DEBIAN-CVE-2004-0454

Buffer overflow in the msg function for rlpr daemon rlprd 2.04 allows local users to execute arbitrary code...

security flaw

The binfmtelf loader binfmtelf.c in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, does not properly handle a failed call to the mmap function, which causes an incorrect mapped image and may allow local users to execute arbitrary code...

CVE-2004-1352

Buffer overflow in the ping daemon of Sun Solaris 7 through 9 may allow local users to execute arbitrary code...

CVE-2004-0834

Format string vulnerability in Speedtouch USB driver before 1.3.1 allows local users to execute arbitrary code via 1 modemrun, 2 pppoa2, or 3 pppoa3...

security flaw

The 1 libsasl and 2 libsasl2 libraries in Cyrus-SASL 2.1.18 and earlier trust the SASLPATH environment variable to find all available SASL plug-ins, which allows local users to execute arbitrary code by modifying the SASLPATH to point to malicious programs...

CVE-2004-0643

Double free vulnerability in the krb5rdcred function for MIT Kerberos 5 krb5 1.3.1 and earlier may allow local users to execute arbitrary code...

Apple Mac OS X CoreFoundation contains a buffer overflow vulnerability

Overview There is a vulnerability in the Mac OS X CoreFoundation framework that could allow a local attacker to execute arbitrary code. Description The Core Foundation framework CoreFoundation.framework is designed to allow code and data sharing between frameworks, libraries, and applications in...

CVE-2002-1349

Buffer overflow in pop3trap.exe for PC-cillin 2000, 2002, and 2003 allows local users to execute arbitrary code via a long input string to TCP port 110 POP3...

CVE-2001-0423

Buffer overflow in ipcs in Solaris 7 x86 allows local users to execute arbitrary code via a long TZ timezone environmental variable, a different vulnerability than CAN-2002-0093...

CVE-2003-0062

Buffer overflow in Eset Software NOD32 for UNIX before 1.013 allows local users to execute arbitrary code via a long path name...

CVE-2002-1403

dhcpcd DHCP client daemon 1.3.22 and earlier allows local users to execute arbitrary code via shell metacharacters that are fed from a dhcpd .info script into a .exe script...

security flaw

Double free vulnerability in the krb5rdcred function for MIT Kerberos 5 krb5 1.3.1 and earlier may allow local users to execute arbitrary code...

CVE-2003-1050

Multiple buffer overflows in IBM DB2 Universal Database 8.1 may allow local users to execute arbitrary code via long command line arguments to 1 db2start, 2 db2stop, or 3 db2govd...

CORE-2004-0714: Cfengine RSA Authentication Heap Corruption

Core Security Technologies Advisory http://www.coresecurity.com Cfengine RSA Authentication Heap Corruption Date Published: 2004-08-09 Last Update: 2004-08-09 Advisory ID: CORE-2004-0714 Bugtraq ID: None currently assigned. CVE Name: None currently assigned. Title: Cfengine RSA Authentication Hea...

xine 0.99.2 - Remote Stack Overflow

xine 0.99.2 - Remote Stack Overflow / $ An open security advisory 6 - Xine vcd MRL input identifier management overflow 1: Bug Researcher: c0ntexatopen-security.org 2: Bug Released: July 28th 2004 3: Bug Impact Rate: Medium / Hi 4: Bug Scope Rate: Remote / Local $ This advisory and/or proof of...

CVE-2004-0548

Multiple stack-based buffer overflows in the word-list-compress functionality in compress.c for Aspell allow local users to execute arbitrary code via a long entry in the wordlist that is not properly handled when using the 1 "c" compress option or 2 "d" decompress option...

CVE-2004-0210

The POSIX component of Microsoft Windows NT and Windows 2000 allows local users to execute arbitrary code via certain parameters, possibly by modifying message length values and causing a buffer overflow...

CVE-2004-0205

Buffer overflow in Microsoft Internet Information Server IIS 4.0 allows local users to execute arbitrary code via the redirect function...

DEBIAN-CVE-2004-0548

Multiple stack-based buffer overflows in the word-list-compress functionality in compress.c for Aspell allow local users to execute arbitrary code via a long entry in the wordlist that is not properly handled when using the 1 "c" compress option or 2 "d" decompress option...

SCO Multi-channel Memorandum Distribution Facility - Multiple Vulnerabilities

SCO Multi-channel Memorandum Distribution Facility - Multiple Vulnerabilities / source: https://www.securityfocus.com/bid/10758/info It has been reported that the SCO Multi-channel Memorandum Distribution Facility MMDF is affected by multiple vulnerabilities. These issues are due to a failure of...