2241 matches found
Nokia多媒体播放器.m3u文件处理堆溢出漏洞
BUGTRAQ ID: 33586 诺基亚多媒体播放器是Nokia PC Suite中的媒体播放组件,可以查看MMS信息文件、音频和视频文件及常见图像格式保存的图像。 如果用户使用Nokia多媒体播放器打开了带有超长项的M3U播放列表文件的话,就可能触发堆溢出,导致执行任意代码。 Nokia PC Suite 6.86.9.3 Nokia Multimedia Player 1.1 厂商补丁: Nokia ----- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.nokia.com Nokia Multimedia...
MultiMedia Soft多个组件AdjMmsEng.dll PLS文件处理栈溢出漏洞
BUGTRAQ ID: 33589 MultiMedia Soft是一家意大利公司,为Windows开发各种多媒体软件组件和应用。 MultiMedia Soft为多个.NET音频组件提供了AdjMmsEng.dll,该库在处理.pls播放列表文件时存在栈溢出漏洞。如果用户受骗打开了特制的.pls文件就会触发这个溢出,导致执行任意代码。 MultiMedia Soft AdjMmsEng.dll 7.11.2.7 MultiMedia Soft AdjMmsEng.dll 7.11.1.0 厂商补丁: MultiMedia Soft ---------------...
Nokia Multimedia Player buffer overflow
Heap buffer overflow on .pls parsing...
Nokia Multimedia Player v1.1 .m3u Heap Overflow PoC exploit
Nokia Multimedia Player version 1.1 .m3u Heap Overflow PoC exploit by 0in aka zer0in from Dark-Coders Group! 0in.emailatgmail.com / 0inatdark-coders.pl http://www.Dark-Coders.pl Special thx to doctor for together analyse this shi and sun8hclf for tell me.. "to unicode." Greetings to:...
Nokia Multimedia Player 1.1 Heap Overflow
Nokia Multimedia Player version 1.1 .m3u Heap Overflow PoC exploit by 0in aka zer0in from Dark-Coders Group! 0in.emailatgmail.com / 0inatdark-coders.pl http://www.Dark-Coders.pl Special thx to doctor for together analyse this shi and sun8hclf for tell me.. "to unicode." Greetings to:...
Nokia MultiMedia Player 1.1 - .m3u Heap Buffer Overflow
Nokia MultiMedia Player 1.1 - .m3u Heap Buffer Overflow source: https://www.securityfocus.com/bid/33586/info Nokia Multimedia Player is prone to a heap-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. Successfully exploiting this iss...
Nokia MultiMedia Player 1.1 - '.m3u' Heap Buffer Overflow
source: https://www.securityfocus.com/bid/33586/info Nokia Multimedia Player is prone to a heap-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. Successfully exploiting this issue may allow remote attackers to execute arbitrary code ...
Update Protection against Nullsoft Winamp AIFF Parsing Heap Buffer Overflow
A vulnerability was reported in Nullsoft Winamp. Nullsoft Winamp is a multimedia player application that is capable of playing many formats of audio and video files, including CD tracks, MP3 music files or MPEG video files as well as numerous other formats. The vulnerability is due to improper...
Nokia Multimedia Player 1.1 .AVI Exploit
!/usr/local/bin/perl Application : Nokia Multimedia Player Version : v 1.1 Bug : Local .AVI File Null Dereference Pointer Exploit Exploit Method : Local Author : Null Area Security Zigma zigmatn @ gmail.com IRC : irc://irc.nullarea.org/nullarea Home : http://NullArea.NET Description : Opening a...
[SECURITY] Fedora 9 Update: amarok-1.4.10-2.fc9
Amarok is a multimedia player with: - fresh playlist concept, very fast to use, with drag and drop - plays all formats supported by the various engines - audio effects, like reverb and compressor - compatible with the .m3u and .pls formats for playlists - nice GUI, integrates into the KDE look, b...
[SECURITY] Fedora 10 Update: amarok-2.0.1.1-1.fc10
Amarok is a multimedia player with: - fresh playlist concept, very fast to use, with drag and drop - plays all formats supported by the various engines - audio effects, like reverb and compressor - compatible with the .m3u and .pls formats for playlists - nice GUI, integrates into the KDE look, b...
[SECURITY] Fedora 9 Update: xine-lib-1.1.16-1.fc9.1
This package contains the Xine library. Xine is a free multimedia player. It can play back various media. It also decodes multimedia files from local disk drives, and displays multimedia streamed over the Internet. It interprets many of the most common multimedia formats available - and some of t...
[SECURITY] Fedora 10 Update: xine-lib-1.1.16-1.fc10
This package contains the Xine library. Xine is a free multimedia player. It can play back various media. It also decodes multimedia files from local disk drives, and displays multimedia streamed over the Internet. It interprets many of the most common multimedia formats available - and some of t...
CVE-2008-5872
Multiple unspecified vulnerabilities in the UNIStim File Transfer Protocol UFTP processing in IP Client Manager IPCM in Nortel Multimedia Communication Server MSC 5100 3.0.13 allow remote attackers to cause a denial of service device outage via a UFTP message that has a negative block size or oth...
CVE-2008-5872
Multiple unspecified vulnerabilities in the UNIStim File Transfer Protocol UFTP processing in IP Client Manager IPCM in Nortel Multimedia Communication Server MSC 5100 3.0.13 allow remote attackers to cause a denial of service device outage via a UFTP message that has a negative block size or oth...
[SECURITY] Fedora 10 Update: blender-2.48a-4.fc10
Blender is the essential software solution you need for 3D, from modeling, animation, rendering and post-production to interactive creation and playba ck. Professionals and novices can easily and inexpensively publish stand-alone, secure, multi-platform content to the web, CD-ROMs, and other medi...
Nortel Networks多媒体通讯服务器UFTP消息拒绝服务漏洞
BUGTRAQ ID: 31633 Nortel通信服务器是一种基于服务器的全能IP PBX,具有融合网络、高级应用和多种电话功能的优势。 Nortel通信服务器使用UNIStim文件传输协议(UFTP)传输消息,该消息没有正确地处理UFTP消息,如果远程攻击者在消息中包含了特制的Connection Details字段值的话,就可能导致拒绝服务的情况。 Nortel Networks Multimedia Communications Server 5100 3.0.13 Nortel Networks ---------------...
Nortel MCS 5100 UFTP多个拒绝服务漏洞
BUGTRAQ ID: 31633 CNCAN ID:CNCAN-2008100911 Nortel MCS 5100是一款多媒体通信服务器。 Nortel MCS 5100使用UNIStim文件传送协议UFTP,UFTP可在可靠的UDP上通过UNIStim控制通道来传送。处理UFTP消息存在缺陷,控制多个连接细节字段Connection Details fields的值可导致多个拒绝服务攻击。 Nortel Networks MCS 5100 3.0.13 Nortel Networks MCS 5100 3.0 MCS 5100 3.5.9已经修正此漏洞:...
mplayer -- multiple integer overflows
The oCERT team reports: The MPlayer multimedia player suffers from a vulnerability which could result in arbitrary code execution and at the least, in unexpected process termination. Three integer underflows located in the Real demuxer code can be used to exploit a heap overflow, a specific video...
[SECURITY] Fedora 9 Update: xine-lib-1.1.15-1.fc9
This package contains the Xine library. Xine is a free multimedia player. It can play back various media. It also decodes multimedia files from local disk drives, and displays multimedia streamed over the Internet. It interprets many of the most common multimedia formats available - and some of t...