CVE-2011-2721

Off-by-one error in the clihmscan function in matcher-hash.c in libclamav in ClamAV before 0.97.2 allows remote attackers to cause a denial of service daemon crash via an e-mail message that is not properly handled during certain hash calculations...

SOL12985 - BIND vulnerability CVE-2011-1910

Off-by-one error in named in ISC BIND 9.x before 9.7.3-P1, 9.8.x before 9.8.0-P2, 9.4-ESV before 9.4-ESV-R4-P1, and 9.6-ESV before 9.6-ESV-R4-P1 allows remote DNS servers to cause a denial of service assertion failure and daemon exit via a negative response containing large RRSIG RRsets...

CVE-2011-0216

Off-by-one error in libxml in Apple Safari before 5.0.6 allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow and application crash via a crafted web site...

DEBIAN-CVE-2011-0216

Off-by-one error in libxml in Apple Safari before 5.0.6 allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow and application crash via a crafted web site...

DSA-2281-1 opie - several

Bulletin has no description...

CVE-2011-2501

The CVE-2011-2501 issue in libpng is an off-by-one/ out-of-bounds read vulnerability in png_format_buffer (pngerror.c). A crafted PNG image can trigger a denial of service (application crash) by exploiting the error-message copy path. Affected branches include libpng 1.0.x before 1.0.55, 1.2.x be...

Shibboleth XML Security Signature Key Parsing Denial of Service Vulnerability (Windows)

This host is installed with Shibboleth and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: gbshibbolethxmldosvulnwin.nasl 7015 2017-08-28 11:51:24Z teissa $ Shibboleth XML Security Signature Key Parsing Denial of Service Vulnerability Windows Authors: Sooraj KS...

DEBIAN-CVE-2011-2516

Off-by-one error in the XML signature feature in Apache XML Security for C++ 1.6.0, as used in Shibboleth before 2.4.3 and possibly other products, allows remote attackers to cause a denial of service crash via a signature using a large RSA key, which triggers a buffer overflow...

UBUNTU-CVE-2011-2516

Off-by-one error in the XML signature feature in Apache XML Security for C++ 1.6.0, as used in Shibboleth before 2.4.3 and possibly other products, allows remote attackers to cause a denial of service crash via a signature using a large RSA key, which triggers a buffer overflow...

CVE-2011-2516

Off-by-one error in the XML signature feature in Apache XML Security for C++ 1.6.0, as used in Shibboleth before 2.4.3 and possibly other products, allows remote attackers to cause a denial of service crash via a signature using a large RSA key, which triggers a buffer overflow...

KLA10325 DoS vulnerability in Shibboleth

An off by one error was found in Shibboleth. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed RSA key. Original advisories - Related products Shibboleth CVE list CVE-2011-2516 warning Solution Updat...

Off-by-one in Sybase Advantage Server 10.0.0.3

Luigi Auriemma Application: Sybase Advantage Server http://www.sybase.com/products/databasemanagement/advantagedatabaseserver Versions: = 10.0.0.3 Platforms: Windows, NetWare, Linux Bug: off-by-one Exploitation: remote, versus server Date: 27 Jun 2011 found 29 Oct 2010 Author: Luigi Auriemma...

Sybase Advantage Server 10.0.0.3 - ADS Process Off-by-One Buffer Overflow

Sybase Advantage Server 10.0.0.3 - ADS Process Off-by-One Buffer Overflow source: https://www.securityfocus.com/bid/48464/info Sybase Advantage Server is prone to an off-by-one buffer-overflow vulnerability. Attackers may exploit this issue to execute arbitrary code within the context of the...

Ubuntu: Security Advisory (USN-1152-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

libvirt security vulnerabilities

DoS, off-by-one...

USN-1152-1: libvirt vulnerabilities

It was discovered that libvirt did not use thread-safe error reporting. A remote attacker could exploit this to cause a denial of service via application crash. CVE-2011-1486 Eric Blake discovered that libvirt had an off-by-one error which could be used to reopen disk probing and bypass the fix f...

Internet Explorer vulnerable to cross-site scripting

Overview Internet Explorer contains a cross-site scripting vulnerability. Internet Explorer contains a cross-site scripting vulnerability due to the processing of malformed file names. Keigo Yamazaki of LAC Co., Ltd. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer und...

CVE-2011-1910

Off-by-one error in named in ISC BIND 9.x before 9.7.3-P1, 9.8.x before 9.8.0-P2, 9.4-ESV before 9.4-ESV-R4-P1, and 9.6-ESV before 9.6-ESV-R4-P1 allows remote DNS servers to cause a denial of service assertion failure and daemon exit via a negative response containing large RRSIG RRsets...

CVE-2011-1910

Off-by-one error in named in ISC BIND 9.x before 9.7.3-P1, 9.8.x before 9.8.0-P2, 9.4-ESV before 9.4-ESV-R4-P1, and 9.6-ESV before 9.6-ESV-R4-P1 allows remote DNS servers to cause a denial of service assertion failure and daemon exit via a negative response containing large RRSIG RRsets...

CVE-2011-1910

The CVE-2011-1910 issue is an off-by-one vulnerability in ISC BIND named (affecting 9.x up to 9.7.3-P1, 9.8.x up to 9.8.0-P2, 9.4-ESV up to 9.4-ESV-R4-P1, and 9.6-ESV up to 9.6-ESV-R4-P1). A remote DNS server can cause a denial of service (assertion failure and daemon exit) by sending a negative ...