784 matches found
SuSE 10 Security Update : libvorbis (ZYPP Patch Number 4584)
Specially crafted OGG files could crash libvorbis or make it run into an endless loop. CVE-2007-4029 / CVE-2007-4065 / CVE-2007-4066 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...
ImageMagick: Multiple vulnerabilities
Background ImageMagick is a collection of tools and libraries for manipulating various image formats. Description regenrecht reported multiple infinite loops in functions ReadDCMImage and ReadXCFImage CVE-2007-4985, multiple integer overflows when handling certain types of images CVE-2007-4986,...
libvorbis: Multiple vulnerabilities
Background libvorbis is the reference implementation of the Xiph.org Ogg Vorbis audio file format. It is used by many applications for playback of Ogg Vorbis files. Description David Thiel of iSEC Partners discovered a heap-based buffer overflow in the 01inverse function in res0.c and a boundary...
HP-UX Security Patch : PHSS_28092
X OV NNM6.2 netmon loops & IP address changes %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid26652; scriptversion"1.9"; scriptsetattributeattribute:"pluginmodificationdate",...
CVE-2007-4985
ImageMagick before 6.3.5-9 allows context-dependent attackers to cause a denial of service via a crafted image file that triggers 1 an infinite loop in the ReadDCMImage function, related to ReadBlobByte function calls; or 2 an infinite loop in the ReadXCFImage function, related to ReadBlobMSBLong...
CVE-2007-4035
Guidance Software EnCase does not properly handle 1 certain malformed MBR partition tables with many entries, which allows remote attackers to prevent logical collection of a disk image; 2 NTFS filesystems with directory loops, which allows remote attackers to prevent examination of certain...
PT-2007-5243 · Guidance · Encase
Name of the Vulnerable Software and Affected Versions: Guidance Software EnCase affected versions not specified Description: The issue arises from the improper handling of certain malformed MBR partition tables and NTFS filesystems. This allows remote attackers to prevent the logical collection o...
PT-2007-5051 · Jwig · Jwig
Name of the Vulnerable Software and Affected Versions: JWIG affected versions not specified Description: The issue might allow context-dependent attackers to cause a denial of service service degradation via loops of references to external templates. However, it has been disputed by multiple thir...
Remote DoS in libevent DNS parsing <= 1.2a
Author: Jon Oberheide [email protected] Date: Sun, February 18th, 2007 Summary ======= Application: libevent Affected Versions: 1.2 - 1.2a Vendor Website: http://monkey.org/provos/libevent/ Type of Vulnerability: Denial of Service - Remote Background ========== The libevent API provides a mechani...
Mandrake Linux Security Advisory : imlib2 (MDKSA-2006:198-1)
M Joonas Pihlaja discovered several vulnerabilities in the Imlib2 graphics library. The load function of several of the Imlib2 image loaders does not check the width and height of an image before allocating memory. As a result, a carefully crafted image file can trigger a segfault when an...
SUSE-SA:2006:056: gzip
The remote host is missing the patch for the advisory SUSE-SA:2006:056 gzip. The gzip tool does not handle some specific values correctly when unpacking archives. This leads to vulnerabilities like buffer overflows or infinite loops. Various different programs like mail clients, file explorer, et...
Sophos antivirus and Trend Micro antivirus RAR files DoS
Endless loops and hangs on scanning archives with packsize and headsize of zero...
GLSA-200609-13 : gzip: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200609-13 gzip: Multiple vulnerabilities Tavis Ormandy of the Google Security Team has reported multiple vulnerabilities in gzip. A stack buffer modification vulnerability was discovered in the LZH decompression code, where a...
Ubuntu 4.10 / 5.04 : tcpdump vulnerabilities (USN-119-1)
It was discovered that certain invalid GRE, LDP, BGP, and RSVP packets triggered infinite loops in tcpdump, which caused tcpdump to stop working. This could be abused by a remote attacker to bypass tcpdump analysis of network traffic. Note that Tenable Network Security has extracted the preceding...
ClamAV antivirus multiple vulnerabilities
Buffer overflow on handling FSG and UPX packed files, endless loops on CAB and TNEF files parsing...
FreeBSD : tcpdump -- infinite loops in protocol decoding (9fae0f1f-df82-11d9-b875-0001020eed82)
Problem Description Several tcpdump protocol decoders contain programming errors which can cause them to go into infinite loops. Impact An attacker can inject specially crafted packets into the network which, when processed by tcpdump, could lead to a denial-of-service. After the attack, tcpdump...
Multiple tcpdump / ethereal sniffers vulnerabilities
Endless loops during handling RSVP, ISIS, BGP, LDP protocols, buffer overflows in ANSI A, GSM MAP, AIM, DISTCC, FCELS, SIP, KINK, LMP, Telnet, TZSP, WSP, BER, SMB, H.245, Bittorrent, Fibre Channel and many others...
FreeBSD-SA-05:10.tcpdump
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-05:10.tcpdump Security Advisory The FreeBSD Project Topic: Infinite loops in tcpdump protocol decoding Category: contrib Module: tcpdump Announced: 2005-06-09...
PHP getimagesize DoS
Infinite loops with 100 CPU utilization...
openmotif21 stack overflows in libxpm
Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include 1 multiple integer overflows, 2 out-of-bounds memory accesses, 3 directory traversal, 4 shell metacharacter, 5 endless loops, and 6 memory leaks, which could allow remote attackers to obtain...