CVE-2011-3341

Multiple off-by-one errors in ordercmd.cpp in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a crafted CMDINSERTORDER command...

CVE-2011-3341

OpenTTD vulnerability CVE-2011-3341 affects the order_cmd.cpp path. Multiple off-by-one errors in OpenTTD before 1.1.3 can be triggered remotely through a crafted CMD_INSERT_ORDER command, potentially causing a daemon crash or, in the worst case, remote code execution. Affected software: OpenTTD ...

CVE-2011-3341

Multiple off-by-one errors in ordercmd.cpp in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a crafted CMDINSERTORDER command...

CVE-2011-3341

Multiple off-by-one errors in ordercmd.cpp in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a crafted CMDINSERTORDER command...

kernel: xen: off-by-one shift in x86_64 __addr_ok()

Off-by-one error in the addrok macro in Xen 3.3 and earlier allows local 64 bit PV guest administrators to cause a denial of service host crash via unspecified hypercalls that ignore virtual-address bits...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

libmodplug: multiple vulnerabilities reported in <= 0.8.8.3

Off-by-one error in the CSoundFile::ReadAMS2 function in src/loadams.cpp in libmodplug before 0.8.8.4 allows remote attackers to cause a denial of service memory corruption and possibly execute arbitrary code via a crafted AMS file with a large number of instruments...

PT-2013-1400 · Xen +1 · Xen +1

Name of the Vulnerable Software and Affected Versions: Xen versions 3.3 and earlier Description: The issue is related to an off-by-one error in the addr ok macro, which can be exploited by local 64-bit PV guest administrators to cause a denial of service, resulting in a host crash. This can be...

rsyslog Long Tag Off-By-Two DoS

This module triggers an off-by-two overflow in the rsyslog daemon. This flaw is unlikely to yield code execution but is effective at shutting down a remote log daemon. This bug was introduced in version 4.6.0 and corrected in 4.6.8/5.8.5. Compiler differences may prevent this bug from causing any...

RHEL 6 : rsyslog (RHSA-2011:1247)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2011:1247 advisory. - rsyslog: parseLegacySyslogMsg off-by-two buffer overflow CVE-2011-3200 Note that Nessus has not tested for this issue but has instead relied only o...

Kernel.org Server Rooted and 448 users credentials compromised

Kernel.org Server Rooted and 448 users credentials compromised The main kernel.org page is currently carrying a notice that the site has suffered a security breach. "Earlier this month, a number of servers in the kernel.org infrastructure were compromised. We discovered this August 28th. While we...

WordPress Super CAPTCHA plugin &lt;= 2.2.4 SQL Injection Vulnerability

No description provided by source. Exploit Title: WordPress Super CAPTCHA plugin = 2.2.4 SQL Injection Vulnerability Date: 2011-08-26 Author: Miroslav Stampar miroslav.stamparatgmail.com @stamparm Software Link: http://downloads.wordpress.org/plugin/super-capcha.2.2.4.zip Version: 2.2.4 tested...

OpenTTD -- Denial of service via improperly validated commands

The OpenTTD Team reports: Multiple off-by-one errors in ordercmd.cpp in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a crafted CMDINSERTORDER command...

SuSE 11.1 Security Update : ClamAV (SAT Patch Number 4942)

New clamav packages fix an off-by-one vulnerability which could lead to a DoS condition. CVE-2011-2721 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The...

SuSE 10 Security Update : ClamAV (ZYPP Patch Number 7661)

New clamav packages fix an off-by-one vulnerability which could lead to a DoS condition. CVE-2011-2721 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc';...

SuSE9 Security Update : clamav (YOU Patch Number 12821)

New clamav 0.9.7 packages fix an off-by-one vulnerability which could lead to a DoS condition. CVE-2011-2721 It also brings other enhancements, support for signatures based on SHA1 and SHA256, better error detection, as well as speed and memory optimizations. The complete list of changes is...

libmodplug: Fixed multiple vulnerabilities reported in &lt;= 0.8.8.3 (important)

This update of libmodplug0 fixes the following issues: 1 An integer overflow error exists within the "CSoundFile::ReadWav" function src/loadwav.cpp when processing certain WAV files. This can be exploited to cause a heap-based buffer overflow by tricking a user into opening a specially crafted WA...

CVE-2011-2698

Off-by-one error in the elemcellidaux function in epan/dissectors/packet-ansia.c in the ANSI MAP dissector in Wireshark 1.4.x before 1.4.8 and 1.6.x before 1.6.1 allows remote attackers to cause a denial of service infinite loop via an invalid packet...

DEBIAN-CVE-2011-2698

Off-by-one error in the elemcellidaux function in epan/dissectors/packet-ansia.c in the ANSI MAP dissector in Wireshark 1.4.x before 1.4.8 and 1.6.x before 1.6.1 allows remote attackers to cause a denial of service infinite loop via an invalid packet...

CVE-2011-2698

Off-by-one error in the elemcellidaux function in epan/dissectors/packet-ansia.c in the ANSI MAP dissector in Wireshark 1.4.x before 1.4.8 and 1.6.x before 1.6.1 allows remote attackers to cause a denial of service infinite loop via an invalid packet...