AMember 3.1.7 (XSS/SQL/HI) Multiple Remote Vulnerabilities

No description provided by source. AMember - Multiple Vulnerabilities Version Affected: 3.1.7 Apr-10-2009 newest Info: aMember is a flexible membership and subscription management PHP script. It has support for PayPal, BeanStream, 2Checkout, NoChex, VeriSign PayFlow, Authorize.Net, PaySystems,...

AMember 3.1.7 XSS / SQL Injection

AMember - Multiple Vulnerabilities Version Affected: 3.1.7 Apr-10-2009 newest Info: aMember is a flexible membership and subscription management PHP script. It has support for PayPal, BeanStream, 2Checkout, NoChex, VeriSign PayFlow, Authorize.Net, PaySystems, Probilling, Multicards, E-Gold and...

[InterN0T] AMember 3.1.7 - Multiple Vulnerabilities

AMember - Multiple Vulnerabilities Version Affected: 3.1.7 Apr-10-2009 newest Info: aMember is a flexible membership and subscription management PHP script. It has support for PayPal, BeanStream, 2Checkout, NoChex, VeriSign PayFlow, Authorize.Net, PaySystems, Probilling, Multicards, E-Gold and...

[SECURITY] Fedora 10 Update: wireshark-1.0.7-1.fc10

Wireshark is a network traffic analyzer for Unix-ish operating systems. This package lays base for libpcap, a packet capture and filtering library, contains command-line utilities, contains plugins and documentation for wireshark. A graphical user interface is packaged separately to GTK+ package...

Solaris 10 (sparc) : 139555-08 (deprecated)

SunOS 5.10: Kernel Patch. Date this patch was last updated by Sun : May/07/09 This plugin has been deprecated and either replaced with individual 139555 patch-revision plugins, or deemed non-security related. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2018/03/12...

[SECURITY] Fedora 10 Update: prelude-manager-0.9.14.2-2.fc10

Prelude Manager is the main program of the Prelude Hybrid IDS suite. It is a multithreaded server which handles connections from the Prelude sensors. It is able to register local or remote sensors, let the operator configure them remotely, receive alerts, and store alerts in a database or any...

DEBIAN-CVE-2009-1438

Integer overflow in the CSoundFile::ReadMed function src/loadmed.cpp in libmodplug before 0.8.6, as used in gstreamer-plugins, TTPlayer, and other products, allows context-dependent attackers to execute arbitrary code via a MED file with a crafted 1 song comment or 2 song name, which triggers a...

Integer overflow

Integer overflow in the CSoundFile::ReadMed function src/loadmed.cpp in libmodplug before 0.8.6, as used in gstreamer-plugins, TTPlayer, and other products, allows context-dependent attackers to execute arbitrary code via a MED file with a crafted 1 song comment or 2 song name, which triggers a...

CVE-2009-1438

Integer overflow in the CSoundFile::ReadMed function src/loadmed.cpp in libmodplug before 0.8.6, as used in gstreamer-plugins, TTPlayer, and other products, allows context-dependent attackers to execute arbitrary code via a MED file with a crafted 1 song comment or 2 song name, which triggers a...

CVE-2009-1438

Integer overflow in the CSoundFile::ReadMed function src/loadmed.cpp in libmodplug before 0.8.6, as used in gstreamer-plugins, TTPlayer, and other products, allows context-dependent attackers to execute arbitrary code via a MED file with a crafted 1 song comment or 2 song name, which triggers a...

CVE-2009-1438

Integer overflow in the CSoundFile::ReadMed function src/loadmed.cpp in libmodplug before 0.8.6, as used in gstreamer-plugins, TTPlayer, and other products, allows context-dependent attackers to execute arbitrary code via a MED file with a crafted 1 song comment or 2 song name, which triggers a...

CVE-2009-1438

Integer overflow in the CSoundFile::ReadMed function src/loadmed.cpp in libmodplug before 0.8.6, as used in gstreamer-plugins, TTPlayer, and other products, allows context-dependent attackers to execute arbitrary code via a MED file with a crafted 1 song comment or 2 song name, which triggers a...

Mandriva Linux Security Advisory : gstreamer0.10-plugins-base (MDVSA-2009:085)

Integer overflows in gstreamer0.10-plugins-base Base64 encoding and decoding functions related with glib2.0 issue CVE-2008-4316 may lead attackers to cause denial of service. Altough vector attacks are not known yet CVE-2009-0586. This update provide the fix for that security issue. %NASLMINLEVEL...

Fedora 10 : gstreamer-plugins-good-0.10.13-1.fc10 (2009-1213)

Mon Jan 26 2009 - Bastien Nocera - 0.10.13-1 - Update to 0.10.13 - Update libv4l patch - Wed Jan 14 2009 Warren Togami 0.10.11-4 - Bug 477877 Fix multilib conflict in -devel - Bug 478449 Fix ladspa on lib64 - Wed Jan 14 2009 Lennart Poettering 0.10.11-3 - Bug 470000 Fix thread/memleak due to...

MDVA-2008:170 : alsa-plugins

The version of alsa-plugins provided with Mandriva Linux 2009.0 fails when trying to record sound via alsa using pulseaudio. This updated package contains an upstream patch to fix this bug. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a...

Ubuntu 7.10 / 8.04 LTS / 8.10 : gst-plugins-good0.10 vulnerabilities (USN-736-1)

It was discovered that GStreamer Good Plugins did not correctly handle malformed Composition Time To Sample ctts atom data in Quicktime mov movie files. If a user were tricked into opening a crafted mov file, an attacker could execute arbitrary code with the privileges of the user invoking the...

MDVA-2008:181 : gstreamer0.10-plugins-ugly

A bug in the ASF demuxer in gstreamer0.10-plugins-ugly prevented video players like Totem from seeking in WMV files, causing an error message Internal data stream error. This updated package contains a patch fixing this problem. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as...

Mandriva Linux Security Advisory : gstreamer-plugins-good (MDVSA-2008:092)

A vulnerability in the Speex library was found where it did not properly validate input values read from the Speex files headers. An attacker could create a malicious Speex file that would crash an application or potentially allow the execution of arbitrary code with the privileges of the...

Mandriva Linux Security Advisory : xine-lib (MDVSA-2009:020)

Failure on Ogg files manipulation can lead remote attackers to cause a denial of service by using crafted files CVE-2008-3231. Failure on manipulation of either MNG or Real or MOD files can lead remote attackers to cause a denial of service by using crafted files CVE: CVE-2008-5233. Heap-based...

Mandriva Linux Security Advisory : gstreamer0.10-plugins-good (MDVSA-2009:035)

Security vulnerabilities have been discovered and corrected in gstreamer0.10-plugins-good, might allow remote attackers to execute arbitrary code via a malformed QuickTime media file CVE-2009-0386, CVE-2009-0387, CVE-2009-0397. The updated packages have been patched to prevent this. %NASLMINLEVEL...