DEBIAN-CVE-2005-3624

The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows attackers to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to integer overflows and integer underflows...

security flaw

The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows attackers to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to integer overflows and integer underflows...

security flaw

The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows attackers to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to integer overflows and integer underflows...

BTDT BitTorent port DoS

Null HTTP header integer underflow...

CVE-2005-2627

Kismet is affected by CVE-2005-2627 (and CAN-2005-2626 noted in advisories). The issue involves multiple integer underflows in Kismet that can lead to remote code execution via heap-based overflows in two areas: kernel headers in PCAP data and data frame dissection. Debian and Gentoo/OpenVAS advi...

Kismet: Multiple vulnerabilities

Background Kismet is an 802.11 Layer 2 wireless network detector, sniffer, and intrusion detection system. Description Kismet is vulnerable to a heap overflow when handling pcap captures and to an integer underflow in the CDP protocol dissector. Impact With a specially crafted packet an attacker...

GLSA-200508-10 : Kismet: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200508-10 Kismet: Multiple vulnerabilities Kismet is vulnerable to a heap overflow when handling pcap captures and to an integer underflow in the CDP protocol dissector. Impact : With a specially crafted packet an attacker could...

KLA10048 DoS vulnerability in AOL AIM

An integer underflow vulnerability was found in AIM. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network at a point related to the GIF parser via a specially designed buddy icon. Original advisories vulnerability...

CVE-2005-0199

Integer underflow in the ListsMakeMask function in lists.c in ngIRCd before 0.8.2 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a long MODE line that causes an incorrect length calculation, which leads to a buffer overflow...

CVE-2004-1002

Integer underflow in pppd in cbcp.c for ppp 2.4.1 allows remote attackers to cause a denial of service daemon crash via a CBCP packet with an invalid length value that causes pppd to access an incorrect memory location...

CVE-2004-1002

Integer underflow in pppd in cbcp.c for ppp 2.4.1 allows remote attackers to cause a denial of service daemon crash via a CBCP packet with an invalid length value that causes pppd to access an incorrect memory location...

security flaw

Multiple integer handling errors in PHP before 4.3.10 allow attackers to bypass safe mode restrictions, cause a denial of service, or execute arbitrary code via 1 a negative offset value to the shmopwrite function, 2 an "integer overflow/underflow" in the pack function, or 3 an "integer...

CVE-2005-0199

Integer underflow in the ListsMakeMask function in lists.c in ngIRCd before 0.8.2 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a long MODE line that causes an incorrect length calculation, which leads to a buffer overflow...

CVE-2005-0199

ngIRCd is vulnerable to an integer underflow in Lists_MakeMask() in lists.c. In all versions before 0.8.2, a long MODE line can trigger an incorrect length calculation, causing a buffer overflow that enables a remote attacker to crash the server and possibly execute arbitrary code. The issue is c...

[ GLSA 200501-40 ] ngIRCd: Buffer overflow

Gentoo Linux Security Advisory GLSA 200501-40 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...

ngIRCd: Buffer overflow

Background ngIRCd is a free open source daemon for Internet Relay Chat IRC. Description Florian Westphal discovered a buffer overflow caused by an integer underflow in the ListsMakeMask function of lists.c. Impact A remote attacker can exploit this buffer overflow to crash the ngIRCd daemon and...

[SECURITY] [DSA 659-1] New libpam-radius-auth packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 659-1 [email protected] http://www.debian.org/security/ Martin Schulze January 26th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 659-1] New libpam-radius-auth packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 659-1 [email protected] http://www.debian.org/security/ Martin Schulze January 26th, 2005 http://www.debian.org/security/faq -...

Mandrake Linux Security Advisory : kernel (MDKSA-2005:022)

A number of vulnerabilities are fixed in the 2.4 and 2.6 kernels with this advisory : - Multiple race conditions in the terminal layer of 2.4 and 2.6 kernels prior to 2.6.9 can allow a local attacker to obtain portions of kernel data or allow remote attackers to cause a kernel panic by switching...

Debian DSA-659-1 : libpam-radius-auth - information leak, integer underflow

Two problems have been discovered in the libpam-radius-auth package, the PAM RADIUS authentication module. The Common Vulnerabilities and Exposures Project identifies the following problems : - CAN-2004-1340 The Debian package accidentally installed its configuration file /etc/pamradiusauth.conf...