lead to code execution. CVE-2013-2718, CVE-2013-2719, CVE-2013-2720,...
CVE-2013-2020
Integer underflow in the cliscanpe function in pe.c in ClamAV before 0.97.8 allows remote attackers to cause a denial of service crash via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an out-of-bounds read...
DEBIAN-CVE-2013-2020
Integer underflow in the cliscanpe function in pe.c in ClamAV before 0.97.8 allows remote attackers to cause a denial of service crash via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an out-of-bounds read...
CVE-2013-2020
Integer underflow in the cliscanpe function in pe.c in ClamAV before 0.97.8 allows remote attackers to cause a denial of service crash via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an out-of-bounds read...
Integer overflow
Integer underflow in the cliscanpe function in pe.c in ClamAV before 0.97.8 allows remote attackers to cause a denial of service crash via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an out-of-bounds read...
CVE-2013-2020
Integer underflow in the cliscanpe function in pe.c in ClamAV before 0.97.8 allows remote attackers to cause a denial of service crash via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an out-of-bounds read...
CVE-2013-2020
CVE-2013-2020 concerns ClamAV before 0.97.8 where an integer underflow in cli_scanpe (pe.c) can trigger an out-of-bounds read when parsing UPX-packed executables with a skewed offset, allowing a remote denial-of-service (crash). Public references in OpenVAS/SUSE advisories corroborate the issue a...
CVE-2013-2020
Integer underflow in the cliscanpe function in pe.c in ClamAV before 0.97.8 allows remote attackers to cause a denial of service crash via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an out-of-bounds read...
CVE-2013-2020
Integer underflow in the cliscanpe function in pe.c in ClamAV before 0.97.8 allows remote attackers to cause a denial of service crash via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an out-of-bounds read...
Schneider Electric Interactive Graphical SCADA System Buffer Overflow - Improved Performance (CVE-2013-0657)
An buffer overflow vulnerability has been reported in Schneider Electric's Interactive Graphical SCADA System IGSS application. The vulnerability is due to an integer underflow that leads to a stack buffer overflow when processing crafted input sent to ports 12397/TCP and 12399/TCP...
Schneider Electric Interactive Graphical SCADA System Buffer Overflow (CVE-2013-0657)
A buffer overflow vulnerability exists in Schneider Electric's Interactive Graphical SCADA System IGSS application. The vulnerability is due to an integer underflow that leads to a stack buffer overflow when processing crafted input sent to ports 12397/TCP and 12399/TCP...
OpenSSL TLS 1.1 and 1.2 AES-NI DoS
The AES-NI implementation of OpenSSL 1.0.1c does not properly compute the length of an encrypted message when used with a TLS version 1.1 or above. This leads to an integer underflow which can cause a DoS. The vulnerable function aesnicbchmacsha1cipher is only included in the 64-bit versions of...
wireshark: Heap-based buffer over-read in Visual Networks dissector
Integer underflow in the visualread function in wiretap/visual.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service application crash via a malformed Visual Networks file that triggers a heap-based buffer over-read...
Sophos Anti-Virus RAR VMSF_RGB Filter Parsing Integer Underflow
An integer underflow vulnerability has been reported in Sophos Anti-Virus. The vulnerability is due to insufficient parameters validation while parsing RAR files. A remote attacker could exploit this vulnerability by causing the affected software to process a specially crafted RAR file. Successfu...
Novell GroupWise Internet Agent Content-length Integer Overflow (CVE-2012-0271)
An integer underflow vulnerability has been reported in Novell GroupWise Internet Agent...