CVE-2012-1527

Integer underflow in Windows Shell in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, and Windows Server 2012 allows local users to gain privileges via a crafted briefcase, aka "Windows...

Integer overflow

Integer underflow in Windows Shell in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, and Windows Server 2012 allows local users to gain privileges via a crafted briefcase, aka "Windows...

Microsoft Windows Shell Remote Code Execution Vulnerabilities (2727528)

This host is missing a critical security update according to Microsoft Bulletin MS12-072. OpenVAS Vulnerability Test $Id: secpodms12-072.nasl 5346 2017-02-19 08:43:11Z cfi $ Microsoft Windows Shell Remote Code Execution Vulnerabilities 2727528 Authors: Antu Sanadi Copyright: Copyright c 2012...

CVE-2012-1527

Integer underflow in Windows Shell in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, and Windows Server 2012 allows local users to gain privileges via a crafted briefcase, aka "Windows...

CVE-2012-1527

CVE-2012-1527 corresponds to Windows Shell Briefcase Integer Underflow. The vulnerability arises from an integer underflow in the Briefcase feature of Windows Shell, enabling local privilege escalation for affected Windows editions (XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, Wind...

Debian DSA-2559-1 : libexif - several vulnerabilities

Several vulnerabilities were found in libexif, a library used to parse EXIF meta-data on camera files. - CVE-2012-2812 : A heap-based out-of-bounds array read in the exifentrygetvalue function allows remote attackers to cause a denial of service or possibly obtain potentially sensitive informatio...

openssl: record length handling integer underflow

Integer underflow in OpenSSL before 0.9.8x, 1.0.0 before 1.0.0j, and 1.0.1 before 1.0.1c, when TLS 1.1, TLS 1.2, or DTLS is used with CBC encryption, allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via a crafted TLS packet that is no...

CVE-2012-4405

CVE-2012-4405 describes multiple integer underflows in the ICC Format Library (icclib) used by Ghostscript and Argyll CMS. The underflows can cause a heap-based buffer overflow when processing crafted PostScript or PDF files with embedded images, enabling remote attackers to crash the process and...

Scientific Linux Security Update : gzip on SL3.x, SL4.x, SL5.x i386/x86_64

CVE-2010-0001 gzip: 64 bit Integer underflow by decompressing LZW format files An integer underflow flaw, leading to an array index error, was found in the way gzip expanded archive files compressed with the Lempel-Ziv-Welch LZW compression algorithm. If a victim expanded a specially crafted...

Scientific Linux Security Update : krb5 on SL3.x, SL4.x, SL5.x i386/x86_64

CVE-2009-4212 krb: KDC integer overflows in AES and RC4 decryption routines MITKRB5-SA-2009-004 Multiple integer underflow flaws, leading to heap-based corruption, were found in the way the MIT Kerberos Key Distribution Center KDC decrypted ciphertexts encrypted with the Advanced Encryption...

Scientific Linux Security Update : rdesktop on SL3.x i386/x86_64

An integer underflow vulnerability was discovered in the rdesktop. If an attacker could convince a victim to connect to a malicious RDP server, the attacker could cause the victim's rdesktop to crash or, possibly, execute an arbitrary code. CVE-2008-1801 %NASLMINLEVEL 70300 C Tenable Network...

Scientific Linux Security Update : openoffice.org on SL5.x i386/x86_64

Multiple heap overflows and an integer underflow were found in the Quattro ProR import filter. An attacker could create a carefully crafted Quattro Pro file that could cause OpenOffice.org to crash or possibly execute arbitrary code if the file was opened by a victim. CVE-2007-5745, CVE-2007-5747...

Scientific Linux Security Update : rdesktop on SL4.x i386/x86_64

An integer underflow vulnerability was discovered in the rdesktop. If an attacker could convince a victim to connect to a malicious RDP server, the attacker could cause the victim's rdesktop to crash or, possibly, execute an arbitrary code. CVE-2008-1801 Additionally, the following bug was fixed ...

Scientific Linux Security Update : file on SL5.x, SL4.x i386/x86_64

The fix for CVE-2007-1536 introduced a new integer underflow flaw in the file utility. An attacker could create a carefully crafted file which, if examined by a victim using the file utility, could lead to arbitrary code execution. CVE-2007-2799 %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

Scientific Linux Security Update : seamonkey on SL4.x i386/x86_64

SeaMonkey is an open source web browser, email and newsgroup client, IRC chat client, and HTML editor. A flaw was found in the way SeaMonkey handled frame objects with certain names. An attacker could use this flaw to cause a plug-in to grant its content access to another site or the local file...

Scientific Linux Security Update : thunderbird on SL4.x, SL5.x i386/x86_64

Mozilla Thunderbird is a standalone mail and newsgroup client. A flaw was found in the way Thunderbird handled frame objects with certain names. An attacker could use this flaw to cause a plug-in to grant its content access to another site or the local file system, violating the same-origin polic...

Scientific Linux Security Update : firefox on SL4.x, SL5.x, SL6.x i386/x86_64

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...

Scientific Linux Security Update : openoffice.org2 on SL4.5 and 4.6 i386/x86_64

Multiple heap overflows and an integer underflow were found in the Quattro ProR import filter. An attacker could create a carefully crafted Quattro Pro file that could cause OpenOffice.org to crash or possibly execute arbitrary code if the file was opened by a victim. CVE-2007-5745, CVE-2007-5747...

Scientific Linux Security Update : openoffice.org on SL3.x, SL4.x, SL5.x i386/x86_64

CVE-2009-0200 OpenOffice.org Word document Integer Underflow CVE-2009-0201 OpenOffice.org Word document buffer overflow An integer underflow flaw and a boundary error flaw, both possibly leading to a heap-based buffer overflow, were found in the way OpenOffice.org parses certain records in...

Scientific Linux Security Update : rdesktop on SL5.x i386/x86_64

An integer underflow and integer signedness issue were discovered in the rdesktop. If an attacker could convince a victim to connect to a malicious RDP server, the attacker could cause the victim's rdesktop to crash or, possibly, execute an arbitrary code. CVE-2008-1801, CVE-2008-1803 %NASLMINLEV...