CVE-2008-4868

Unspecified vulnerability in the avcodecclose function in libavcodec/utils.c in FFmpeg 0.4.9 before r14787, as used by MPlayer, has unknown impact and attack vectors, related to a free "on random pointers."...

CVE-2008-4654

Stack-based buffer overflow in the parsemaster function in the Ty demux plugin modules/demux/ty.c in VLC Media Player 0.9.0 through 0.9.4 allows remote attackers to execute arbitrary code via a TiVo TY media file with a header containing a crafted size value...

CVE-2008-4555

Stack-based buffer overflow in the pushsubg function in parser.y lib/graph/parser.c in Graphviz 2.20.2, and possibly earlier versions, allows user-assisted remote attackers to cause a denial of service memory corruption or execute arbitrary code via a DOT file with a large number of Agrapht...

CVE-2008-3827

Multiple integer underflows in the Real demuxer demuxreal.c in MPlayer 1.0rc2 and earlier allow remote attackers to cause a denial of service process termination and possibly execute arbitrary code via a crafted video file that causes the streamread function to read or write arbitrary memory...

CVE-2008-3686

The rt6fillnode function in net/ipv6/route.c in Linux kernel 2.6.26-rc4, 2.6.26.2, and possibly other 2.6.26 versions, allows local users to cause a denial of service kernel OOPS via IPv6 requests when no IPv6 input device is in use, which triggers a NULL pointer dereference...

CVE-2008-3326

Cross-site scripting XSS vulnerability in blog/edit.php in Moodle 1.6.x before 1.6.7 and 1.7.x before 1.7.5 allows remote attackers to inject arbitrary web script or HTML via the etitle parameter blog entry title...

CVE-2008-2723

embed.php in Menalto Gallery before 2.2.5 allows remote attackers to obtain the full path via unknown vectors related to "spoofing the remote address."...

CVE-2008-1803

Integer signedness error in the xrealloc function rdesktop.c in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channelprocess function was not specified by the original researcher...

CVE-2008-0599

The initrequestinfo function in sapi/cgi/cgimain.c in PHP before 5.2.6 does not properly consider operator precedence when calculating the length of PATHTRANSLATED, which might allow remote attackers to execute arbitrary code via a crafted URI...

CVE-2008-1768

Multiple integer overflows in VLC before 0.8.6f allow remote attackers to cause a denial of service crash via the 1 MP4 demuxer, 2 Real demuxer, and 3 Cinepak codec, which triggers a buffer overflow...

CVE-2008-1878

Stack-based buffer overflow in the demuxnsfsendchunk function in src/demuxers/demuxnsf.c in xine-lib 1.1.12 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long NSF title...

CVE-2008-1722

Multiple integer overflows in 1 filter/image-png.c and 2 filter/image-zoom.c in CUPS 1.3 allow attackers to cause a denial of service crash and trigger memory corruption, as demonstrated via a crafted PNG image...

CVE-2008-1558

Uncontrolled array index in the sdpplinparse function in stream/realrtsp/sdpplin.c in MPlayer 1.0 rc2 allows remote attackers to overwrite memory and execute arbitrary code via a large streamid SDP parameter. NOTE: this issue has been referred to as an integer overflow...

CVE-2008-1531

The connectionstatemachine function connections.c in lighttpd 1.4.19 and earlier, and 1.5.x before 1.5.0, allows remote attackers to cause a denial of service active SSL connection loss by triggering an SSL error, such as disconnecting before a download has finished, which causes all active SSL...

CVE-2008-0073

Array index error in the sdpplinparse function in input/libreal/sdpplin.c in xine-lib 1.1.10.1 allows remote RTSP servers to execute arbitrary code via a large streamid SDP parameter...

CVE-2008-0666

Website META Language WML 2.0.11 allows local users to overwrite arbitrary files via a symlink attack on 1 the /tmp/pe.tmp.$$ temporary file used by wmlcontrib/wmg.cgi and 2 temporary files used by wmlbackend/p3eperl/eperlsys.c...

CVE-2008-0486

Array index vulnerability in libmpdemux/demuxaudio.c in MPlayer 1.0rc2 and SVN before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might allow remote attackers to execute arbitrary code via a crafted FLAC tag, which triggers a buffer overflow...

CVE-2008-0485

Array index error in libmpdemux/demuxmov.c in MPlayer 1.0 rc2 and earlier might allow remote attackers to execute arbitrary code via a QuickTime MOV file with a crafted stsc atom tag...

CVE-2008-0564

Multiple cross-site scripting XSS vulnerabilities in Mailman before 2.1.10b1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to 1 editing templates and 2 the list's "info attribute" in the web administrator interface, a different vulnerability than...

CVE-2008-0544

Heap-based buffer overflow in the IMGLoadLBMRW function in IMGlbm.c in SDLimage before 1.2.7 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted IFF ILBM file. NOTE: some of these details are obtained from third party information...