3104 matches found
CVE-2004-1026
Multiple integer overflows in the image handler for imlib 1.9.14 and earlier, which is used by gkrellm and several window managers, allow remote attackers to cause a denial of service application crash and execute arbitrary code via certain image files...
CVE-2004-0914
Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include 1 multiple integer overflows, 2 out-of-bounds memory accesses, 3 directory traversal, 4 shell metacharacter, 5 endless loops, and 6 memory leaks, which could allow remote attackers to obtain...
pdftohtml: Vulnerabilities in included Xpdf
Background pdftohtml is a utility to convert PDF files to HTML or XML formats. It makes use of Xpdf code to decode PDF files. Description Xpdf is vulnerable to integer overflows, as described in GLSA 200412-24. Impact An attacker could entice a user to convert a specially-crafted PDF file,...
[SECURITY] [DSA 628-1] New imlib2 packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 628-1 [email protected] http://www.debian.org/security/ Martin Schulze January 6th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 628-1] New imlib2 packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 628-1 [email protected] http://www.debian.org/security/ Martin Schulze January 6th, 2005 http://www.debian.org/security/faq -...
Debian DSA-628-1 : imlib2 - integer overflows
Pavel Kankovsky discovered that several overflows found in the libXpm library were also present in imlib and imlib2, imaging libraries for X11. An attacker could create a carefully crafted image file in such a way that it could cause an application linked with imlib or imlib2 to execute arbitrary...
Debian DSA-618-1 : imlib - buffer overflows, integer overflows
Pavel Kankovsky discovered that several overflows found in the libXpm library were also present in imlib, an imaging library for X and X11. An attacker could create a carefully crafted image file in such a way that it could cause an application linked with imlib to execute arbitrary code when the...
[SECURITY] [DSA 618-1] New imlib packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 618-1 [email protected] http://www.debian.org/security/ Martin Schulze December 24th, 2004 http://www.debian.org/security/faq -...
CVE-2004-0803
Multiple vulnerabilities in the RLE run length encoding decoders for libtiff 3.6.1 and earlier, related to buffer overflows and integer overflows, allow remote attackers to execute arbitrary code via TIFF files...
Fedora Core 3 : php-4.3.10-3.2 (2004-568)
Tue Dec 21 2004 Joe Orton 4.3.10-3.2 - fix umask patch 143286 - Wed Dec 15 2004 Joe Orton 4.3.10-3.1 - update to 4.3.10, including security fixes 141135 : - unserializer integer overflows, CVE-2004-1019 - exif image parsing overflow, CVE-2004-1065 Note that Tenable Network Security has extracted...
openmotif21 stack overflows in libxpm
Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include 1 multiple integer overflows, 2 out-of-bounds memory accesses, 3 directory traversal, 4 shell metacharacter, 5 endless loops, and 6 memory leaks, which could allow remote attackers to obtain...
CVE-2004-0994
Multiple integer overflows in xzgv 0.8 and earlier allow remote attackers to execute arbitrary code via images with large width and height values, which trigger a heap-based buffer overflow, as demonstrated in the readprffile function in readprf.c. NOTE: CVE-2004-0994 and CVE-2004-1095 identify...
CVE-2004-0994
Multiple integer overflows in xzgv 0.8 and earlier allow remote attackers to execute arbitrary code via images with large width and height values, which trigger a heap-based buffer overflow, as demonstrated in the readprffile function in readprf.c. NOTE: CVE-2004-0994 and CVE-2004-1095 identify...
Debian DSA-608-1 : zgv - integer overflows, unsanitised input
Several vulnerabilities have been discovered in zgv, an SVGAlib graphics viewer for the i386 architecture. The Common Vulnerabilities and Exposures Project identifies the following problems : - CAN-2004-1095 'infamous41md' discovered multiple integer overflows in zgv. Remote exploitation of an...
DSA-608-1 zgv - integer overflows, unsanitised input
Bulletin has no description...
imlib -- xpm heap buffer overflows and integer overflows
Pavel Kankovsky reports: Imlib affected by a variant of CAN-2004-0782 too. I've discovered more vulnerabilities in Imlib 1.9.13. In particular, it appears to be affected by a variant of Chris Evans' libXpm flaw 1 CAN-2004-0782, see http://scary.beasts.org/security/CESA-2004-003.txt. Look at the...
Debian DSA-599-1 : tetex-bin - integer overflows
Chris Evans discovered several integer overflows in xpdf, that are also present in tetex-bin, binary files for the teTeX distribution, which can be exploited remotely by a specially crafted PDF document and lead to the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security,...
[SECURITY] [DSA 599-1] New tetex-bin packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 599-1 [email protected] http://www.debian.org/security/ Martin Schulze November 25th, 2004 http://www.debian.org/security/faq -...
[SECURITY] [DSA 599-1] New tetex-bin packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 599-1 [email protected] http://www.debian.org/security/ Martin Schulze November 25th, 2004 http://www.debian.org/security/faq -...
DSA-599-1 tetex-bin - integer overflows
Bulletin has no description...