CVE-2010-2497

FreeType vulnerability CVE-2010-2497 arises from an integer underflow in glyph handling in versions before 2.4.0, enabling remote crash or possibly arbitrary code execution via crafted fonts. Multiple advisories ( Gentoo GLSA, openSUSE, Nessus plugins, OSV) list CVE-2010-2497 among a set of FreeT...

CVE-2010-2497

Integer underflow in glyph handling in FreeType before 2.4.0 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted font file...

CVE-2010-2497

Integer underflow in glyph handling in FreeType before 2.4.0 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted font file...

CVE-2010-1525

Integer underflow in the SpreadSheet Lotus 123 reader wkssr.dll in Autonomy KeyView 10.4 and 10.9, as used in multiple IBM, Symantec, and other products, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted size for an unspecified record typ...

CVE-2010-1525

Integer underflow in the SpreadSheet Lotus 123 reader wkssr.dll in Autonomy KeyView 10.4 and 10.9, as used in multiple IBM, Symantec, and other products, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted size for an unspecified record typ...

CVE-2010-1525

CVE-2010-1525 affects Autonomy KeyView 10.4 and 10.9, specifically the SpreadSheet Lotus 123 reader (wkssr.dll). The vulnerability is an integer underflow during parsing of a record type size, which can trigger a heap-based buffer overflow. This may lead to a denial of service and potentially arb...

Mandriva Linux Security Advisory : openoffice.org (MDVSA-2010:035)

This updates provides a new OpenOffice.org version 3.1.1. It holds security and bug fixes described as follow : An integer underflow might allow remote attackers to execute arbitrary code via crafted records in the document table of a Word document, leading to a heap-based buffer overflow...

Secunia Research: Autonomy KeyView wkssr.dll Integer Underflow Vulnerability

====================================================================== Secunia Research 28/07/2010 - Autonomy KeyView wkssr.dll Integer Underflow Vulnerability - ====================================================================== Table of Contents Affected...

Debian DSA-2074-1 : ncompress - integer underflow

Aki Helin discovered an integer underflow in ncompress, the original Lempel-Ziv compress/uncompress programs. This could lead to the execution of arbitrary code when trying to decompress a crafted LZW compressed gzip archive. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive te...

[SECURITY] [DSA 2074-1] New ncompress packages fix execution of arbitrary code

------------------------------------------------------------------------ Debian Security Advisory DSA-2074-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano July 21, 2010 http://www.debian.org/security/faq -...

DSA-2074-1 ncompress - execution of arbitrary code

Bulletin has no description...

Fedora 12 : krb5-1.7-18.fc12 (2010-0503)

This update incorporates fixes from upstream which correct integer underflow problems in the AES and RC4 decryption routines CVE-2009-4212. It also corrects a failure in 'kdb5util load' which could occur when the database files being created did not previously exist. Note that Tenable Network...

Fedora 11 : krb5-1.6.3-23.fc11 (2010-0515)

This update incorporates fixes from upstream which correct integer underflow problems in the AES and RC4 decryption routines CVE-2009-4212. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

Debian: Security Advisory (DSA-2043-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mandriva Update for openoffice.org MDVSA-2010:105 (openoffice.org)

Check for the Version of openoffice.org OpenVAS Vulnerability Test Mandriva Update for openoffice.org MDVSA-2010:105 openoffice.org Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

Debian Security Advisory DSA 2044-1 (mplayer)

The remote host is missing an update to mplayer announced via advisory DSA 2044-1. SPDX-FileCopyrightText: 2010 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-on...

DSA-2044-1 mplayer - arbitrary code execution

Bulletin has no description...

Mandriva Update for openoffice.org MDVSA-2010:091 (openoffice.org)

Check for the Version of openoffice.org OpenVAS Vulnerability Test Mandriva Update for openoffice.org MDVSA-2010:091 openoffice.org Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

OpenOffice Word Document Table Parsing Integer Underflow (CVE-2009-0200)

OpenOffice.org is an open source office suite. The suite includes a word processor, a spreadsheet application, a presentation creator, an illustration drawer, a desktop database, and an equation editor. The product is made available for multiple platforms and languages. An integer underflow...

Jenkins Software RakNet 3.72 - Remote Integer Underflow

Jenkins Software RakNet 3.72 - Remote Integer Underflow source: https://www.securityfocus.com/bid/38974/info RakNet is prone to a remote integer-underflow vulnerability because it fails to sufficiently validate an integer value. An attacker can exploit this issue to execute arbitrary code with th...