47 matches found
Slackware Advisory SSA:2008-111-01 xine-lib
The remote host is missing an update as announced via advisory SSA:2008-111-01. OpenVAS Vulnerability Test $Id: esoftslkssa200811101.nasl 6598 2017-07-07 09:36:44Z cfischer $ Description: Auto-generated from the corresponding slackware advisory Authors: Thomas Reinke Copyright: Copyright c 2012...
GMER 1.0.15.15641 - MFT Overwrite
GMER 1.0.15.15641 - MFT Overwrite include include include include include / Program : GMER 1.0.15.15641 Homepage : http://www.gmer.net Discovery : 2011/08/01 Author Contacted : 2011/08/09 Status of vuln : 0day Found by : Heurs This Advisory : Heurs Contact : [email protected] //----- Application...
GMER 1.0.15.15641 MFT Overwrite
Exploit for windows platform in category dos / poc include include include include include / Program : GMER 1.0.15.15641 Homepage : http://www.gmer.net Discovery : 2011/08/01 Author Contacted : 2011/08/09 Status of vuln : 0day Found by : Heurs This Advisory : Heurs Contact : email protected //---...
Debian DSA-1586-1 : xine-lib - multiple vulnerabilities
Multiple vulnerabilities have been discovered in xine-lib, a library which supplies most of the application functionality of the xine multimedia player. The Common Vulnerabilities and Exposures project identifies the following three problems : - CVE-2008-1482 Integer overflow vulnerabilities exis...
Stack overflow
Stack-based buffer overflow in the demuxnsfsendheaders function in src/demuxers/demuxnsf.c in xine-lib allows remote attackers to have an unknown impact via a long copyright field in an NSF header in an NES Sound file, a different issue than CVE-2008-1878. NOTE: a third party claims that the...
CVE-2008-1964
Stack-based buffer overflow in the demuxnsfsendheaders function in src/demuxers/demuxnsf.c in xine-lib allows remote attackers to have an unknown impact via a long copyright field in an NSF header in an NES Sound file, a different issue than CVE-2008-1878. NOTE: a third party claims that the...
CVE-2008-1964
Stack-based buffer overflow in the demuxnsfsendheaders function in src/demuxers/demuxnsf.c in xine-lib allows remote attackers to have an unknown impact via a long copyright field in an NSF header in an NES Sound file, a different issue than CVE-2008-1878. NOTE: a third party claims that the...
CVE-2008-1964
Stack-based buffer overflow in the demuxnsfsendheaders function in src/demuxers/demuxnsf.c in xine-lib allows remote attackers to have an unknown impact via a long copyright field in an NSF header in an NES Sound file, a different issue than CVE-2008-1878. NOTE: a third party claims that the...
Slackware 10.0 / 10.1 / 10.2 / 11.0 / 12.0 / current : xine-lib (SSA:2008-111-01)
New xine-lib packages are available for Slackware 10.0, 10.1, 10.2, 11.0, 12.0, and -current to fix security issues. An overflow was found in the Speex decoder that could lead to a crash or possible execution of arbitrary code. Xine-lib = 1.1.12 was also found to be vulnerable to a stack-based...
xine-lib NES Sound Format Demuxer Buffer Overflow
Hi there Original advisory: http://milw0rm.com/exploits/5458 There's another stack-based buffer overflow in demuxnfs.c line 111: this-copyright = strdup&header0x4E; line 189: char copyright100; line 208: sprintfcopyright, "C s", this-copyright; Regards Laurent Gaffi...
xine-lib <= 1.1.12 NSF demuxer Stack Overflow Vulnerability PoC
No description provided by source. xine-lib = 1.1.12 is prone to a stack-based buffer overflow in the NES Sound Format demuxerdemuxnsf.c. - Code opennsffile: 109: this-title = strdup&header0x0E; demuxnsfsendchunk: 122: char title100; 162: sprintftitle, "%s, song %d/%d", this-title,...
xinelib-overflow.txt
xine-lib title = strdup&header0x0E; demuxnsfsendchunk: 122: char title100; 162: sprintftitle, "%s, song %d/%d", this-title, this-currentsong, this-totalsongs; - Affected applications http://xinehq.de/index.php/releases - PoC perl -e 'print "\x4E\x45\x53\x4D\x1A\x01\x01\x01\x80\x80\x18\x8A\x03\x8A...
xine-lib <= 1.1.12 NSF demuxer Stack Overflow Vulnerability PoC
Exploit for linux platform in category dos / poc =============================================================== xine-lib title = strdup&header0x0E; demuxnsfsendchunk: 122: char title100; 162: sprintftitle, "%s, song %d/%d", this-title, this-currentsong, this-totalsongs; - Affected applications...
Xine-Lib 1.1.12 - NSF demuxer Stack Overflow (PoC)
Xine-Lib 1.1.12 - NSF demuxer Stack Overflow PoC xine-lib title = strdup&header0x0E; demuxnsfsendchunk: 122: char title100; 162: sprintftitle, "%s, song %d/%d", this-title, this-currentsong, this-totalsongs; - Affected applications http://xinehq.de/index.php/releases - PoC perl -e 'print...
Xine-Lib 1.1.12 - NSF demuxer Stack Overflow (PoC)
xine-lib title = strdup&header0x0E; demuxnsfsendchunk: 122: char title100; 162: sprintftitle, "%s, song %d/%d", this-title, this-currentsong, this-totalsongs; - Affected applications http://xinehq.de/index.php/releases - PoC perl -e 'print "\x4E\x45\x53\x4D\x1A\x01\x01\x01\x80\x80\x18\x8A\x03\x8A...
NES Game和NES System远程文件包含漏洞
NES Game和NES System是一款基于PHP的WEB应用程序。 NES Game和NES System不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是由于多个脚本对用户提交的'phphtmllib'参数缺少过滤,提交恶意的远程服务器作为包含对象,可导致以WEB进程权限执行任意PHP代码。 NES Game and NES System NES Game and NES System c108122 http://sourceforge.net/projects/nesgame...
CVE-2006-4287
Multiple PHP remote file inclusion vulnerabilities in NES Game and NES System c108122 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the 1 phphtmllib parameter to a phphtmllib/includes.php; tagutils/ scripts including b divtagutils.php, c formutils.php, d...
EUVD-2006-4275
Multiple PHP remote file inclusion vulnerabilities in NES Game and NES System c108122 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the 1 phphtmllib parameter to a phphtmllib/includes.php; tagutils/ scripts including b divtagutils.php, c formutils.php, d...
CVE-2006-4287
CVE-2006-4287 identifies multiple PHP remote file inclusion vulnerabilities in the NES Game and NES System (c108122 and earlier). The flaw allows remote attackers to execute arbitrary PHP code by supplying a URL in the (1) phphtmllib parameter to phphtmllib/includes.php and in various widgets/scr...
[SA21593] NES Game & NES System "phphtmllib" File Inclusion
TITLE: NES Game & NES System "phphtmllib" File Inclusion SECUNIA ADVISORY ID: SA21593 VERIFY ADVISORY: http://secunia.com/advisories/21593/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: NES Game & NES System http://secunia.com/product/11630/ DESCRIPTION: Kacper has...