CVE-2010-0662

The ParamTraits::Read function in common/commonparamtraits.cc in Google Chrome before 4.0.249.78 does not use the correct variables in calculations designed to prevent integer overflows, which allows attackers to leverage renderer access to cause a denial of service or possibly have unspecified...

CVE-2010-0645

Multiple integer overflows in factory.cc in Google V8 before r3560, as used in Google Chrome before 4.0.249.89, allow remote attackers to execute arbitrary code in the Chrome sandbox via crafted use of JavaScript arrays...

CVE-2010-0645

CVE-2010-0645 affects Google Chrome (V8 engine in Chrome) prior to 4.0.249.89. The root cause is multiple integer overflows in factory.cc, enabling remote attackers to execute arbitrary code in the Chrome sandbox via crafted JavaScript arrays. Affected product/component: Google Chrome with V8 bef...

Google Chrome < 4.0.249.89 Multiple Vulnerabilities

The version of Google Chrome installed on the remote host is earlier than 4.0.249.89. Such versions are reportedly affected by multiple vulnerabilities : - Two errors when resolving domain names and when interpreting configured proxy lists can be exploited to disclose sensitive data. Issue 12303,...

SuSE 10 Security Update : gzip (ZYPP Patch Number 6792)

The following bug has been fixed : Specially crafted gzip archives could trigger integer overflows. Attackers could exploit that to crash gzip or potentially execute arbitrary code CVE-2010-0001. Only 64bit architectures are affected by this flaw. %NASLMINLEVEL 70300 C Tenable Network Security,...

openSUSE Security Update : gzip (gzip-1838)

Specially crafted gzip archives could lead to gzip allocating a too small huffman table. Attackers could exploit that to crash gzip CVE-2009-2624. Specially crafted gzip archives could trigger integer overflows. Attackers could exploit that to crash gzip or potentially execute arbitrary code...

openSUSE Security Update : gzip (gzip-1838)

Specially crafted gzip archives could lead to gzip allocating a too small huffman table. Attackers could exploit that to crash gzip CVE-2009-2624. Specially crafted gzip archives could trigger integer overflows. Attackers could exploit that to crash gzip or potentially execute arbitrary code...

CVE-2009-4003

Multiple integer overflows in Adobe Shockwave Player before 11.5.6.606 allow remote attackers to execute arbitrary code via 1 an unspecified block type in a Shockwave file, leading to a heap-based buffer overflow; and might allow remote attackers to execute arbitrary code via 2 an unspecified 3D...

CVE-2009-4003

CVE-2009-4003 concerns multiple integer overflow vulnerabilities in Adobe Shockwave Player prior to 11.5.6.606, reported across several sources. The flaws occur during Shockwave processing (notably in 3D blocks) and can lead to heap memory corruption and potential remote code execution. Affected ...

Adobe Shockwave Player integer overflows

Integer overflows and buffer overflow on Shockwave processing...

CVE-2009-4012

Multiple integer overflows in LibThai before 0.1.13 might allow context-dependent attackers to execute arbitrary code via long strings that trigger heap-based buffer overflows, related to 1 thbrk/thbrk.c and 2 thwbrk/thwbrk.c. NOTE: some of these details are obtained from third party information...

CVE-2009-4012

CVE-2009-4012 – LibThai integer overflow leading to arbitrary code execution . The vulnerability affects LibThai (Thai language support library) and arises from integer/heap overflows in long input strings, specifically related to thbrk/thbrk.c and thwbrk/thwbrk.c. Versions prior to 0.1.13 are af...

CVE-2009-4012

Multiple integer overflows in LibThai before 0.1.13 might allow context-dependent attackers to execute arbitrary code via long strings that trigger heap-based buffer overflows, related to 1 thbrk/thbrk.c and 2 thwbrk/thwbrk.c. NOTE: some of these details are obtained from third party information...

CVE-2009-4012

Multiple integer overflows in LibThai before 0.1.13 might allow context-dependent attackers to execute arbitrary code via long strings that trigger heap-based buffer overflows, related to 1 thbrk/thbrk.c and 2 thwbrk/thwbrk.c. NOTE: some of these details are obtained from third party information...

MIT Kerberos 5 integer overflows

Integer overflows on RC4 and AES decription...

Microsoft Windows Embedded OpenType &#40;EOT&#41; Fonts multiple security vulnerabilities

Integer overflows, heap buffer overflows...

krb5 security update

1.6.1-36.el54.1 - add candidate patch to correct KDC integer overflows which could be triggered by malformed RC4 and AES ciphertexts CVE-2009-4212, 546347...

CentOS 4 / 5 : ruby (CESA-2008:0561)

Updated ruby packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Ruby is an interpreted scripting language for quick and easy object-oriented...

Sendmail Update Patches Memory Leak Flaws

Version 8.14.4 of Sendmail, the open source mail transfer agent MTA, includes fixes for several security vulnerabilities including some integer overflows, memory leaks and for the SSL NUL character problem disclosed in mid 2009. Read the full article. The H Security...

CVE-2009-4356

Multiple integer overflows in the jpeg.w5s and png.w5s filters in Winamp before 5.57 allow remote attackers to execute arbitrary code via malformed 1 JPEG or 2 PNG data in an MP3 file...