Debian Security Advisory DSA 1859-1 (libxml2)

The remote host is missing an update to libxml2 announced via advisory DSA 1859-1. OpenVAS Vulnerability Test $Id: deb18591.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1859-1 libxml2 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

Microsoft Excel multiple security vulnerabilities

Multiple buffer overflows, memory and pointers corruptions...

CVE-2009-1124

The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 does not properly validate user-mode pointers in unspecified error conditions, which allows local users to gain privileges via a crafted application, aka "Windows Kernel Pointe...

Input validation

The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 does not properly validate user-mode pointers in unspecified error conditions, which allows local users to gain privileges via a crafted application, aka "Windows Kernel Pointe...

Session fixation

The pciregisteriommuregion function in arch/sparc/kernel/pcicommon.c in the Linux kernel before 2.6.29 on the sparc64 platform allows local users to cause a denial of service system crash by reading the /proc/iomem file, related to uninitialized pointers and the requestresource function...

CVE-2009-1914

The pciregisteriommuregion function in arch/sparc/kernel/pcicommon.c in the Linux kernel before 2.6.29 on the sparc64 platform allows local users to cause a denial of service system crash by reading the /proc/iomem file, related to uninitialized pointers and the requestresource function...

CVE-2009-1914

The pciregisteriommuregion function in arch/sparc/kernel/pcicommon.c in the Linux kernel before 2.6.29 on the sparc64 platform allows local users to cause a denial of service system crash by reading the /proc/iomem file, related to uninitialized pointers and the requestresource function...

PT-2009-2783 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: The issue arises from the improper handling of invalid pointers by the Windows kernel, allowing local users to gain privileges. This could enable an attacker to run arbitrary...

libpng fails to properly initialize element pointers

Overview Libpng contains a vulnerability in the way element pointers are handled. Description A vulnerability in the way libpng handles element pointers may result in uninitialized element pointers. This vulnerability is due to an off-by-one error introduced in multiple functions in libpng-0.89c...

CVE-2009-0219

The PDF distiller in the Attachment Service in Research in Motion RIM BlackBerry Enterprise Server BES 4.1.3 through 4.1.6, BlackBerry Professional Software 4.1.4, and BlackBerry Unite! before 1.0.3 bundle 28 performs delete operations on uninitialized pointers, which allows user-assisted remote...

CVE-2009-0219

The PDF distiller in the Attachment Service in Research in Motion RIM BlackBerry Enterprise Server BES 4.1.3 through 4.1.6, BlackBerry Professional Software 4.1.4, and BlackBerry Unite! before 1.0.3 bundle 28 performs delete operations on uninitialized pointers, which allows user-assisted remote...

FreeBSD Security Advisory (FreeBSD-SA-08:13.protosw.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-08:13.protosw.asc ADV FreeBSD-SA-08:13.protosw.asc OpenVAS Vulnerability Test $ Description: Auto generated from ADV FreeBSD-SA-08:13.protosw.asc Authors: Thomas Reinke Copyright: Copyright c 200...

FreeBSD Security Advisory (FreeBSD-SA-08:13.protosw.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-08:13.protosw.asc SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Sql injection

Multiple unspecified vulnerabilities in FreeBSD 6 before 6.4-STABLE, 6.3 before 6.3-RELEASE-p7, 6.4 before 6.4-RELEASE-p1, 7.0 before 7.0-RELEASE-p7, 7.1 before 7.1-RC2, and 7 before 7.1-PRERELEASE allow local users to gain privileges via unknown attack vectors related to function pointers that a...

FreeBSD -- netgraph / bluetooth privilege escalation

Problem Description: Some function pointers for netgraph and bluetooth sockets are not properly initialized. Impact: A local user can cause the FreeBSD kernel to execute arbitrary code. This could be used by an attacker directly; or it could be used to gain root privilege or to escape from a jail...

Opera 9.62 - file: Local Heap Overflow

Opera 9.62 - file: Local Heap Overflow uh? // ksOSe 11/15/2008 // tested on Windows XP SP3, opera 9.62 international version // vulnerability found by send9 // there are many ways to achieve code execution, tons of function pointers to overwrite. // maybe there's one more reliable... var i=0; //...

DEBIAN-CVE-2008-4868

Unspecified vulnerability in the avcodecclose function in libavcodec/utils.c in FFmpeg 0.4.9 before r14787, as used by MPlayer, has unknown impact and attack vectors, related to a free "on random pointers."...

CVE-2008-4868

Unspecified vulnerability in the avcodecclose function in libavcodec/utils.c in FFmpeg 0.4.9 before r14787, as used by MPlayer, has unknown impact and attack vectors, related to a free "on random pointers."...

CVE-2008-4868

Unspecified vulnerability in the avcodecclose function in libavcodec/utils.c in FFmpeg 0.4.9 before r14787, as used by MPlayer, has unknown impact and attack vectors, related to a free "on random pointers."...

PowerTCP FTP Module - Multiple Techniques (SEH HeapSpray)

!-- PowerTCP FTP module Multiple Technique Exploit SEH Overwrite + HeapSpray bug originally found by : Intel http://www.milw0rm.com/exploits/6793 I use Intel's exploit , but IE change unASCII bytes and it doesn't work! my system is XP SP2 IE7 . then I wrote my own expl with HeapSpray technique ,...