310 matches found
Adobe Flash - Pointer Crash After Continuing Slow Script
Source: https://code.google.com/p/google-security-research/issues/detail?id=397&can=1&q=label%3AProduct-Flash%20modified-after%3A2015%2F8%2F17&sort=id Running the attached swf file in Google Chrome Linux x64 will eventually result in dialog offering to terminate the slow script. Not the Google...
Adobe Flash - Pointer Crash in Drawing and Bitmap Handling
Source: https://code.google.com/p/google-security-research/issues/detail?id=396&can=1&q=label%3AProduct-Flash%20modified-after%3A2015%2F8%2F17&sort=id A nasty looking crash is manifesting in various different ways under fuzzing, apparently related to drawing and bitmap handling. A trigger is...
Xen GNTTABOP_swap_grant_ref() Version Check Denial of Service Vulnerability
Xen is a virtualization technology for the Linux kernel that allows multiple operating systems to run simultaneously. A security vulnerability in Xen GNTTABOPswapgrantref allows local users to exploit the vulnerability by triggering a null pointer reference that crashes the target HOST, due to a...
OpenSSL no-ssl3 option null pointer reference vulnerability
OpenSSL is an open source SSL implementation used to implement strong encryption for network communications. A null pointer reference vulnerability exists in the OpenSSL no-ssl3 option, when OpenSSL is built with the no-ssl3 option, the SSL mode is set to NULL when SSL v3 ClientHello is received,...
UBUNTU-CVE-2014-3569
The ssl23getclienthello function in s23srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via an unexpected handshake, as demonstrated by...
barracudadrive <= 3.7.2 - Multiple Vulnerabilities
No description provided by source. Luigi Auriemma Application: BarracudaDrive Web Server http://barracudaserver.com/products/BarracudaDrive/ http://barracudaserver.com/products/HomeServer/ Versions: = 3.7.2 Platforms: Windows Bugs: A directory traversal B scripts source visualization C arbitrary...
DEBIAN-CVE-2014-3967
The HVMOPinjectmsi function in Xen 4.2.x, 4.3.x, and 4.4.x does not properly check the return value from the IRQ setup check, which allows local HVM guest administrators to cause a denial of service NULL pointer dereference and crash via unspecified vectors...
Fedora 16 : claws-mail-3.8.1-3.fc16 (2012-16772)
Fixes a NULL pointer crash. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Fedora 17 : claws-mail-3.8.1-3.fc17 (2012-16753)
Fixes a NULL pointer crash. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Scientific Linux Security Update : fetchmail on SL3.x, SL4.x, SL5.x i386/x86_64
CVE-2007-4565 Fetchmail NULL pointer dereference CVE-2008-2711 fetchmail: Crash in large log messages in verbose mode CVE-2009-2666 fetchmail: SSL null terminator bypass It was discovered that fetchmail is affected by the previously published 'null prefix attack', caused by incorrect handling of...
krb5 security update
1.8.2-3.4 - add upstream patches to fix standalone kpropd exiting if the per-client child process exits with an error, and hang or crash in the KDC when using the LDAP kdb backend CVE-2010-4022, CVE-2011-0281, CVE-2011-0282, 671101 1.8.2-3.3 - pull up crypto changes made between 1.8.2 and 1.8.3 t...
(libpurple): Multiple DoS (crash) flaws by processing of unsanitized Base64 decoder values
libpurple in Pidgin before 2.7.4 does not properly validate the return value of the purplebase64decode function, which allows remote authenticated users to cause a denial of service NULL pointer dereference and application crash via a crafted message, related to the plugins for MSN, MySpaceIM,...
Fedora 14 : krb5-1.8.2-6.fc14 (2010-15803)
This update incorporates the upstream patch to fix an uninitialized pointer crash in the KDC's authorization data handling routines CVE-2010-1322. It also pulls up a few backports and compilation flag changes from F15. Note that Tenable Network Security has extracted the preceding description blo...
PT-2010-1701 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.32.6 Description: A race condition in the tty fasync function allows local users to cause a denial of service, potentially resulting in a system crash due to a NULL pointer dereference. The issue is related ...
FreeBSD : firefox -- Dangling pointer crash regression from plugin parameter array fix (c2eac2b5-9a7d-11df-8e32-000f20797ede)
The Mozilla Project reports : MFSA 2010-48 Dangling pointer crash regression from plugin parameter array fix %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2018 Jacques...
krb5: null pointer dereference in GSS-API library leads to DoS (MITKRB5-SA-2010-005)
The kgacceptkrb5 function in krb5/acceptseccontext.c in the GSS-API library in MIT Kerberos 5 aka krb5 through 1.7.1 and 1.8 before 1.8.2, as used in kadmind and other applications, does not properly check for invalid GSS-API tokens, which allows remote authenticated users to cause a denial of...
NULL pointer crash in freeSSHd 1.20
Luigi Auriemma Application: freeSSHd http://www.freesshd.com Note: is possible that the problem affects also wodSSHServer anyway this has not been tested Versions: = 1.2.0 Platforms: Windows Bug: NULL pointer crash Exploitation: remote Date: 17 Feb 2008 Author: Luigi Auriemma e-mail:...
Multiple vulnerabilities in Ipswitch Instant Messaging 2.0.8.1
Luigi Auriemma Application: Ipswitch Instant Messaging http://www.ipswitch.com/products/instantmessaging Versions: = 2.0.8.1 Platforms: Windows Bugs: A pre-auth NULL pointer crash in decryption function B format string in logging C arbitrary empty files creation Exploitation: remote A versus both...
Multiple vulnerabilities in BarracudaDrive 3.7.2
Luigi Auriemma Application: BarracudaDrive Web Server http://barracudaserver.com/products/BarracudaDrive/ http://barracudaserver.com/products/HomeServer/ Versions: = 3.7.2 Platforms: Windows Bugs: A directory traversal B scripts source visualization C arbitrary files deleting by users D NULL...
BarracudaDrive <= 3.7.2 Multiple Remote Vulnerabilities
No description provided by source. Luigi Auriemma Application: BarracudaDrive Web Server http://barracudaserver.com/products/BarracudaDrive/ http://barracudaserver.com/products/HomeServer/ Versions: = 3.7.2 Platforms: Windows Bugs: A directory traversal B scripts source visualization C arbitrary...