Debian DSA-2321-1 : moin - XSS

A cross-site scripting vulnerability was discovered in the reStructuredText parser of Moin, a Python clone of WikiWiki. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-2321. The text itsel...

Fedora 15 : phpMyAdmin-3.4.4-1.fc15 (2011-11630)

Changes for 3.4.4.0 2011-08-24 : - parser SQL parser breaks AJAX requests if query has unclosed quotes - parser Invalid escape sequence in SQL parser - config $cfg'Export''asfile' set to false does not select as Text option - export Working SQL query exports error page - interface 'Create an inde...

CentOS Update for kdelibs CESA-2009:1127 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Wireshark Lucent/Ascend File Parser Denial of Service Vulnerability (Windows)

This host is installed with Wireshark and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: gbwiresharklucentascendfileparserdosvulnwin.nasl 7019 2017-08-29 11:51:27Z teissa $ Wireshark Lucent/Ascend File Parser Denial of Service Vulnerability Windows Authors: Shashi...

Wireshark Lucent/Ascend File Parser Denial of Service Vulnerability - Windows

Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...

AOL Desktop .rtx File Buffer Overflow

Added: 03/18/2011 BID: 46129 OSVDB: 70741 Background AOL Desktop is an internet suite that integrates a web browser, media player, and IM client. Problem A heap overflow vulnerability exists in the Rich Text file parser of AOL Desktop 9.x. In documents with HTML links, the parser does not properl...

Design/Logic Flaw

Multiple unspecified vulnerabilities in the parser implementation in Smarty before 3.0.0 RC3 have unknown impact and remote attack vectors...

CVE-2010-4724

CVE-2010-4724 concerns multiple unspecified vulnerabilities in the parser implementation of the Smarty template engine, affecting versions before 3.0.0 RC3. The available sources describe the issues as having unknown impact and remote attack vectors, with no concrete exploitation details or remed...

Ubuntu Update for apparmor update USN-1039-1

Ubuntu Update for Linux kernel vulnerabilities USN-1039-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN10391.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for apparmor update USN-1039-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

USN-1039-1: AppArmor update

It was discovered that if AppArmor was misconfigured, under certain circumstances the parser could generate policy using an unconfined fallback execute transition when one was not specified...

Microsoft Graphics Filters FlashPix Converter Heap Corruption (MS10-105; CVE-2010-3952)

A remote code execution vulnerability has been discovered in the way that Microsoft Office parses specially crafted FlashPix image files. FlashPix is a bitmapped computer graphics file format where the image is saved in more than one resolution. The vulnerability is due to an error in Microsoft...

CVE-2010-3704

The FoFiType1::parse function in fofi/FoFiType1.cc in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, kdegraphics, and possibly other products allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code v...

CVE-2010-3702

The Gfx::getPos function in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, CUPS, kdegraphics, and possibly other products allows context-dependent attackers to cause a denial of service crash via unknown vectors that trigger an uninitialized pointer...

Mozilla Foundation Security Advisory 2010-68

Mozilla Foundation Security Advisory 2010-68 Title: XSS in gopher parser when parsing hrefs Impact: High Announced: October 19, 2010 Reporter: Robert Swiecki Products: Firefox, SeaMonkey Fixed in: Firefox 3.6.11 Firefox 3.5.14 SeaMonkey 2.0.9 Description Google security researcher Robert Swiecki...

rpc.ttdbserverd x86 Proof Of Concept Exploit

Check Point Software Technologies - Vulnerability Discovery Team VDT Rodrigo Rubira Branco - RPC TTDB .rec parser Heap Overflow thrjmptable does not exist on Solaris 10 u8 See the SPARC version of this exploit to see how to specify other addresses to be overwritten use POSIX; use IO::Socket; use...

Ghostscript Parser Buffer Overflow Vulnerabilities - Windows

Ghostscript is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DEBIAN-CVE-2010-1869

Stack-based buffer overflow in the parser function in GhostScript 8.70 and 8.64 allows context-dependent attackers to execute arbitrary code via a crafted PostScript file...

GhostScript PostScript Parser Stack Overflow (CVE-2010-1869)

GhostScript is an interpreter for the PostScript language and the Portable Document Format PDF. A stack overflow vulnerability has been discovered in GhostScript. The vulnerability is within the parser function of GhostScript. A remote attacker may exploit this issue via a specially crafted...

Mozilla Products Denial Of Service Vulnerability (Windows)

The host is installed with Thunderbird/Seamonkey and is prone to Denial Of Service vulnerability. OpenVAS Vulnerability Test $Id: secpodmozillaprdtsdosvulnwinmar10.nasl 6444 2017-06-27 11:24:02Z santu $ Mozilla Products Denial Of Service Vulnerability Windows Authors: Antu Sanadi Copyright:...

Firefox integer underflow in FTP directory list parser

Multiple unspecified vulnerabilities in WebKit in Apple Safari before 4.0.4 on Windows allow remote FTP servers to execute arbitrary code, cause a denial of service application crash, or obtain sensitive information via a crafted directory listing in a reply...