1658 matches found
FreeBSD : Macromedia flash player -- swf file handling arbitrary code (aed343b4-5480-11da-b579-001125afbed7)
A Secunia Advisory reports : A vulnerability has been reported in Macromedia Flash Player, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to missing validation of the frame type identifier that is read from a SWF file. This value is used ...
Memory corruption
Unspecified vulnerability in Microsoft Excel 2000, 2002, and 2003, in Microsoft Office 2000 SP3 and other packages, allows user-assisted attackers to execute arbitrary code via a BIFF parsing format file containing malformed BOOLERR records that lead to memory corruption, probably involving inval...
CVE-2006-0028
CVE-2006-0028 is a Microsoft Excel remote code execution vulnerability tied to malformed BIFF parsing format files that can corrupt memory and allow arbitrary code execution. Affected products include Excel 2000, 2002, and 2003 (and Office 2000 SP3 and related packages). Exploitation requires a u...
security flaw
The sysctl functionality sysctl.c in Linux kernel before 2.6.14.1 allows local users to cause a denial of service kernel oops and possibly execute code by opening an interface file in /proc/sys/net/ipv4/conf/, waiting until the interface is unregistered, then obtaining and modifying function...
Specially crafted Java applets can crash Opera – Opera Security Advisories
Specially crafted Java applets can crash Opera – Opera Security Advisories OPCOM Team | November 23, 2005 Summary A specially crafted Java applet can cause Opera to crash. Severity: Not exploitable Problem description Java code using LiveConnect methods to remove a property of aJavaScript object...
Specially crafted Java applets can crash Opera
Java code using LiveConnect methods to remove a property of aJavaScript object may in some cases use null pointers that canmake Opera crash. This crash is not exploitable and such code israre on the web...
opera -- multiple vulnerabilities
Opera reports: It is possible to make a form input that looks like an image link. If the form input has a "title" attribute, the status bar will show the "title". A "title" which looks like a URL can mislead the user, since the title can say http://nice.familiar.com/, while the form action can be...
Macromedia Flash Player array index overflow
User controlled value is used as function pointers array index without boundary control...
CVE-2004-1748
NtRegmon (a Windows registry monitoring tool) is affected; versions before 6.12 are vulnerable. The root cause is invalid pointers to hook functions (e.g., ZwSetQueryValue) while NtRegmon is running, leading to a local denial of service (crash). The provided documents do not include exploitation ...
CVE-2004-1748
NtRegmon before 6.12 allows local users to cause a denial of service crash, while NtRegmon is running, via invalid pointers to hook functions such as ZwSetQueryValue...
Sysinternals Regmon 6.11 - Local Denial of Service
Sysinternals Regmon 6.11 - Local Denial of Service // source: https://www.securityfocus.com/bid/11042/info Regmon is reported prone to a local denial of service vulnerability. This issue presents itself because the application fails to handle exceptional conditions and references unvalidated...
Sysinternals Regmon 6.11 - Local Denial of Service
// source: https://www.securityfocus.com/bid/11042/info Regmon is reported prone to a local denial of service vulnerability. This issue presents itself because the application fails to handle exceptional conditions and references unvalidated pointers to kernel functions. Successful exploitation m...
[NGSEC-2004-6] IPD, local system denial of service.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Next Generation Security Technologies http://www.ngsec.com Security Advisory Title: IPD, local system denial of service. ID: NGSEC-2004-6 Application: IPD up to 1.4 http://www.pedestalsoftware.com/ Date: 14/Aug/2004 Status: Vendor contacted on...
Important: Red Hat Security Advisory: kernel security update
Updated Itanium kernel packages that fix a number of security issues are now available. The Linux kernel handles the basic functions of the operating system. This kernel updates several important drivers and fixes a number of bugs including potential security vulnerabilities. Paul Starzetz...
Fedora Core 1 : kernel-2.4.22-1.2199.nptl (2004-251)
Paul Starzetz discovered flaws in the Linux kernel when handling file offset pointers. These consist of invalid conversions of 64 to 32-bit file offset pointers and possible race conditions. A local unprivileged user could make use of these flaws to access large portions of kernel memory. The...
RHEL 3 : kernel (RHSA-2004:413)
Updated kernel packages that fix several security issues in Red Hat Enterprise Linux 3 are now available. The Linux kernel handles the basic functions of the operating system. Paul Starzetz discovered flaws in the Linux kernel when handling file offset pointers. These consist of invalid conversio...
Important: Red Hat Security Advisory: kernel security update
Updated kernel packages that fix potential information leaks and a incorrect driver permission for Red Hat Enterprise Linux 2.1 are now available. The Linux kernel handles the basic functions of the operating system. Paul Starzetz discovered flaws in the Linux kernel when handling file offset...
Real security information is hard to come by
Before you read this, I recommend you type "man memfrob" and "man strfry" on your nearest Linux system. I had no idea Linux libC had so many inside jokes. I think it says a lot about the character of the system. In other news, Real was finally told about my HelixServer remote, after a copy of...