CVE-2009-2547

Integer underflow in Armed Assault aka ArmA 1.14 and earlier, and 1.16 beta, and Armed Assault II 1.02 and earlier allows remote attackers to cause a denial of service crash via a VoIP over Network VON packet to port 2305 with a negative packetsize value, which triggers a buffer over-read...

Apache APR-Utils Multiple Denial of Service Vulnerabilities

The host is installed with Apache APR-Utils and is prone to Multiple Denial of Service Vulnerabilities. OpenVAS Vulnerability Test $Id: secpodapacheapr-utilsmultdosvulnjun09.nasl 5055 2017-01-20 14:08:39Z teissa $ Apache APR-Utils Multiple Denial of Service Vulnerabilities Authors: Nikita MR...

Apache APR-Utils Multiple Denial of Service Vulnerabilities

Apache APR-Utils is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2009-1385

Integer underflow in the e1000cleanrxirq function in drivers/net/e1000/e1000main.c in the e1000 driver in the Linux kernel before 2.6.30-rc8, the e1000e driver in the Linux kernel, and Intel Wired Ethernet aka e1000 before 7.5.5 allows remote attackers to cause a denial of service panic via a...

CVE-2009-1385

CVE-2009-1385 describes an integer underflow in the e1000/e1000e drivers of the Linux kernel (drivers/net/e1000/e1000_main.c) that can be triggered by a crafted frame size. Affects Linux kernel versions before 2.6.30-rc8 (and the e1000e driver) and Intel Wired Ethernet (e1000) before 7.5.5. Explo...

CVE-2009-0010

Integer underflow in QuickDraw Manager in Apple Mac OS X 10.4.11 and 10.5 before 10.5.7, and Apple QuickTime before 7.6.2, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a PICT image with a crafted 0x77 Poly tag and a crafted length field, whi...

CVE-2009-0155

Integer underflow in CoreGraphics in Apple Mac OS X 10.5 before 10.5.7, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted PDF file that triggers a heap-based...

CVE-2009-0010

CVE-2009-0010 is a QuickTime/Apple QuickDraw vulnerability affecting Apple QuickTime and Mac OS X. The issue is a heap-based buffer overflow in parsing PICT images, triggered by a crafted 0x77 Poly tag length, which can lead to remote code execution or a crash. Public disclosures cite affected pr...

CVE-2009-0010

Integer underflow in QuickDraw Manager in Apple Mac OS X 10.4.11 and 10.5 before 10.5.7, and Apple QuickTime before 7.6.2, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a PICT image with a crafted 0x77 Poly tag and a crafted length field, whi...

Mandrake Linux Security Advisory : kernel (MDKSA-2007:232)

Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel : The minix filesystem code allows local users to cause a denial of service hang via a malformed minix file stream CVE-2006-6058. An integer underflow in the Linux kernel prior to 2.6.23 allows remote attackers to cause a...

Mandriva Linux Security Advisory : openoffice.org (MDVSA-2008:095)

A vulnerability in HSQLDB before 1.8.0.9 in OpenOffice.org could allow user-assisted remote attackers to execute arbitrary Java code via crafted database documents CVE-2007-4575. A heap overflow was discovered in OpenOffice.org's EMF parser. An attacker could create a carefully crafted EMF file...

Mandriva Linux Security Advisory : rdesktop (MDVSA-2008:101)

Several vulnerabilities were discovered in rdesktop, a Remote Desktop Protocol client. An integer underflow vulnerability allowed attackers to cause a denial of service crash and possibly execute arbitrary code with the privileges of the logged-in user CVE-2008-1801. A buffer overflow vulnerabili...

Mandriva Linux Security Advisory : kernel (MDVSA-2008:105)

The CIFS filesystem in the Linux kernel before 2.6.22, when Unix extension support is enabled, does not honor the umask of a process, which allows local users to gain privileges. CVE-2007-3740 The drm/i915 component in the Linux kernel before 2.6.22.2, when used with i965G and later chipsets,...

Integer overflow

Integer underflow in Windows HTTP Services aka WinHTTP in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote HTTP servers to execute arbitrary code via crafted parameter values in a response, related to error handling, aka "Windo...

CVE-2009-0086

Integer underflow in Windows HTTP Services aka WinHTTP in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote HTTP servers to execute arbitrary code via crafted parameter values in a response, related to error handling, aka "Windo...

CVE-2009-0086

Integer underflow in Windows HTTP Services aka WinHTTP in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote HTTP servers to execute arbitrary code via crafted parameter values in a response, related to error handling, aka "Windo...

CVE-2009-0086

CVE-2009-0086 describes an integer underflow in Windows HTTP Services (WinHTTP) that allows remote code execution when a remote server sends crafted values in a response. The vulnerability affects multiple Windows versions, including Windows 2000 SP4, XP SP2/SP3, Server 2003 SP1/SP2, Vista (Gold/...

Windows HTTP Services Could Allow Remote Code Execution Vulnerabilities (960803)

This host is missing a critical security update according to Microsoft Bulletin MS09-013. OpenVAS Vulnerability Test $Id: secpodms09-013.nasl 5934 2017-04-11 12:28:28Z antu123 $ Windows HTTP Services Could Allow Remote Code Execution Vulnerabilities 960803 Authors: Chandan S Updated By: Madhuri D...

MS09-013: Vulnerabilities in Windows HTTP Services Could Allow Remote Code Execution (960803)

The version of Windows HTTP Services installed on the remote host is affected by several vulnerabilities : - An integer underflow triggered by a specially crafted response from a malicious web server for example, during device discovery of UPnP devices on a network may allow for arbitrary code...

Windows HTTP Services Could Allow RCE Vulnerabilities (960803)

This host is missing a critical security update according to Microsoft Bulletin MS09-013. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...