Lucene search
K

47 matches found

OpenVAS
OpenVAS
added 2012/09/11 12:0 a.m.21 views

Slackware Advisory SSA:2008-111-01 xine-lib

The remote host is missing an update as announced via advisory SSA:2008-111-01. OpenVAS Vulnerability Test $Id: esoftslkssa200811101.nasl 6598 2017-07-07 09:36:44Z cfischer $ Description: Auto-generated from the corresponding slackware advisory Authors: Thomas Reinke Copyright: Copyright c 2012...

9.3CVSS1.3AI score0.06494EPSS
Exploits1
exploitpack
exploitpack
added 2011/09/26 12:0 a.m.21 views

GMER 1.0.15.15641 - MFT Overwrite

GMER 1.0.15.15641 - MFT Overwrite include include include include include / Program : GMER 1.0.15.15641 Homepage : http://www.gmer.net Discovery : 2011/08/01 Author Contacted : 2011/08/09 Status of vuln : 0day Found by : Heurs This Advisory : Heurs Contact : [email protected] //----- Application...

0.1AI score
Exploits0
0day.today
0day.today
added 2011/09/25 12:0 a.m.28 views

GMER 1.0.15.15641 MFT Overwrite

Exploit for windows platform in category dos / poc include include include include include / Program : GMER 1.0.15.15641 Homepage : http://www.gmer.net Discovery : 2011/08/01 Author Contacted : 2011/08/09 Status of vuln : 0day Found by : Heurs This Advisory : Heurs Contact : email protected //---...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/05/23 12:0 a.m.34 views

Debian DSA-1586-1 : xine-lib - multiple vulnerabilities

Multiple vulnerabilities have been discovered in xine-lib, a library which supplies most of the application functionality of the xine multimedia player. The Common Vulnerabilities and Exposures project identifies the following three problems : - CVE-2008-1482 Integer overflow vulnerabilities exis...

9.3CVSS8.2AI score0.15038EPSS
Exploits2References7
Prion
Prion
added 2008/04/25 7:5 p.m.21 views

Stack overflow

Stack-based buffer overflow in the demuxnsfsendheaders function in src/demuxers/demuxnsf.c in xine-lib allows remote attackers to have an unknown impact via a long copyright field in an NSF header in an NES Sound file, a different issue than CVE-2008-1878. NOTE: a third party claims that the...

7.5CVSS7.2AI score0.15038EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2008/04/25 7:5 p.m.43 views

CVE-2008-1964

Stack-based buffer overflow in the demuxnsfsendheaders function in src/demuxers/demuxnsf.c in xine-lib allows remote attackers to have an unknown impact via a long copyright field in an NSF header in an NES Sound file, a different issue than CVE-2008-1878. NOTE: a third party claims that the...

7.5CVSS6.1AI score0.0175EPSS
Exploits0References1
NVD
NVD
added 2008/04/25 7:5 p.m.24 views

CVE-2008-1964

Stack-based buffer overflow in the demuxnsfsendheaders function in src/demuxers/demuxnsf.c in xine-lib allows remote attackers to have an unknown impact via a long copyright field in an NSF header in an NES Sound file, a different issue than CVE-2008-1878. NOTE: a third party claims that the...

7.5CVSS6.9AI score0.0175EPSS
Exploits0References3
Cvelist
Cvelist
added 2008/04/25 5:0 p.m.30 views

CVE-2008-1964

Stack-based buffer overflow in the demuxnsfsendheaders function in src/demuxers/demuxnsf.c in xine-lib allows remote attackers to have an unknown impact via a long copyright field in an NSF header in an NES Sound file, a different issue than CVE-2008-1878. NOTE: a third party claims that the...

6.8AI score0.0175EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2008/04/25 12:0 a.m.22 views

Slackware 10.0 / 10.1 / 10.2 / 11.0 / 12.0 / current : xine-lib (SSA:2008-111-01)

New xine-lib packages are available for Slackware 10.0, 10.1, 10.2, 11.0, 12.0, and -current to fix security issues. An overflow was found in the Speex decoder that could lead to a crash or possible execution of arbitrary code. Xine-lib = 1.1.12 was also found to be vulnerable to a stack-based...

9.3CVSS7.8AI score0.06494EPSS
Exploits1References2
securityvulns
securityvulns
added 2008/04/24 12:0 a.m.38 views

xine-lib NES Sound Format Demuxer Buffer Overflow

Hi there Original advisory: http://milw0rm.com/exploits/5458 There's another stack-based buffer overflow in demuxnfs.c line 111: this-copyright = strdup&header0x4E; line 189: char copyright100; line 208: sprintfcopyright, "C s", this-copyright; Regards Laurent Gaffi...

1.3AI score
Exploits0
seebug.org
seebug.org
added 2008/04/17 12:0 a.m.13 views

xine-lib <= 1.1.12 NSF demuxer Stack Overflow Vulnerability PoC

No description provided by source. xine-lib = 1.1.12 is prone to a stack-based buffer overflow in the NES Sound Format demuxerdemuxnsf.c. - Code opennsffile: 109: this-title = strdup&header0x0E; demuxnsfsendchunk: 122: char title100; 162: sprintftitle, "%s, song %d/%d", this-title,...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2008/04/17 12:0 a.m.22 views

xinelib-overflow.txt

xine-lib title = strdup&header0x0E; demuxnsfsendchunk: 122: char title100; 162: sprintftitle, "%s, song %d/%d", this-title, this-currentsong, this-totalsongs; - Affected applications http://xinehq.de/index.php/releases - PoC perl -e 'print "\x4E\x45\x53\x4D\x1A\x01\x01\x01\x80\x80\x18\x8A\x03\x8A...

7.4AI score
Exploits0
0day.today
0day.today
added 2008/04/16 12:0 a.m.15 views

xine-lib <= 1.1.12 NSF demuxer Stack Overflow Vulnerability PoC

Exploit for linux platform in category dos / poc =============================================================== xine-lib title = strdup&header0x0E; demuxnsfsendchunk: 122: char title100; 162: sprintftitle, "%s, song %d/%d", this-title, this-currentsong, this-totalsongs; - Affected applications...

7AI score
Exploits0
exploitpack
exploitpack
added 2008/04/16 12:0 a.m.14 views

Xine-Lib 1.1.12 - NSF demuxer Stack Overflow (PoC)

Xine-Lib 1.1.12 - NSF demuxer Stack Overflow PoC xine-lib title = strdup&header0x0E; demuxnsfsendchunk: 122: char title100; 162: sprintftitle, "%s, song %d/%d", this-title, this-currentsong, this-totalsongs; - Affected applications http://xinehq.de/index.php/releases - PoC perl -e 'print...

0.9AI score
Exploits0
Exploit DB
Exploit DB
added 2008/04/16 12:0 a.m.35 views

Xine-Lib 1.1.12 - NSF demuxer Stack Overflow (PoC)

xine-lib title = strdup&header0x0E; demuxnsfsendchunk: 122: char title100; 162: sprintftitle, "%s, song %d/%d", this-title, this-currentsong, this-totalsongs; - Affected applications http://xinehq.de/index.php/releases - PoC perl -e 'print "\x4E\x45\x53\x4D\x1A\x01\x01\x01\x80\x80\x18\x8A\x03\x8A...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2006/12/12 12:0 a.m.38 views

NES Game和NES System远程文件包含漏洞

NES Game和NES System是一款基于PHP的WEB应用程序。 NES Game和NES System不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是由于多个脚本对用户提交的'phphtmllib'参数缺少过滤,提交恶意的远程服务器作为包含对象,可导致以WEB进程权限执行任意PHP代码。 NES Game and NES System NES Game and NES System c108122 http://sourceforge.net/projects/nesgame...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2006/08/22 5:0 p.m.18 views

CVE-2006-4287

Multiple PHP remote file inclusion vulnerabilities in NES Game and NES System c108122 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the 1 phphtmllib parameter to a phphtmllib/includes.php; tagutils/ scripts including b divtagutils.php, c formutils.php, d...

7.7AI score0.09979EPSS
Exploits1References17
EUVD
EUVD
added 2006/08/22 5:0 p.m.3 views

EUVD-2006-4275

Multiple PHP remote file inclusion vulnerabilities in NES Game and NES System c108122 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the 1 phphtmllib parameter to a phphtmllib/includes.php; tagutils/ scripts including b divtagutils.php, c formutils.php, d...

7.5CVSS7.7AI score0.09979EPSS
Exploits1References17
CVE
CVE
added 2006/08/22 5:0 p.m.43 views

CVE-2006-4287

CVE-2006-4287 identifies multiple PHP remote file inclusion vulnerabilities in the NES Game and NES System (c108122 and earlier). The flaw allows remote attackers to execute arbitrary PHP code by supplying a URL in the (1) phphtmllib parameter to phphtmllib/includes.php and in various widgets/scr...

7.5CVSS8AI score0.09979EPSS
Exploits1References17Affected Software2
securityvulns
securityvulns
added 2006/08/21 12:0 a.m.74 views

[SA21593] NES Game &amp; NES System &quot;phphtmllib&quot; File Inclusion

TITLE: NES Game & NES System "phphtmllib" File Inclusion SECUNIA ADVISORY ID: SA21593 VERIFY ADVISORY: http://secunia.com/advisories/21593/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: NES Game & NES System http://secunia.com/product/11630/ DESCRIPTION: Kacper has...

0.4AI score
Exploits0
Rows per page
Query Builder