SuSE 10 Security Update : xorg-x11 (ZYPP Patch Number 7954)

This update of xorg-x11 fixes issues that could allow attackers using GLX opcodes to read access to arbitrary memory locations CVE-2010-4818. Additionally, a crash due to missing bounds checks in the the Glyph Render protocol have been fixed. CVE-2010-4819 Access to the X server by the attacker w...

ZDI-12-025 : EMC Networker indexd.exe Opcode 0x01 Parsing Remote Code Execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-025 : EMC Networker indexd.exe Opcode 0x01 Parsing Remote Code Execution http://www.zerodayinitiative.com/advisories/ZDI-12-025 February 8, 2012 - -- CVE ID: CVE-2012-0395 - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - -- Affected Vendors: EMC - -...

UBUNTU-CVE-2012-0045

The emsyscall function in arch/x86/kvm/emulate.c in the KVM implementation in the Linux kernel before 3.2.14 does not properly handle the 0f05 aka syscall opcode, which allows guest OS users to cause a denial of service guest OS crash via a crafted application, as demonstrated by an NASM file...

PT-2012-2263 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.2.14 Description: The issue allows guest OS users to cause a denial of service, resulting in a guest OS crash, by utilizing a crafted application. This is due to the em syscall function in arch/x86/kvm/emulate...

HP OpenView Storage Stack Buffer Overflow (CVE-2011-1865)

A remote code execution vulnerability has been reported in HP OpenView. The vulnerability is due to insufficient boundary checking while handling certain opcode requests. A remote attacker may exploit this vulnerability by sending a specially crafted opcode request to a target server. Successful...

WellinTech KingView HistoryServer.exe Opcode 3 Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Wellintek KingView. Authentication is not required to exploit this vulnerability. The specific flaw exists within the protocol parsing code inside nettransdll.dll. The parent service is called...

Sunway ForceControl SNMP NetDBServer Integer Signedness Buffer Overflow

A remote code execution vulnerability has been reported in Sunway ForceControl. The vulnerability is due to an error in the way the application handles length values supplied in certain Opcode requests. A remote attacker may exploit this vulnerability by sending a specially crafted request to the...

Iron Mountain Connected Backup Opcode 13 Processing Command Injection

Added: 12/12/2011 CVE: CVE-2011-2397 BID: 50884 OSVDB: 77495 Background Iron Mountain Connected Backup is a solution for automatic online backup and recovery for Microsoft Windows and Mac OS X. An agent is installed on each computer that is to be backed up. The agent listens by default on TCP por...

Iron Mountain Connected Backup Opcode 13 Processing Command Injection

Added: 12/12/2011 CVE: CVE-2011-2397 BID: 50884 OSVDB: 77495 Background Iron Mountain Connected Backup is a solution for automatic online backup and recovery for Microsoft Windows and Mac OS X. An agent is installed on each computer that is to be backed up. The agent listens by default on TCP por...

Design/Logic Flaw

The Agent service in Iron Mountain Connected Backup 8.4 allows remote attackers to execute arbitrary code via a crafted opcode 13 request that triggers use of the LaunchCompoundFileAnalyzer class to send request data to the System.getRunTime.exec method...

Ubuntu Update for php5 USN-1231-1

Ubuntu Update for Linux kernel vulnerabilities USN-1231-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12311.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for php5 USN-1231-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This...

Ubuntu 8.04 LTS / 10.04 LTS / 10.10 / 11.04 / 11.10 : php5 vulnerabilities (USN-1231-1)

Mateusz Kocielski, Marek Kroemeke and Filip Palian discovered that a stack-based buffer overflow existed in the socketconnect function's handling of long pathnames for AFUNIX sockets. A remote attacker might be able to exploit this to execute arbitrary code; however, the default compiler options...

USN-1231-1: PHP Vulnerabilities

Mateusz Kocielski, Marek Kroemeke and Filip Palian discovered that a stack-based buffer overflow existed in the socketconnect function's handling of long pathnames for AFUNIX sockets. A remote attacker might be able to exploit this to execute arbitrary code; however, the default compiler options...

ZDI-11-274: EMC Autostart ftAgent Opcode 0x140 Parsing Remote Code Execution Vulnerability

ZDI-11-274: EMC Autostart ftAgent Opcode 0x140 Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-274 August 23, 2011 -- CVE ID: CVE-2011-2735 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: EMC -- Affected Products: EMC AutoStart --...

EMC Autostart ftAgent Opcode 0x11 Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of EMC AutoStart. Authentication is not required to exploit this vulnerability. The specific flaw exists in the Agent Service ftAgent.exe. The Agent Service listens on TCP port 8045 for communications...

Apple QuickTime PICT Image PnSize Opcode Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Quicktim...

FactoryLink vrn.exe Opcode 9 Buffer Overflow

$Id: factorylinkvrn09.rb 12996 2011-06-21 18:02:35Z swtornio $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

7-Technologies IGSS 9 - Data Server/Collector Packet Handling (Metasploit)

$Id: igss9misc.rb 12779 2011-05-31 14:33:19Z swtornio $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

Stack overflow

Multiple stack-based buffer overflows in tftpserver.exe in HP Intelligent Management Center IMC 5.0 before E0101L02 allow remote attackers to execute arbitrary code via crafted packet content accompanying a 1 DATA or 2 ERROR opcode...

7-Technologies IGSS 9.00.00.11059 - Multiple Vulnerabilities

7-Technologies IGSS 9.00.00.11059 - Multiple Vulnerabilities Sources: http://aluigi.org/adv/igss1-adv.txt http://aluigi.org/adv/igss2-adv.txt http://aluigi.org/adv/igss3-adv.txt http://aluigi.org/adv/igss4-adv.txt http://aluigi.org/adv/igss5-adv.txt http://aluigi.org/adv/igss6-adv.txt...