Apple QuickTime/Darwin Streaming MP3Broadcaster 0 ID3 Tag Handling Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7660/info MP3Broadcaster is shipped as part of Darwin Streaming Server software. MP3Broadcaster has been reported prone to a vulnerability when processing malicious ID3 tags. This is likely due to insufficient sanity chec...

CVE-2013-5176

The kernel in Apple Mac OS X before 10.9 does not properly handle integer values during unspecified tty device operations, which allows local users to cause a denial of service system hang by triggering a truncation error...

CVE-2013-5176

CVE-2013-5176 affects Apple Mac OS X kernels prior to 10.9. The issue is in handling integer values during unspecified tty device operations, enabling a local attacker to trigger a truncation error that can cause a system hang (denial of service). The available connected sources reiterate the sam...

CVE-2013-2486

The dissectdiagnosticrequest function in epan/dissectors/packet-reload.c in the REsource LOcation And Discovery aka RELOAD dissector in Wireshark 1.8.x before 1.8.6 uses an incorrect integer data type, which allows remote attackers to cause a denial of service infinite loop via crafted integer...

Design/Logic Flaw

epan/dissectors/packet-reload.c in the REsource LOcation And Discovery aka RELOAD dissector in Wireshark 1.8.x before 1.8.6 uses incorrect integer data types, which allows remote attackers to cause a denial of service infinite loop via crafted integer values in a packet, related to the 1...

CVE-2013-2487

epan/dissectors/packet-reload.c in the REsource LOcation And Discovery aka RELOAD dissector in Wireshark 1.8.x before 1.8.6 uses incorrect integer data types, which allows remote attackers to cause a denial of service infinite loop via crafted integer values in a packet, related to the 1...

Integer overflow

The dissectdiagnosticrequest function in epan/dissectors/packet-reload.c in the REsource LOcation And Discovery aka RELOAD dissector in Wireshark 1.8.x before 1.8.6 uses an incorrect integer data type, which allows remote attackers to cause a denial of service infinite loop via crafted integer...

CVE-2013-2487

epan/dissectors/packet-reload.c in the REsource LOcation And Discovery aka RELOAD dissector in Wireshark 1.8.x before 1.8.6 uses incorrect integer data types, which allows remote attackers to cause a denial of service infinite loop via crafted integer values in a packet, related to the 1...

CVE-2011-0448

Ruby on Rails 3.0.x before 3.0.4 does not ensure that arguments to the limit function specify integer values, which makes it easier for remote attackers to conduct SQL injection attacks via a non-numeric argument...

Sql injection

Ruby on Rails 3.0.x before 3.0.4 does not ensure that arguments to the limit function specify integer values, which makes it easier for remote attackers to conduct SQL injection attacks via a non-numeric argument...

DEBIAN-CVE-2011-0493

Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha might allow remote attackers to cause a denial of service assertion failure and daemon exit via vectors related to malformed router caches and improper handling of integer values...

Input validation

Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha might allow remote attackers to cause a denial of service assertion failure and daemon exit via vectors related to malformed router caches and improper handling of integer values...

CVE-2010-3254

Technical details for CVE-2010-3254 are not publicly detailed in the provided connected documents. The set includes references and mappings to the CVE across OpenVAS, Ubuntu advisories, and NVD, but no concrete exploit vectors, affected versions beyond Chrome before 6.0.472.53, or remediation spe...

UBUNTU-CVE-2010-3254

The WebSockets implementation in Google Chrome before 6.0.472.53 does not properly handle integer values, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...

CVE-2010-3254

The WebSockets implementation in Google Chrome before 6.0.472.53 does not properly handle integer values, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...

CVE-2010-2935

simpress.bin in the Impress module in OpenOffice.org OOo 2.x and 3.x before 3.3 does not properly handle integer values associated with dictionary property items, which allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PowerPoi...

CVE-2009-0584

icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code by usin...

Python Multiple Integer Overflow Vulnerabilities (Windows)

This host has Python installed and is prone to integer overflow vulnerability. OpenVAS Vulnerability Test $Id: gbpythonintgroverflowvulnwin.nasl 5370 2017-02-20 15:24:26Z cfi $ Python Multiple Integer Overflow Vulnerabilities Windows Authors: Chandan S Copyright: Copyright c 2008 Greenbone Networ...

Python Imageop Module imageop.crop() BOF Vulnerability - Windows

Python is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:python:python"; ifdescription...

Python Imageop Module imageop.crop() BOF Vulnerability (Windows)

This host has Python installed and is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: gbpythonimageopbofvulnwin.nasl 5370 2017-02-20 15:24:26Z cfi $ Python Imageop Module imageop.crop BOF Vulnerability Windows Authors: Chandan S Copyright: Copyright c 2008 Greenbone Networ...