CVE-2007-2893

Heap-based buffer overflow in the bxne2kc::rxframe function in iodev/ne2k.cc in the emulated NE2000 device in Bochs 2.3 allows local users of the guest operating system to write to arbitrary memory locations and gain privileges on the host operating system via vectors that cause TXCNT register...

CVE-2007-1378

The ovrimoslongreadlen function in the Ovrimos extension for PHP before 4.4.5 allows context-dependent attackers to write to arbitrary memory locations via the resultid and length arguments...

Debian DSA-1202-1 : screen - programming error

'cstone' and Rich Felker discovered that specially crafted UTF-8 sequences may lead an out of bands memory write when displayed inside the screen terminal multiplexer, allowing denial of service and potentially the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

[SECURITY] [DSA 1202-1] New screen packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1202-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff October 31st, 2006 http://www.debian.org/security/faq -...

DSA-1202-1 screen - programming error

Bulletin has no description...

GLSA-200511-03 : giflib: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200511-03 giflib: Multiple vulnerabilities Chris Evans and Daniel Eisenbud independently discovered two out-of-bounds memory write operations and a NULL pointer dereference in giflib. Impact : An attacker could craft a malicious G...

giflib: Multiple vulnerabilities

Background giflib is a library for reading and writing GIF images. Description Chris Evans and Daniel Eisenbud independently discovered two out-of-bounds memory write operations and a NULL pointer dereference in giflib. Impact An attacker could craft a malicious GIF image and entice users to load...

security flaw

Format string vulnerability in the protoitemsettext function in Ethereal 0.9.4 through 0.10.11, as used in multiple dissectors, allows remote attackers to write to arbitrary memory locations and gain privileges via a crafted AFP packet...

Multiple applications fd_set structure bitmap array index overflow

Absence of control for large number of open file descriptors or sockets FDSETSIZE allow to write arbitrary memory...

wins_ms04_045.pm

This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artistic. The latest version of the...

PHP 4.x5.0 Shared Memory Module - Offset Memory Corruption

PHP 4.x5.0 Shared Memory Module - Offset Memory Corruption source: https://www.securityfocus.com/bid/12045/info PHP shared memory module shmop is reported prone to an integer handling vulnerability. The issue exists in the PHPFUNCTIONshmopwrite function and is as a result of a lack of sufficient...

PureFTPd DoS

There is an endless loop on specific condition with 0 written to memory...

Man 1.5.1 - Catalog File Format String

Man 1.5.1 - Catalog File Format String // source: https://www.securityfocus.com/bid/7812/info A vulnerability has been reported in the man utility. The problem is said to occur due to a format string bug when handling a catalog file. As a result, an attacker may be capable of writing arbitrary...

user-mode-linux problems

Program: User-mode-linux Version tested: patch-2.4.17-8 I assume all previous versions would be Not vulnerable: patch-2.4.17-9 Haven't tested any different techniques. Now for something completely different. Anything in 's is my comments to my article... deal with it. Description: ------------...

FreeBSD-SA-97:04.procfs

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-97:04 Security Advisory FreeBSD, Inc. Topic: security compromise via procfs Category: core Module: procfs Announced: 1997-08-19 Affects: FreeBSD 2.1., FreeBSD 2.2.,...