4272 matches found
PT-2008-2682 · Microsoft · Windows Server +1
Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions 2000 SP4 through Vista SP1 Microsoft Windows Server versions 2003 SP1 through 2008 Description: The issue is related to improper input validation in the Windows kernel, allowing local users to execute arbitrary code...
server: insecure permissions on fedora/redhat-idm-console
Red Hat Directory Server 8.0, when running on Red Hat Enterprise Linux, uses insecure permissions for the redhat-idm-console script, which allows local users to execute arbitrary code by modifying the script...
DEBIAN-CVE-2008-0302
Untrusted search path vulnerability in apt-listchanges.py in apt-listchanges before 2.82 allows local users to execute arbitrary code via a malicious apt-listchanges program in the current working directory...
White_Dune 0.29beta791 - Multiple Local Code Execution Vulnerabilities
WhiteDune 0.29beta791 - Multiple Local Code Execution Vulnerabilities source: https://www.securityfocus.com/bid/27102/info WhiteDune is affected by a format-string vulnerability and a buffer-overflow vulnerability. Exploiting these issues can allow local attackers to execute arbitrary code in the...
White_Dune 0.29beta791 - Multiple Local Code Execution Vulnerabilities
source: https://www.securityfocus.com/bid/27102/info WhiteDune is affected by a format-string vulnerability and a buffer-overflow vulnerability. Exploiting these issues can allow local attackers to execute arbitrary code in the context of the application. Versions prior to WhiteDune 0.29beta795 a...
PT-2007-6895 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.23.10 Description: The issue is related to an integer overflow in the hrtimer start function, which can be exploited by local users to execute arbitrary code or cause a denial of service, resulting in a syst...
PT-2007-5460 · Apple · Macos X
Name of the Vulnerable Software and Affected Versions: Mac OS X versions 10.4 through 10.4.10 Description: The issue is related to an integer signedness error in the Networking component, which allows local users to execute arbitrary code via a crafted AppleTalk message. This message contains a...
CVE-2002-2396
This CVE (CVE-2002-2396) affects Advanced TFTP (atftp) versions 0.5 and 0.6. The vulnerability is a buffer overflow in code that runs when atftp is installed with setuid or setgid, allowing a local user to potentially execute arbitrary code via a long argument to the -g option. Root cause is a bu...
CVE-2007-5730
Heap-based buffer overflow in QEMU 0.8.2, as used in Xen and possibly other products, allows local users to execute arbitrary code via crafted data in the "net socket listen" option, aka QEMU "net socket" heap overflow. NOTE: some sources have used CVE-2007-1321 to refer to this issue as part of...
CVE-2007-5729
The NE2000 emulator in QEMU 0.8.2 allows local users to execute arbitrary code by writing Ethernet frames with a size larger than the MTU to the EN0TCNT register, which triggers a heap-based buffer overflow in the slirp library, aka NE2000 "mtu" heap overflow. NOTE: some sources have used...
CVE-2007-5730
Heap-based buffer overflow in QEMU 0.8.2, as used in Xen and possibly other products, allows local users to execute arbitrary code via crafted data in the "net socket listen" option, aka QEMU "net socket" heap overflow. NOTE: some sources have used CVE-2007-1321 to refer to this issue as part of...
DEBIAN-CVE-2007-5729
The NE2000 emulator in QEMU 0.8.2 allows local users to execute arbitrary code by writing Ethernet frames with a size larger than the MTU to the EN0TCNT register, which triggers a heap-based buffer overflow in the slirp library, aka NE2000 "mtu" heap overflow. NOTE: some sources have used...
DEBIAN-CVE-2007-5730
Heap-based buffer overflow in QEMU 0.8.2, as used in Xen and possibly other products, allows local users to execute arbitrary code via crafted data in the "net socket listen" option, aka QEMU "net socket" heap overflow. NOTE: some sources have used CVE-2007-1321 to refer to this issue as part of...
CVE-2007-5730
CVE-2007-5730 : Heap-based buffer overflow in QEMU 0.8.2 (used by Xen and possibly other products) allows local users to execute arbitrary code via crafted data in the net socket listen option. The MiracleLinux AXSA advisories list this CVE among issues affecting Xen-related components and, in up...
CVE-2003-1426
Openwebmail in cPanel 5.0 (when run with suid Perl) writes the SCRIPT_FILENAME directory into Perl's @INC, enabling local users to run arbitrary code by pointing SCRIPT_FILENAME to a directory containing a malicious openwebmail-shared.pl. This CVE (CVE-2003-1426) describes a local-privilege-vecto...
CVE-2007-5358
Multiple buffer overflows in the voicemail functionality in Asterisk 1.4.x before 1.4.13, when using IMAP storage, might allow 1 remote attackers to execute arbitrary code via a long combination of Content-type and Content-description headers, or 2 local users to execute arbitrary code via a long...
DEBIAN-CVE-2007-5358
Multiple buffer overflows in the voicemail functionality in Asterisk 1.4.x before 1.4.13, when using IMAP storage, might allow 1 remote attackers to execute arbitrary code via a long combination of Content-type and Content-description headers, or 2 local users to execute arbitrary code via a long...
CVE-2007-5358
Multiple buffer overflows in the voicemail functionality in Asterisk 1.4.x before 1.4.13, when using IMAP storage, might allow 1 remote attackers to execute arbitrary code via a long combination of Content-type and Content-description headers, or 2 local users to execute arbitrary code via a long...
CVE-2004-2729
Technical details about CVE-2004-2729 are not publicly available in the provided documents. Monitor for updates from official advisories for affected versions and impact.
X.org composite extension buffer overflow
Buffer overflow in the compNewPixmap function in compalloc.c in the Composite extension for the X.org X11 server before 1.4 allows local users to execute arbitrary code by copying data from a large pixel depth pixmap into a smaller pixel depth pixmap...