3114 matches found
CVE-2010-1513
Multiple integer overflows in src/image.c in Ziproxy before 3.0.1 allow remote attackers to execute arbitrary code via 1 a large JPG image, related to the jpg2bitmap function or 2 a large PNG image, related to the png2bitmap function, leading to heap-based buffer overflows...
CVE-2010-1513
Multiple integer overflows in src/image.c in Ziproxy before 3.0.1 allow remote attackers to execute arbitrary code via 1 a large JPG image, related to the jpg2bitmap function or 2 a large PNG image, related to the png2bitmap function, leading to heap-based buffer overflows...
CVE-2010-1513
Multiple integer overflows in src/image.c in Ziproxy before 3.0.1 allow remote attackers to execute arbitrary code via 1 a large JPG image, related to the jpg2bitmap function or 2 a large PNG image, related to the png2bitmap function, leading to heap-based buffer overflows...
CVE-2010-1513
Multiple integer overflows in src/image.c in Ziproxy before 3.0.1 allow remote attackers to execute arbitrary code via 1 a large JPG image, related to the jpg2bitmap function or 2 a large PNG image, related to the png2bitmap function, leading to heap-based buffer overflows...
CVE-2010-1513
Ziproxy contains a vulnerability in src/image.c up to version 3.0.1 where integer overflows on processing unusually large JPG/PNG images lead to heap-based buffer overflows and remote arbitrary code execution. The issue affects Ziproxy before 3.0.1; remediation is to upgrade to 3.0.1 or newer (pe...
USN-944-1: GNU C Library vulnerabilities
Maksymilian Arciemowicz discovered that the GNU C library did not correctly handle integer overflows in the strfmon function. If a user or automated system were tricked into processing a specially crafted format string, a remote attacker could crash applications, leading to a denial of service...
CVE-2009-4880
Multiple integer overflows in the strfmon implementation in the GNU C Library aka glibc or libc6 2.10.1 and earlier allow context-dependent attackers to cause a denial of service memory consumption or application crash via a crafted format string, as demonstrated by a crafted first argument to th...
CVE-2010-0129
Multiple integer overflows in Adobe Shockwave Player before 11.5.7.609 allow remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via a crafted .dir aka Director file that triggers an array index error...
CVE-2010-0129
Adobe Shockwave Player is affected by CVE-2010-0129 due to multiple integer overflows leading to memory corruption via specially crafted Director (.dir) files. The vulnerability affects Shockwave Player prior to 11.5.7.609 and can enable remote memory corruption or potential arbitrary code execut...
CVE-2010-0129
Multiple integer overflows in Adobe Shockwave Player before 11.5.7.609 allow remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via a crafted .dir aka Director file that triggers an array index error...
VUPEN Security Research - Adobe Shockwave IML32 Multiple Code Execution Vulnerabilities (CVE-2010-0129)
VUPEN Security Research - Adobe Shockwave IML32 Multiple Code Execution Vulnerabilities CVE-2010-0129 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Over 450 million Internet-enabled desktops have installed Adobe Shockwave Player. These people now have access to so...
PHP multiple security vulnerabilities
Multiple information lekages, uninitialized memory access, double free, integer overflows...
CVE-2010-1440
Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a special command in a DVI file, related to the 1 predospecial and 2 bbdospecial function...
CVE-2010-1440
Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a special command in a DVI file, related to the 1 predospecial and 2 bbdospecial function...
PT-2010-3127 · Thomas Esser +2 · Tetex +2
Name of the Vulnerable Software and Affected Versions: TeX Live versions prior to 2010 teTeX affected versions not specified Description: The issue is related to multiple integer overflows in the dospecial.c file of the dvips component, specifically in the predospecial and bbdospecial functions...
openSUSE Security Update : gimp (openSUSE-SU-2010:0115-1)
Integer overflows in the BMP and PSD plug-ins potentially allowed attackers to execute arbitrary code on the victim's system by tricking the victim to open specially crafted files CVE-2009-1570, CVE-2009-3909. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...
openSUSE Security Update : gimp (openSUSE-SU-2010:0110-1)
Integer overflows in the BMP plug-in potentially allowed attackers to execute arbitrary code on the victim's system by tricking the victim to open specially crafted files CVE-2009-1570. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin wer...
tiff -- buffer overflow vulnerability
Kevin Finisterre reports: Multiple integer overflows in the handling of TIFF files may result in a heap buffer overflow. Opening a maliciously crafted TIFF file may lead to an unexpected application termination or arbitrary code execution. The issues are addressed through improved bounds checking...
openSUSE Security Update : gimp (openSUSE-SU-2010:0115-1)
Integer overflows in the BMP and PSD plug-ins potentially allowed attackers to execute arbitrary code on the victim's system by tricking the victim to open specially crafted files CVE-2009-1570, CVE-2009-3909. Gimp was updated to to version 2.6.8 which fixes those issues. %NASLMINLEVEL 70300 C...
Google Chrome Multiple Vulnerabilities (win)
This host is installed with Google Chrome Web Browser and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvulnapr10.nasl 5306 2017-02-16 09:00:16Z teissa $ Google Chrome Multiple Vulnerabilities win Authors: Antu Sanadi Copyright: Copyright c 2010 Greenbone...