4661 matches found
Mandrake Linux Security Advisory : freetype2 (MDKSA-2006:099-1)
Integer underflow in Freetype before 2.2 allows remote attackers to cause a denial of service crash via a font file with an odd number of blue values, which causes the underflow when decrementing by 2 in a context that assumes an even number of values. CVE-2006-0747 Multiple integer overflows in...
Microsoft RRAS InterfaceAdjustVLSPointers NULL Dereference
This module triggers a NULL dereference in svchost.exe on all current versions of Windows that run the RRAS service. This service is only accessible without authentication on Windows XP SP1 using the SRVSVC pipe. This module requires Metasploit: https://metasploit.com/download Current source:...
CVE-2006-2661
ftutil.c in Freetype before 2.2 allows remote attackers to cause a denial of service crash via a crafted font file that triggers a null dereference...
Design/Logic Flaw
ftutil.c in Freetype before 2.2 allows remote attackers to cause a denial of service crash via a crafted font file that triggers a null dereference...
DEBIAN-CVE-2006-2661
ftutil.c in Freetype before 2.2 allows remote attackers to cause a denial of service crash via a crafted font file that triggers a null dereference...
CVE-2006-2661
ftutil.c in Freetype before 2.2 allows remote attackers to cause a denial of service crash via a crafted font file that triggers a null dereference...
CVE-2006-2661
ftutil.c in Freetype before 2.2 allows remote attackers to cause a denial of service crash via a crafted font file that triggers a null dereference...
security flaw
iprouteinput in Linux kernel 2.6 before 2.6.16.8 allows local users to cause a denial of service panic via a request for a route for a multicast IP address, which triggers a null dereference...
Design/Logic Flaw
The parsecommand function in Genecys 0.2 and earlier allows remote attackers to cause a denial of service crash via a command with a missing ":" colon separator, which triggers a null dereference...
CVE-2006-2555
The parsecommand function in Genecys 0.2 and earlier allows remote attackers to cause a denial of service crash via a command with a missing ":" colon separator, which triggers a null dereference...
CVE-2006-2555
The CVE-2006-2555 issue affects Genecys 0.2 and earlier. The parse_command function can trigger a null dereference and remote denial of service when a command is sent without a ":" separator. The available sources describe the vulnerability and impact (crash) but do not provide exploitation code ...
CVE-2006-2538
IE Tab 1.0.9 plugin for Mozilla Firefox 1.5.0.3 allows remote user-assisted attackers to cause a denial of service application crash, possibly due to a null dereference, via certain Javascript, as demonstrated using a url parameter to the content/reloaded.html page in a chrome:// URI. Some...
Design/Logic Flaw
raydiumnetworknetcallexec function in network.c in Raydium SVN revision 312 and earlier allows remote attackers to cause a denial of service application crash via a packet of type 0xFF, which causes a null dereference...
CVE-2006-2410
The vulnerability CVE-2006-2410 affects Raydium software: raydium_network_netcall_exec in network.c for SVN revision 312 and earlier. A remote attacker can trigger a denial of service (application crash) by sending a packet of type 0xFF, which causes a null dereference. The connected documents co...
CVE-2006-2410
raydiumnetworknetcallexec function in network.c in Raydium SVN revision 312 and earlier allows remote attackers to cause a denial of service application crash via a packet of type 0xFF, which causes a null dereference...
Design/Logic Flaw
QuickTime Streaming Server in Apple Mac OS X 10.3.9 and 10.4.6 allows remote attackers to cause a denial of service crash and connection interruption via a QuickTime movie with a missing track, which triggers a null dereference...
CVE-2006-1455
QuickTime Streaming Server in Apple Mac OS X 10.3.9 and 10.4.6 allows remote attackers to cause a denial of service crash and connection interruption via a QuickTime movie with a missing track, which triggers a null dereference...
security flaw
Multiple unspecified vulnerabilities in Ethereal 0.8.x up to 0.10.14 allow remote attackers to cause a denial of service crash from null dereference via the 1 Sniffer capture or 2 SMB PIPE dissector...
security flaw
The Internet Key Exchange version 1 IKEv1 implementation isakmpagg.c in racoon in ipsec-tools before 0.6.3, when running in aggressive mode, allows remote attackers to cause a denial of service null dereference and crash via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for...
Design/Logic Flaw
Multiple unspecified vulnerabilities in Ethereal 0.9.x up to 0.10.14 allow remote attackers to cause a denial of service crash from null dereference via 1 an invalid display filter, or the 2 GSM SMS, 3 ASN.1-based, 4 DCERPC NT, 5 PER, 6 RPC, 7 DCERPC, and 8 ASN.1 dissectors...