633 matches found
Mozilla Foundation Security Advisory 2010-75
Mozilla Foundation Security Advisory 2010-75 Title: Buffer overflow while line breaking after document.write with long string Impact: Critical Announced: December 9, 2010 Reporter: Dirk Heinrich Products: Firefox, Thunderbird, SeaMonkey Fixed in: Firefox 3.6.13 Firefox 3.5.16 Thunderbird 3.1.7...
Buffer overflow while line breaking after document.write with long string — Mozilla
Dirk Heinrich reported that on Windows platforms when document.write was called with a very long string a buffer overflow was caused in line breaking routines attempting to process the string for display. Such cases triggered an invalid read past the end of an array causing a crash which an...
FreeBSD : OpenTTD -- Denial of service (server/client) via invalid read (373e412e-f748-11df-96cd-0015f2db7bde)
The OpenTTD Team reports : When a client disconnects, without sending the 'quit' or 'client error' message, the server has a chance of reading and writing a just freed piece of memory. The writing can only happen while the server is sending the map. Depending on what happens directly after freein...
OpenTTD -- Denial of service (server/client) via invalid read
The OpenTTD Team reports: When a client disconnects, without sending the "quit" or "client error" message, the server has a chance of reading and writing a just freed piece of memory. The writing can only happen while the server is sending the map. Depending on what happens directly after freeing...
CVE-2010-4168
Multiple use-after-free vulnerabilities in OpenTTD 1.0.x before 1.0.5 allow 1 remote attackers to cause a denial of service invalid write and daemon crash by abruptly disconnecting during transmission of the map from the server, related to network/networkserver.cpp; 2 remote attackers to cause a...
CVE-2010-0128
Integer signedness error in dirapi.dll in Adobe Shockwave Player before 11.5.7.609 and Adobe Director before 11.5.7.609 allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via a crafted .dir file that triggers an invalid read operation...
PT-2009-3521 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel versions 2.6.27 through 2.6.27.13 Linux kernel versions 2.6.28 through 2.6.28.2 Linux kernel version 2.6.29-rc3 Description: The issue allows local users to cause a denial of service via a read with an invalid address to an inoti...
GLSA-200809-17 : Wireshark: Multiple Denials of Service
The remote host is affected by the vulnerability described in GLSA-200809-17 Wireshark: Multiple Denials of Service The following vulnerabilities were reported: Multiple buffer overflows in the NCP dissector CVE-2008-3146. Infinite loop in the NCP dissector CVE-2008-3932. Invalid read in the...
Wireshark: Multiple Denials of Service
Background Wireshark is a network protocol analyzer with a graphical front-end. Description The following vulnerabilities were reported: Multiple buffer overflows in the NCP dissector CVE-2008-3146. Infinite loop in the NCP dissector CVE-2008-3932. Invalid read in the tvbuncompress function when...
CVE-2008-3933
Wireshark formerly Ethereal 0.10.14 through 1.0.2 allows attackers to cause a denial of service crash via a packet with crafted zlib-compressed data that triggers an invalid read in the tvbuncompress function...
CVE-2007-3806
The glob function in PHP 5.2.3 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an invalid value of the flags parameter, probably related to memory corruption or an invalid read on win32 platforms, and possibly related to lack of initializati...
CVE-2007-3806
The glob function in PHP 5.2.3 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an invalid value of the flags parameter, probably related to memory corruption or an invalid read on win32 platforms, and possibly related to lack of initializati...
NetcPlus BrowseGate 2.80 - Denial of Service
source: https://www.securityfocus.com/bid/1702/info NetcPlus BrowseGate 2.80 will crash as the result of an invalid read error if a number of character strings consisting of 8 KB are inserted into GET request arguments through port 80. For example: GET / HTTP/1.0 Authorization: Basic8 KB string o...