CVE-2005-0941

The StgCompObjStream::Load function in OpenOffice.org OpenOffice 1.1.4 and earlier allocates memory based on 16 bit length values, but process memory using 32 bit values, which allows remote attackers to cause a denial of service and possibly execute arbitrary code via a DOC document with certain...

security flaw

The loadelflibrary in the Linux kernel before 2.6.11.6 allows local users to cause a denial of service kernel crash via a crafted ELF library or executable, which causes a free of an invalid pointer...

GLSA-200504-13 : OpenOffice.Org: DOC document Heap Overflow

The remote host is affected by the vulnerability described in GLSA-200504-13 OpenOffice.Org: DOC document Heap Overflow AD-LAB has discovered a heap overflow in the 'StgCompObjStream::Load' function when processing DOC documents. Impact : An attacker could design a malicious DOC document containi...

Windows 2003 Server DoS vulnerabilities

DoS on network operation during high CPU load, on printing in terminal sessions...

security flaw

MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated users with INSERT and DELETE privileges to bypass library path restrictions and execute arbitrary libraries by using INSERT INTO to modify the mysql.func table, which is processed by the udfinit function...

CVE-2005-0618

The SMTP binding function in Symantec Firewall/VPN Appliance 200/200R firmware after 1.5Z and before 1.68, Gateway Security 360/360R and 460/460R firmware before vuild 858, and Nexland Pro800turbo, when configured for load balancing between two WANs, might send SMTP traffic to a trusted network...

[SA14428] Symantec Firewall Devices SMTP Binding Configuration Bypass

---------------------------------------------------------------------- Monitor, Filter, and Manage Security Information - Filtering and Management of Secunia advisories - Overview, documentation, and detailed reports - Alerting via email and SMS Request Trial: https://ca.secunia.com/?f=l...

security flaw

Race condition in the 1 loadelflibrary and 2 binfmtaout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor...

security flaw

PostgreSQL pgsql 7.4.x, 7.2.x, and other versions allows local users to load arbitrary shared libraries and execute code via the LOAD extension...

security flaw

PostgreSQL pgsql 7.4.x, 7.2.x, and other versions allows local users to load arbitrary shared libraries and execute code via the LOAD extension...

CVE-2005-0227

CVE-2005-0227 affects PostgreSQL versions 7.4.x, 7.2.x and related builds. It allows a local user to load arbitrary shared libraries and execute code via the LOAD extension, enabling partial confidentiality and integrity impact and potential service impact. The vulnerability is tied to the abilit...

PT-2005-1308 · Postgresql +1 · Postgresql +1

Name of the Vulnerable Software and Affected Versions: PostgreSQL versions 7.2.x through 7.4.x PostgreSQL affected versions not specified Description: The issue allows local users to load arbitrary shared libraries and execute code via the LOAD extension. Any database user is permitted to load...

DSA-668-1 postgresql - privilege escalation

Bulletin has no description...

USN-71-1: PostgreSQL vulnerability

John Heasman discovered a local privilege escalation in the PostgreSQL server. Any user could use the LOAD extension to load any shared library into the PostgreSQL server; the library's initialisation function was then executed with the permissions of the server. Now the use of LOAD is restricted...

CVE-2005-0141

CVE-2005-0141 affects Firefox < 1.0 and Mozilla

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages that fix several security issues in Red Hat Enterprise Linux 2.1 are now available. The Linux kernel handles the basic functions of the operating system. This advisory includes fixes for the following security issues: iSEC Security Research discovered a VMA handling flaw i...

CVE-2004-1368

ISQLPlus in Oracle 10g Application Server allows remote attackers to execute arbitrary files via an absolute pathname in the file parameter to the load.uix script...

security flaw

Race condition in the 1 loadelflibrary and 2 binfmtaout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor...

DSA-643-1 queue - buffer overflows

Bulletin has no description...

Debian DSA-643-1 : queue - buffer overflows

'jaguar' of the Debian Security Audit Project has discovered several buffer overflows in queue, a transparent load balancing system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-643. Th...