DEBIAN-CVE-2005-4791

Multiple untrusted search path vulnerabilities in SUSE Linux 10.0 cause the working directory to be added to LDLIBRARYPATH, which might allow local users to execute arbitrary code via 1 liferea or 2 banshee...

PT-2005-5346 · Mirc · Mirc

Name of the Vulnerable Software and Affected Versions: mIRC versions 5.91 through 6.16 Description: A buffer overflow issue allows local users to potentially execute arbitrary code by entering a long string after reaching the DCC Get Folder Dialog. The vendor has disputed this issue, suggesting i...

DEBIAN-CVE-2005-3535

Buffer overflow in KETM 0.0.6 allows local users to execute arbitrary code via unknown vectors...

CVE-2005-3535

Buffer overflow in KETM 0.0.6 allows local users to execute arbitrary code via unknown vectors...

Multiple Network-related Vulnerabilities in Electric Sheep

Polytechnic University ISIS Security Advisory PUISIS10212005 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://isis.poly.edu/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -...

CVE-2005-4271

The CVE-2005-4271 entry describes a buffer overflow in the malloc debug system on IBM AIX 5.3 that allows local users to execute arbitrary code. Affected component: AIX 5.3 malloc debug subsystem. Root cause: buffer overflow in the malloc debug mechanism (as per NVD description). Impact: local pr...

CVE-2005-3903

Buffer overflow in uidadmin in SCO Unixware 7.1.3 and 7.1.4 allows local users to execute arbitrary code via a -S scheme argument that specifies a large file, a different vulnerability than CVE-2001-1063...

CVE-2004-2571

Multiple buffer overflows in EnderUNIX isoqlog 2.1.1 allow remote attackers to execute arbitrary code via the 1 parseQmailFromBytesLine, 2 parseQmailToRemoteLine, 3 parseQmailToLocalLine, 4 parseSendmailFromBytesLine, 5 parseSendmailToLine, 6 parseEximFromBytesLine, and 7 parseEximToLine function...

CVE-2004-2552

Buffer overflow in XBoard 4.2.7 and earlier might allow local users to execute arbitrary code via a long -icshost command line argument. NOTE: since the program is not setuid and not normally called from remote programs, there may not be a typical attack vector for the issue that crosses privileg...

CVE-2004-2552

Buffer overflow in XBoard 4.2.7 and earlier might allow local users to execute arbitrary code via a long -icshost command line argument. NOTE: since the program is not setuid and not normally called from remote programs, there may not be a typical attack vector for the issue that crosses privileg...

iTunes For Windows < 6.0 Local Code Execution

Binary data 3296.prm...

CVE-2005-2120

CVE-2005-2120 is a stack-based buffer overflow in the Windows Plug and Play (PnP) service (UMPNPMGR.DLL) on Windows 2000 SP4 and Windows XP SP1/SP2. The overflow occurs when processing a registry key name containing a large number of backslashes, triggered in wsprintfW, allowing remote or local a...

security flaw

Stack-based buffer overflow in the sendmsg function call in the Linux kernel 2.6 before 2.6.13.1 allows local users to execute arbitrary code by calling sendmsg and modifying the message contents in another thread...

CVE-2005-3060

CVE-2005-3060 affects IBM AIX getconf in AIX 5.2–5.3, due to a buffer overflow in the getconf utility. Exploitation would be local (authenticated) and may allow arbitrary code execution on the affected host. The CERT/IBM documentation identifies IBM as vendor and points to updates (IY73814, IY738...

Buffer overflow in moxa driver

Buffer overflow in the MoxaDriverIoctl function for the moxa serial driver moxa.c in Linux 2.2.x, 2.4.x, and 2.6.x before 2.6.22 allows local users to execute arbitrary code via a certain modified length value...

CVE-2005-1843

VCNative for Adobe Version Cue 1.0 and 1.0.1, as used in Creative Suite 1.0 and 1.3, and when running on Mac OS X with Version Cue Workspace, allows local users to load arbitrary libraries and execute arbitrary code via the -lib command line argument...

CVE-2004-2372

Buffer overflow in Bochs before 2.1.1, if installed setuid, allows local users to execute arbitrary code via a long HOME environment variable, which is used if the .bochsrc, bochsrc, and bochsrc.txt cannot be found in a known path. NOTE: some external documents recommend that Bochs be installed...

CVE-2002-2089

CVE-2002-2089 is a vulnerability in Solaris 9.0 where the rcp component suffers a buffer overflow, exploitable by a local user via a long command line argument, potentially allowing arbitrary code execution. The description across sources consistently identifies a local-privilege impact with the ...

CVE-2004-2300

Buffer overflow in snmpd in ucd-snmp 4.2.6 and earlier, when installed setuid root, allows local users to execute arbitrary code via a long -p command line argument. NOTE: it is not clear whether there are any standard configurations in which snmpd is installed setuid or setgid. If not, then this...

CVE-2002-2016

User-mode Linux UML 2.4.17-8 does not restrict access to kernel address space, which allows local users to execute arbitrary code...