Pidgin: Invalid pointer dereference (crash) after receiving contacts from SIM IM client

The OSCAR protocol plugin in libpurple in Pidgin before 2.6.3 and Adium before 1.3.7 allows remote attackers to cause a denial of service application crash via crafted contact-list data for 1 ICQ and possibly 2 AIM, as demonstrated by the SIM IM client...

Fedora 11 : pidgin-2.6.3-2.fc11 (2009-10662)

This update fixes : - Bug 529357 - CVE-2009-3615 Pidgin: Invalid pointer dereference crash after receiving contacts from SIM IM client Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automaticall...

Fedora Core 10 FEDORA-2009-8136 (OpenEXR)

The remote host is missing an update to OpenEXR announced via advisory FEDORA-2009-8136. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by th...

Fedora Core 11 FEDORA-2009-8132 (OpenEXR)

The remote host is missing an update to OpenEXR announced via advisory FEDORA-2009-8132. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by th...

Fedora 11 : OpenEXR-1.6.1-8.fc11 (2009-8132)

Wed Jul 29 2009 Rex Dieter 1.6.1-8 - CVE-2009-1720 OpenEXR: Multiple integer overflows 513995 - CVE-2009-1721 OpenEXR: Invalid pointer free by image decompression 514003 - Fri Jul 24 2009 Fedora Release Engineering - 1.6.1-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora12MassRebuild Note...

Fedora 10 : OpenEXR-1.6.1-8.fc10 (2009-8136)

Wed Jul 29 2009 Rex Dieter 1.6.1-8 - CVE-2009-1720 OpenEXR: Multiple integer overflows 513995 - CVE-2009-1721 OpenEXR: Invalid pointer free by image decompression 514003 - Fri Jul 24 2009 Fedora Release Engineering - 1.6.1-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora12MassRebuild - Mon...

CVE-2009-2651

main/rtp.c in Asterisk Open Source 1.6.1 before 1.6.1.2 allows remote attackers to cause a denial of service crash via an RTP text frame without a certain delimiter, which triggers a NULL pointer dereference and the subsequent calculation of an invalid pointer...

Mandriva Update for python-reportlab MDKA-2007:112 (python-reportlab)

Check for the Version of python-reportlab OpenVAS Vulnerability Test Mandriva Update for python-reportlab MDKA-2007:112 python-reportlab Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribut...

Mandriva Update for python-reportlab MDKA-2007:112 (python-reportlab)

Check for the Version of python-reportlab OpenVAS Vulnerability Test Mandriva Update for python-reportlab MDKA-2007:112 python-reportlab Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribut...

Novell Netware Client code execution

Invalid pointer dereference on named pipe message parsing...

GLSA-200903-30 : Opera: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200903-30 Opera: Multiple vulnerabilities Multiple vulnerabilities were discovered in Opera: Vitaly McLain reported a heap-based buffer overflow when processing host names in file:// URLs CVE-2008-5178. Alexios Fakos reported a...

MS09-006: Vulnerabilities in Windows Kernel Could Allow Remote Code Execution (958690)

The remote host contains a version of the Windows kernel that is affected by vulnerabilities : - A remote code execution vulnerability exists due to improper validation of input passed from user mode through the kernel component of GDI. Successful exploitation requires that a user on the affected...

RedHat Update for unzip RHSA-2008:0196-01

Check for the Version of unzip OpenVAS Vulnerability Test RedHat Update for unzip RHSA-2008:0196-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

Design/Logic Flaw

Multiple array index errors in the Audible::Tag::readTag function in metadata/audible/audibletag.cpp in Amarok 1.4.10 through 2.0.1 allow remote attackers to cause a denial of service application crash or execute arbitrary code via an Audible Audio .aa file with a crafted 1 nlen or 2 vlen Tag...

Design/Logic Flaw

The HTML parsing engine in Opera before 9.63 allows remote attackers to execute arbitrary code via crafted web pages that trigger an invalid pointer calculation and heap corruption...

CVE-2008-5679

The HTML parsing engine in Opera before 9.63 allows remote attackers to execute arbitrary code via crafted web pages that trigger an invalid pointer calculation and heap corruption...

CVE-2008-5679

CVE-2008-5679 affects the Opera web browser (operating on multiple platforms). The issue is in the HTML parsing engine where processing crafted pages triggers an invalid pointer calculation, leading to heap corruption. This vulnerability, part of a set of issues (CVE-2008-5178, CVE-2008-5680–5683...

CVE-2008-3628

Apple QuickTime before 7.5.5 on Windows allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted PICT image, related to an "invalid pointer issue."...

Null pointer dereference

Apple QuickTime before 7.5.5 on Windows allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted PICT image, related to an "invalid pointer issue."...

CVE-2008-3628

Apple QuickTime before 7.5.5 on Windows allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted PICT image, related to an "invalid pointer issue."...