Amazon Linux AMI : php (ALAS-2011-07)

The MITRE CVE database describes these CVEs as : Revert isa behavior to php = 5.3.6 and add a new new option allowstring for the new behavior accept string and raise autoload if needed Use-after-free vulnerability in the substrreplace function in PHP 5.3.6 and earlier allows context-dependent...

FreeBSD : cURL library -- heap corruption in curl_easy_unescape (01cf67b3-dc3b-11e2-a6cd-c48508086173)

cURL developers report : libcurl is vulnerable to a case of bad checking of the input data which may lead to heap corruption. The function curleasyunescape decodes URL-encoded strings to raw binary data. URL-encoded octets are represented with %HH combinations where HH is a two-digit hexadecimal...

boost: ordered_malloc() overflow

Integer overflow in the orderedmalloc function in boost/pool/pool.hpp in Boost Pool before 3.9 makes it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large memory chunk size value, which causes less memory to be allocated than expected...

GNU glibc - strcoll() Routine Integer Overflow

GNU glibc - strcoll Routine Integer Overflow // source: https://www.securityfocus.com/bid/55462/info GNU glibc is prone to a remote integer-overflow vulnerability which leads to buffer overflow vulnerability. Successful exploits may allow an attacker to execute arbitrary code in the context of a...

USN-1546-1: libgc vulnerability

It was discovered that multiple integer overflows existed in the malloc and calloc implementations in the Boehm-Demers-Weiser garbage collecting memory allocator libgc. These could allow an attacker to cause a denial of service or possibly execute arbitrary code...

CentOS Update for glibc CESA-2012:0393 centos6

Check for the Version of glibc OpenVAS Vulnerability Test CentOS Update for glibc CESA-2012:0393 centos6 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

httpdx 1.5.4 - Remote Heap Overflow

!/usr/bin/perl -w ====================================================================== Exploit Title: httpdx UnhandledExceptionFilter ====================================================================== use strict; use IO::Socket::INET; target my $host = "127.0.0.1"; The perl|php|py|.. page t...

httpdx 1.5.4 - Remote Heap Overflow

httpdx 1.5.4 - Remote Heap Overflow !/usr/bin/perl -w ====================================================================== Exploit Title: httpdx UnhandledExceptionFilter ====================================================================== use strict; use IO::Socket::INET; target my $host =...

httpdx 1.5.4 Heap Overflow

!/usr/bin/perl -w ====================================================================== Exploit Title: httpdx UnhandledExceptionFilter ====================================================================== use strict; use IO::Socket::INET; target my $host = "127.0.0.1"; The perl|php|py|.. page t...

AZL-41929 CVE-2012-2677 affecting package ceph for versions less than 18.2.2-1

Integer overflow in the orderedmalloc function in boost/pool/pool.hpp in Boost Pool before 3.9 makes it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large memory chunk size value, which causes less memory to be allocated than expected...

CVE-2012-2673

Multiple integer overflows in the 1 GCgenericmalloc and 2 calloc functions in malloc.c, and the 3 GCgenericmallocignoreoffpage function in mallocx.c in Boehm-Demers-Weiser GC libgc before 7.2 make it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows...

CVE-2012-2676

Multiple integer overflows in the 1 malloc and 2 calloc functions in Hoard before 3.9 make it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows on implementing code via a large size value, which causes less memory to be allocated than expected...

CVE-2012-2676

CVE-2012-2676 affects the Hoard memory allocator (pre-3.9) and concerns two integer overflow paths in the malloc and calloc implementations. When a large size value is requested, the overflow can cause the allocator to allocate less memory than expected, enabling context‑dependent attackers to pe...

CVE-2012-2675

The vulnerability CVE-2012-2675 affects nedmalloc (nedmalloc.c) up to version 1.10 beta2, where two integer overflow paths in CallMalloc (malloc) and nedpcalloc (calloc) can cause allocation sizing to be smaller than requested. This can enable context-dependent attackers to perform memory-related...

CVE-2012-2676

Multiple integer overflows in the 1 malloc and 2 calloc functions in Hoard before 3.9 make it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows on implementing code via a large size value, which causes less memory to be allocated than expected...

RedHat Update for glibc RHSA-2012:0393-01

Check for the Version of glibc OpenVAS Vulnerability Test RedHat Update for glibc RHSA-2012:0393-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

Fedora Update for gc FEDORA-2012-9637

Check for the Version of gc OpenVAS Vulnerability Test Fedora Update for gc FEDORA-2012-9637 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of the...

FreeBSD : png -- memory corruption/possible remote code execution (262b92fe-81c8-11e1-8899-001ec9578670)

The PNG project reports : libpng fails to correctly handle malloc failures for text chunks in pngsettext2, which can lead to memory corruption and the possibility of remote code execution. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound via the orderedmalloc function in boost/pool/pool.hpp. An attacker can perform memory-related attacks such as buffer overflows via a large memory chunk size value, which causes less memory to be allocated...

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound via the orderedmalloc function in boost/pool/pool.hpp. An attacker can perform memory-related attacks such as buffer overflows via a large memory chunk size value, which causes less memory to be allocated...