CVE-2009-3465

Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via crafted Shockwave content on a web site, related to an "invalid pointer vulnerability," a different issue than CVE-2009-3464. NOTE: some of these details are obtained from third party information...

Shockwave Player <= 11.5.1.601 Multiple Vulnerabilities (APSB09-16)

The remote Windows host contains a version of Adobe's Shockwave Player that is 11.5.1.601 or earlier. As such, it is affected by multiple issues : - An invalid index vulnerability could lead to code execution. CVE-2009-3463 - Invalid pointer vulnerabilities could lead to code execution...

RHEL 3 : pidgin (RHSA-2009:1535)

An updated pidgin package that fixes several security issues is now available for Red Hat Enterprise Linux 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Pidgin is an instant messaging program which can log in to multiple accounts on multip...

pidgin security update

CentOS Errata and Security Advisory CESA-2009:1535 An updated pidgin package that fixes several security issues is now available for Red Hat Enterprise Linux 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Pidgin is an instant messaging...

Pidgin: Invalid pointer dereference (crash) after receiving contacts from SIM IM client

The OSCAR protocol plugin in libpurple in Pidgin before 2.6.3 and Adium before 1.3.7 allows remote attackers to cause a denial of service application crash via crafted contact-list data for 1 ICQ and possibly 2 AIM, as demonstrated by the SIM IM client...

Fedora 11 : pidgin-2.6.3-2.fc11 (2009-10662)

This update fixes : - Bug 529357 - CVE-2009-3615 Pidgin: Invalid pointer dereference crash after receiving contacts from SIM IM client Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automaticall...

Fedora Core 11 FEDORA-2009-8132 (OpenEXR)

The remote host is missing an update to OpenEXR announced via advisory FEDORA-2009-8132. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by th...

Fedora Core 10 FEDORA-2009-8136 (OpenEXR)

The remote host is missing an update to OpenEXR announced via advisory FEDORA-2009-8136. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by th...

Fedora 10 : OpenEXR-1.6.1-8.fc10 (2009-8136)

Wed Jul 29 2009 Rex Dieter 1.6.1-8 - CVE-2009-1720 OpenEXR: Multiple integer overflows 513995 - CVE-2009-1721 OpenEXR: Invalid pointer free by image decompression 514003 - Fri Jul 24 2009 Fedora Release Engineering - 1.6.1-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora12MassRebuild - Mon...

Fedora 11 : OpenEXR-1.6.1-8.fc11 (2009-8132)

Wed Jul 29 2009 Rex Dieter 1.6.1-8 - CVE-2009-1720 OpenEXR: Multiple integer overflows 513995 - CVE-2009-1721 OpenEXR: Invalid pointer free by image decompression 514003 - Fri Jul 24 2009 Fedora Release Engineering - 1.6.1-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora12MassRebuild Note...

CVE-2009-2651

main/rtp.c in Asterisk Open Source 1.6.1 before 1.6.1.2 allows remote attackers to cause a denial of service crash via an RTP text frame without a certain delimiter, which triggers a NULL pointer dereference and the subsequent calculation of an invalid pointer...

Mandriva Update for python-reportlab MDKA-2007:112 (python-reportlab)

Check for the Version of python-reportlab OpenVAS Vulnerability Test Mandriva Update for python-reportlab MDKA-2007:112 python-reportlab Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribut...

Mandriva Update for python-reportlab MDKA-2007:112 (python-reportlab)

Check for the Version of python-reportlab OpenVAS Vulnerability Test Mandriva Update for python-reportlab MDKA-2007:112 python-reportlab Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribut...

Novell Netware Client code execution

Invalid pointer dereference on named pipe message parsing...

GLSA-200903-30 : Opera: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200903-30 Opera: Multiple vulnerabilities Multiple vulnerabilities were discovered in Opera: Vitaly McLain reported a heap-based buffer overflow when processing host names in file:// URLs CVE-2008-5178. Alexios Fakos reported a...

MS09-006: Vulnerabilities in Windows Kernel Could Allow Remote Code Execution (958690)

The remote host contains a version of the Windows kernel that is affected by vulnerabilities : - A remote code execution vulnerability exists due to improper validation of input passed from user mode through the kernel component of GDI. Successful exploitation requires that a user on the affected...

RedHat Update for unzip RHSA-2008:0196-01

Check for the Version of unzip OpenVAS Vulnerability Test RedHat Update for unzip RHSA-2008:0196-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

Design/Logic Flaw

Multiple array index errors in the Audible::Tag::readTag function in metadata/audible/audibletag.cpp in Amarok 1.4.10 through 2.0.1 allow remote attackers to cause a denial of service application crash or execute arbitrary code via an Audible Audio .aa file with a crafted 1 nlen or 2 vlen Tag...

Design/Logic Flaw

The HTML parsing engine in Opera before 9.63 allows remote attackers to execute arbitrary code via crafted web pages that trigger an invalid pointer calculation and heap corruption...

CVE-2008-5679

The HTML parsing engine in Opera before 9.63 allows remote attackers to execute arbitrary code via crafted web pages that trigger an invalid pointer calculation and heap corruption...