3104 matches found
CVE-2008-1768
Multiple integer overflows in VLC before 0.8.6f allow remote attackers to cause a denial of service crash via the 1 MP4 demuxer, 2 Real demuxer, and 3 Cinepak codec, which triggers a buffer overflow...
Debian DSA-1551-1 : python2.4 - several vulnerabilities
Several vulnerabilities have been discovered in the interpreter for the Python language. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-2052 Piotr Engelking discovered that the strxfrm function of the locale module miscalculates the length of an...
CVE-2008-1679
Multiple integer overflows in imageop.c in Python before 2.5.3 allow context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via crafted images that trigger heap-based buffer overflows. NOTE: this issue is due to an incomplete fix for CVE-2007-4965...
PT-2008-3227 · Python +1 · Python +1
Name of the Vulnerable Software and Affected Versions: Python versions prior to 2.5.3 Description: The issue is caused by multiple integer overflows in imageop.c, which can be exploited by context-dependent attackers using crafted images to trigger heap-based buffer overflows. This could lead to ...
[SECURITY] [DSA 1551-1] New python2.4 packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1551-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 19, 2008 http://www.debian.org/security/faq -...
VLC Media Player < 0.8.6f Multiple Vulnerabilities
The version of VLC Media Player installed on the remote host reportedly is affected by several security issues : - A subtitle buffer overflow CVE-2007-6681. - A Real RTSP code execution problem CVE-2008-0073. - MP4 integer overflows CVE-2008-1489. - A cinepak integer overflow. C Tenable Network...
CVE-2008-1722
Multiple integer overflows in 1 filter/image-png.c and 2 filter/image-zoom.c in CUPS 1.3 allow attackers to cause a denial of service crash and trigger memory corruption, as demonstrated via a crafted PNG image...
XFree86 / X.Org / NX multiple security vulnerabilities
XInput and TOG-CUP extensions memory corruption, EVI and MIT-SHM extensions integer overflows, multiple extensions array index overflows. libxfont PCF fonts parsing buffer overflow...
SuSE 10 Security Update : Xgl (ZYPP Patch Number 5100)
This update fixes several integer overflows in Xgl. CVE-2007-6429 / CVE-2007-1003 / CVE-2007-5958 / CVE-2007-6427 / CVE-2007-6428 / CVE-2007-6429 / CVE-2008-0006 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...
SuSE 10 Security Update : xine (ZYPP Patch Number 5139)
Specially crafted files could cause integer overflows in the xine library. Attackers could potentially exploit that to execute arbitrary code with the privileges of the user who opened such a file. CVE-2008-1482 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this...
openSUSE 10 Security Update : xgl (xgl-5099)
This update fixes several integer overflows in Xgl CVE-2007-6429, CVE-2007-1003, CVE-2007-5958, CVE-2007-6427, CVE-2007-6428, CVE-2007-6429, CVE-2008-0006 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...
DTSA-120-1 xine-lib - several integer overflows
Bulletin has no description...
DSA-1533-2 exiftags
Bulletin has no description...
Debian DSA-1533-2 : exiftags - insufficient input sanitizing
Christian Schmid and Meder Kydyraliev Google Security discovered a number of vulnerabilities in exiftags, a utility for extracting EXIF metadata from JPEG images. The Common Vulnerabilities and Exposures project identified the following three problems : - CVE-2007-6354 Inadequate EXIF property...
CVE-2008-1391
Multiple integer overflows in libc in NetBSD 4.x, FreeBSD 6.x and 7.x, and probably other BSD and Apple Mac OS platforms allow context-dependent attackers to execute arbitrary code via large values of certain integer fields in the format argument to 1 the strfmon function in...
CVE-2008-1391
Multiple integer overflows in libc in NetBSD 4.x, FreeBSD 6.x and 7.x, and probably other BSD and Apple Mac OS platforms allow context-dependent attackers to execute arbitrary code via large values of certain integer fields in the format argument to 1 the strfmon function in...
CVE-2008-1391
Multiple integer overflows in libc in NetBSD 4.x, FreeBSD 6.x and 7.x, and probably other BSD and Apple Mac OS platforms allow context-dependent attackers to execute arbitrary code via large values of certain integer fields in the format argument to 1 the strfmon function in...
CVE-2008-1391
Multiple integer overflows in libc in NetBSD 4.x, FreeBSD 6.x and 7.x, and probably other BSD and Apple Mac OS platforms allow context-dependent attackers to execute arbitrary code via large values of certain integer fields in the format argument to 1 the strfmon function in...
DSA-1533-1 exiftags
Bulletin has no description...
Apache < 2.0.55 Multiple Vulnerabilities
The remote host appears to be running a version of Apache that is prior to 2.0.55. It is, therefore affected by multiple vulnerabilities : - A security issue exists where 'SSLVerifyClient' is not enforced in per-location context if 'SSLVerifyClient optional' is configured in the vhost...