CVE-2007-2293

Multiple stack-based buffer overflows in the processsdp function in chansip.c of the SIP channel T.38 SDP parser in Asterisk before 1.4.3 allow remote attackers to execute arbitrary code via a long 1 T38FaxRateManagement or 2 T38FaxUdpEC SDP parameter in an SIP message, as demonstrated using SIP...

[Full-disclosure] ASA-2007-011: Multiple problems in SIP channel parser handling response codes

Asterisk Project Security Advisory - ASA-2007-011 +------------------------------------------------------------------------+ | Product | Asterisk | |--------------------+---------------------------------------------------| | Summary | Multiple problems in SIP channel parser handling | | | respons...

WMF CreateBrushIndirect vulnerability (DoS)

The following WMF exploit appeared on milw0rm today: http://www.milw0rm.com/exploits/3111 The vulnerability is a result of the WMF parser passing a value from the file as a pointer argument to the CreateBrushIndirect function. The function dereferences the pointer and dies with an access violatio...

phpCMS 1.1.7 - 'class.layout_PHPcms.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/21768/info phpCMS is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the underlying system; other attacks a...

CVE-2006-5100

PHP remote file inclusion vulnerability in parse/parser.php in WEB//NEWS aka webnews 1.4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the WNBASEDIR parameter...

DEBIAN-CVE-2006-4018

Heap-based buffer overflow in the pefromupx function in libclamav/upx.c in Clam AntiVirus ClamAV 0.81 through 0.88.3 allows remote attackers to execute arbitrary code via a crafted UPX packed file containing sections with large rsize values...

CVE-2006-2783

Mozilla Firefox and Thunderbird before 1.5.0.4 strip the Unicode Byte-order-Mark BOM from a UTF-8 page before the page is passed to the parser, which allows remote attackers to conduct cross-site scripting XSS attacks via a BOM sequence in the middle of a dangerous tag such as SCRIPT...

Cross site scripting

Mozilla Firefox and Thunderbird before 1.5.0.4 strip the Unicode Byte-order-Mark BOM from a UTF-8 page before the page is passed to the parser, which allows remote attackers to conduct cross-site scripting XSS attacks via a BOM sequence in the middle of a dangerous tag such as SCRIPT...

CVE-2006-2783

Mozilla Firefox and Thunderbird before 1.5.0.4 strip the Unicode Byte-order-Mark BOM from a UTF-8 page before the page is passed to the parser, which allows remote attackers to conduct cross-site scripting XSS attacks via a BOM sequence in the middle of a dangerous tag such as SCRIPT...

Ubuntu 5.04 / 5.10 : mysql-dfsg-4.1, mysql-dfsg vulnerabilities (USN-283-1)

Stefano Di Paola discovered an information leak in the login packet parser. By sending a specially crafted malformed login packet, a remote attacker could exploit this to read a random piece of memory, which could potentially reveal sensitive data. CVE-2006-1516 Stefano Di Paola also found a...

PHP iCalendar publish.ical.php Arbitrary File Upload

The remote host appears to be running PHP iCalendar, a web-based iCal file viewer / parser written in PHP. The installed version of PHP iCalendar supports iCal publishing but does not properly restrict the types of files uploaded and places them in a web-accessible directory. An unauthenticated...

Read beyond buffer while parsing XML — Mozilla

An upgrade in the XML parser introduced a bug that could read beyond the end of the buffer, often causing a crash. We don't know if this could be exploited to incorporate private data into the DOM of an XML document, but could be a privacy risk if so. Firefox 1.0, Thunderbird 1.0 and Mozilla Suit...

Subversion SVN Protocol Parser Remote Integer Overflow

A remote overflow exists in Subversion. svnserver fails to validate svn:// requests resulting in a heap overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity. OpenVAS Vulnerability Test $Id: subversion105.nasl 8023 2017-12-07...

SUSE-SA:2005:059: RealPlayer

The remote host is missing the patch for the advisory SUSE-SA:2005:059 RealPlayer. The following security issue in RealPlayer was fixed: - A format string bug in the RealPix .rp file format parser CVE-2005-2710. This bug allowed remote attackers to execute arbitrary code by supplying a specially...

[Full-disclosure] AOL AIM Instant Messenger Buddy Icon "ateimg32.dll" DoS

AOL AIM Instant Messenger Buddy Icon "ateimg32.dll" DoS Release Date: June 6, 2005 Date Reported: June 6, 2005 Severity: Medium? if you can exploit it, email me. ;- Vendor: AOL Systems Affected: AIM 5.9.3797 for Windows 98/ME/2K/XP 5.96 MB and all prior versions. Affected Platforms: Windows...

CVE-2005-0837

IceCast 2.20 allows remote attackers to bypass the XSL parser and obtain the source for XSL files via a request for a .xsl file with a trailing . dot...

CVE-2005-0837

IceCast 2.20 is affected: remote attackers can bypass the XSL parser and obtain the source of XSL files by requesting a .xsl file with a trailing dot. The provided documents identify the affected product and the exact bypass method, but do not include any remediation details or patch versions.

CVE-2022-40156

Removed by vendor...

CVE-2022-40153

Removed by vendor...

CVE-2026-45133: YAML Parser Stack Exhaustion via Unbounded Recursion in Nested Blocks, Sequences, and Mappings

More info at https://symfony.com/cve-2026-45133...