678 matches found
CVE-2003-0818
Multiple integer overflows in Microsoft ASN.1 library MSASN1.DLL, as used in LSASS.EXE, CRYPT32.DLL, and other Microsoft executables and libraries on Windows NT 4.0, 2000, and XP, allow remote attackers to execute arbitrary code via ASN.1 BER encodings with 1 very large length fields that cause...
CVE-2003-0818
Multiple integer overflows in Microsoft ASN.1 library MSASN1.DLL, as used in LSASS.EXE, CRYPT32.DLL, and other Microsoft executables and libraries on Windows NT 4.0, 2000, and XP, allow remote attackers to execute arbitrary code via ASN.1 BER encodings with 1 very large length fields that cause...
[SECURITY] [DSA 408-1] New screen packages fix group utmp exploit
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 408-1 [email protected] http://www.debian.org/security/ Martin Schulze January 5th, 2004 http://www.debian.org/security/faq -...
[SECURITY] [DSA 408-1] New screen packages fix group utmp exploit
-------------------------------------------------------------------------- Debian Security Advisory DSA 408-1 [email protected] http://www.debian.org/security/ Martin Schulze January 5th, 2004 http://www.debian.org/security/faq -...
Coreutils 4.5.x - LS Width Argument Integer Overflow
Coreutils 4.5.x - LS Width Argument Integer Overflow source: https://www.securityfocus.com/bid/8875/info Coreutils 'ls' has been reported prone to an integer overflow vulnerability. The issue reportedly presents itself when handling width and column display command line arguments. It has been...
Coreutils 4.5.x - LS Width Argument Integer Overflow
source: https://www.securityfocus.com/bid/8875/info Coreutils 'ls' has been reported prone to an integer overflow vulnerability. The issue reportedly presents itself when handling width and column display command line arguments. It has been reported that excessive values passed as a width argumen...
Important: Red Hat Security Advisory: : : : Updated Xpdf packages fix security vulnerability
Updated Xpdf packages are available that fix a vulnerability where a malicious PDF document could run arbitrary code. Xpdf is an X Window System based viewer for Portable Document Format PDF files. During an audit of CUPS, a printing system, Zen Parsec found an integer overflow vulnerability in t...
[SECURITY] [DSA-333-1] New acm packages fix integer overflow
-------------------------------------------------------------------------- Debian Security Advisory DSA 333-1 [email protected] http://www.debian.org/security/ Matt Zimmerman June 27th, 2003 http://www.debian.org/security/faq -...
DSA-333 acm - integer overflow
Bulletin has no description...
[SECURITY] [DSA 282-1] New glibc packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 282-1 [email protected] http://www.debian.org/security/ Martin Schulze April 9th, 2003 http://www.debian.org/security/faq -...
@(#)Mordred Labs advisory - Integer overflow in PHP array_pad() function
//@ Mordred Security Labs advisory Release date: April 1, 2003 Name: Integer overflow in PHP arraypad function Versions affected: all versions Risk: average Author: Sir Mordred [email protected] I. Description: PHP is a widely-used general-purpose scripting language that is especially suited for...
[SECURITY] [DSA 272-1] New dietlibc packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 272-1 [email protected] http://www.debian.org/security/ Martin Schulze March 28th, 2003 http://www.debian.org/security/faq -...
@(#)Mordred Labs advisory - Integer overflow in PHP memory allocator
//@ Mordred Security Labs advisory Release date: March 26, 2003 Name: Integer overflow in PHP memory allocator Versions affected: 4.3.2 Risk: very high Author: Sir Mordred [email protected], http://mslabs.iwebland.com I. Description: PHP is a widely-used general-purpose scripting language that i...
@(#)Mordred Labs advisory - Integer overflow in PHP socket_iovec_alloc() function
//@ Mordred Security Labs advisory Release date: March 25, 2003 Name: Integer overflow in PHP socketiovecalloc function Versions affected: 4.3.2 Conditions: PHP must be compiled with --enable-sockets option, which is turned off by default Risk: average Author: Sir Mordred [email protected] I...
CVE-2003-0028
Integer overflow in the xdrmemgetbytes function, and possibly other functions, of XDR external data representation libraries derived from SunRPC, including libnsl, libc, glibc, and dietlibc, allows remote attackers to execute arbitrary code via certain integer values in length fields, a different...
CVE-2003-0010
Integer overflow in JsArrayFunctionHeapSort function used by Windows Script Engine for JScript JScript.dll on various Windows operating system allows remote attackers to execute arbitrary code via a malicious web page or HTML e-mail that uses a large array index value that enables a heap-based...
[SECURITY] [DSA 226-1] New xpdf-i packages fix arbitrary command execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 226-1 [email protected] http://www.debian.org/security/ Martin Schulze January 10th, 2003 http://www.debian.org/security/faq -...
[SECURITY] [DSA 146-1] New dietlibc packages fix integer overflows
-------------------------------------------------------------------------- Debian Security Advisory DSA 146-1 [email protected] http://www.debian.org/security/ Martin Schulze August 8th, 2002 - -------------------------------------------------------------------------- Package : dietlibc...