Python < 2.5.2 Imageop Module - 'imageop.crop()' Buffer Overflow Vulnerability

No description provided by source. Python's 'imageop' module is prone to a buffer-overflow vulnerability. Successful exploits may allow attackers to execute arbitrary code in the context of applications using the vulnerable Python module. This may result in a compromise of the underlying system...

Ghostscript 'CCITTFax' Decoding Filter - Denial of Service Vulnerability

No description provided by source. Ghostscript is prone to a remote denial-of-service vulnerability because it fails to properly validate user-supplied input. Exploiting this issue allows remote attackers to crash the application and possibly to execute code, but this has not been confirmed...

Ghostscript < 8.64 'gdevpdtb.c' Buffer Overflow Vulnerability

No description provided by source. Ghostscript is prone to a remote buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it into a finite-sized buffer. Exploiting this issue allows remote attackers to overwrite a sensitive memory buffer with...

Mozilla Firefox and SeaMonkey Java LiveConnect Script Security Bypass Vulnerability

CVE:CVE-2010-3775 Bugtraq ID:45355 Mozilla Firefox and SeaMonkey are prone to a security-bypass vulnerability. Attackers can exploit this issue to bypass security restrictions and obtain elevated privileges such as the abilities to read local files, launch processes, and create network connection...

PHP 'session_save_path()' 'safe_mode' Restriction-Bypass Vulnerability

Exploit for unknown platform in category remote exploits ====================================================================== PHP 'sessionsavepath' 'safemode' Restriction-Bypass Vulnerability ====================================================================== Vulnerable: PHP PHP 5.3.1 PHP PH...

Expat 2.0.1 UTF-8 Character XML Parsing Remote Denial of Service Vulnerability

No description provided by source. Bugtraq ID: 36097 Class: Input Validation Error Published: Jan 17 2009 12:00AM Updated: Nov 12 2009 08:06PM Credit: Peter Valchev Vulnerable: SuSE openSUSE 11.0 SuSE openSUSE 10.3 SuSE Linux 9 SuSE Linux 11 SuSE Linux 10.0 RedHat Fedora 11 RedHat Fedora 10 RedHa...

Expat 2.0.1 - UTF-8 Character XML Parsing Remote Denial of Service

Bugtraq ID: 36097 Class: Input Validation Error Published: Jan 17 2009 12:00AM Updated: Nov 12 2009 08:06PM Credit: Peter Valchev Vulnerable: SuSE openSUSE 11.0 SuSE openSUSE 10.3 SuSE Linux 9 SuSE Linux 11 SuSE Linux 10.0 RedHat Fedora 11 RedHat Fedora 10 RedHat Enterprise Linux WS 4 RedHat...

Expat 2.0.1 - UTF-8 Character XML Parsing Remote Denial of Service

Expat 2.0.1 - UTF-8 Character XML Parsing Remote Denial of Service Bugtraq ID: 36097 Class: Input Validation Error Published: Jan 17 2009 12:00AM Updated: Nov 12 2009 08:06PM Credit: Peter Valchev Vulnerable: SuSE openSUSE 11.0 SuSE openSUSE 10.3 SuSE Linux 9 SuSE Linux 11 SuSE Linux 10.0 RedHat...

LibTIFF 'LZWDecodeCompat()' Remote Buffer Underflow Vulnerability

No description provided by source. Bugtraq ID: 35451 Class: Boundary Condition Error Published: Jun 21 2009 12:00AM Updated: Nov 12 2009 06:46PM Credit: wololo Vulnerable: Ubuntu Ubuntu Linux 9.04 sparc Ubuntu Ubuntu Linux 9.04 powerpc Ubuntu Ubuntu Linux 9.04 lpia Ubuntu Ubuntu Linux 9.04 i386...

Mozilla Firefox和SeaMonkey JavaScript Chrome特权提升漏洞

Bugraq ID: 35373 CVE ID：CVE-2009-1841 CNCVE ID：CNCVE-20091841 Mozilla Firefox是一款开放源代码的WEB浏览器。SeaMonkey一款开放源代码的新闻组客户端。 Mozilla安全研究员mozbugra4报告存在安全漏洞，允许页面内容的脚本以提升特权运行。使用这个漏洞，攻击者可以导致chrome特权对象，如浏览器边栏或FeedWriter与WEB内容交互，使攻击者控制的代码以对象的chrome特权运行。 Ubuntu Ubuntu Linux 9.04 sparc Ubuntu Ubuntu Linux 9.04...

CUPS '_cupsImageReadTIFF()'整数溢出漏洞

BUGTRAQ ID: 34571 CVE ID：CVE-2009-0163 CNCVE ID：CNCVE-20090163 Common Unix Printing SystemCUPS是一款通用Unix打印系统，是Unix环境下的跨平台打印解决方案，基于Internet打印协议，提供大多数PostScript和raster打印机服务。 CUPS处理TIFF图像存在整数溢出，远程攻击者可以利用漏洞以应用程序权限执行任意指令。...

Ghostscript &#039;CCITTFax&#039; Decoding Filter - Denial of Service

Ghostscript is prone to a remote denial-of-service vulnerability because it fails to properly validate user-supplied input. Exploiting this issue allows remote attackers to crash the application and possibly to execute code, but this has not been confirmed. Vulnerable: Ubuntu Ubuntu Linux 8.10...

Ghostscript CCITTFax Decoding Filter - Denial of Service

Ghostscript CCITTFax Decoding Filter - Denial of Service Ghostscript is prone to a remote denial-of-service vulnerability because it fails to properly validate user-supplied input. Exploiting this issue allows remote attackers to crash the application and possibly to execute code, but this has no...

OpenSSL 'EVP_VerifyFinal'函数签名验证漏洞

BUGTRAQ ID: 33150 CVE ID：CVE-2008-5077 CNCVE ID：CNCVE-20085077 OpenSSL是一款开放源码的SSL实现，用来实现网络通信的高强度加密。 部分OpenSSL函数验证DSA和ECDSA密钥时不正确验证"EVPVerifyFinal"函数返回值，发送特殊构建的签名证书链给客户端，可绕过签名检查。 通过恶意服务器或中间人攻击，可使证书链中的畸形SSL/TLS签名绕过客户端软件检查，导致盲目信任并泄漏敏感信息。 成功利用此漏洞需要服务器使用包含DSA或者ECDSA密钥的证书。 Ubuntu Ubuntu Linux 8.10 spar...

Python 'Imageop'模块参数验证缓冲区溢出漏洞

BUGTRAQ ID: 31932 CNCAN ID：CNCAN-2008102806 Python是一款开放源代码的脚本编程语言。 Python 'Imageop'模块的不正确参数验证，远程攻击者可以利用漏洞进行缓冲区溢出而触发segfault错误。 目前没有详细漏洞细节提供，可能导致任意代码执行。 Python Software Foundation Python 2.5.2 Python Software Foundation Python 2.5.1 Python Software Foundation Python 2.4.5 Python Software Foundatio...

Apache Tomcat 'RemoteFilterValve'安全绕过漏洞

BUGTRAQ ID: 31698 CVE ID：CVE-2008-3271 CNCVE ID：CNCVE-20083271 Apache Tomcat是一款流行的开放源码的JSP应用服务器程序。 Apache Tomcat处理'RemoteFilterValve'扩展存在安全绕过问题，远程攻击者可以利用漏洞绕过访问限制，获得敏感信息。 在使用RemoteAddrValve允许部分地址访问引擎时： Valve className="org.apache.catalina.valves.RemoteAddrValve" allow="a.b.c.d"/...

Graphvizt图像解析远程栈缓冲区溢出漏洞

BUGTRAQ ID: 31648 CNCAN ID：CNCAN-2008100907 Graphviz是一款将简单语法描述的结构转化为图形的工具。 Graphviz图像解析引擎存在缓冲区溢出，远程攻击者可以利用漏洞以应用程序权限执行任意指令。 问题存在于如下代码中： parser.y Graphviz 2.20.2: 34: static Agrapht Gstack32; 35: static int GSP; 45: static void pushsubgAgrapht g 46: 47: G = GstackGSP++ = g; 48:...

Python 'move-faqwiz.sh'不安全临时文件建立漏洞

BUGTRAQ ID: 31184 CNCAN ID：CNCAN-2008091609 Python是一款开放源代码的脚本编程语言。 Python以不安全方式建立临时文件，本地攻击者可以利用漏洞对设备进行拒绝服务攻击。 "Tools/faqwiz/move-faqwiz.sh"使用$RANDOM建立临时文件，攻击者可以通过建立符号链接指向tmpXXXXX.tmpX由$RANDOM生成5位数，在运行Python通用FAQ知道删除工具时可导致覆盖或截断目标文件，造成拒绝服务攻击或可能造成特权提升。 RedHat Fedora 9 0 RedHat Fedora 8 0 RedHat...

GNU Emacs 'python.el'代码执行漏洞

BUGTRAQ ID: 31052 CNCAN ID：CNCAN-2008091008 Emacs是一款可扩展的实时显示编辑器。 GNU Emacs不正确处理Python脚本，本地攻击者可以利用漏洞以应用程序权限执行任意代码。 GNU Emacs命令run-python'启动交互的Python解析器，在Python启动后，Emacs自动发送： import emacs 用于导入Emacs分发的emacs.py脚本，这个脚本一般位于包含其他Emacs程序文件的写保护的安装目录中，定义各种函数帮助Python与Emacs通信处理。...

Python存在多个缓冲区溢出漏洞

BUGTRAQ ID: 30491 CVE ID：CVE-2008-2315 CVE-2008-2316 CVE-2008-3142 CVE-2008-3143 CVE-2008-3144 CNCVE ID：CNCVE-20082315 CNCVE-20082316 CNCVE-20083142 CNCVE-20083143 CNCVE-20083144 Python是一款开放源代码的脚本编程语言。 Python中存在多个整数溢出漏洞，远程攻击者可以利用漏洞对应用程序进行拒绝服务或者任意代码执行攻击。 1...