3863 matches found
iDefense Security Advisory 11.03.08: Multiple Vendor CUPS SGI imagetops Heap Overflow Vulnerability
iDefense Security Advisory 10.09.08 http://labs.idefense.com/intelligence/vulnerabilities/ Oct 09, 2008 I. BACKGROUND The Common UNIX Printing System, more commonly referred to as CUPS, provides a standard printer interface for various Unix based operating systems. "imagetops" is a part of CUPS...
Printer Job Language (PJL) Detection
The remote service uses the PJL Printer Job Language protocol and answered to a HP PJL request. This is indicates the remote device is probably a printer running JetDirect. Through PJL, users can submit printing jobs, transfer files to or from the printers, change some settings, etc... This VT ha...
CUPS 1.3.7 - HP-GL2 Filter Remote Code Execution
CUPS 1.3.7 - HP-GL2 Filter Remote Code Execution source: https://www.securityfocus.com/bid/31688/info CUPS is prone to a remote code-execution vulnerability caused by an error in the 'HP-GL/2 filter. Attackers can exploit this issue to execute arbitrary code within the context of the affected...
CUPS 1.3.7 - 'HP-GL/2' Filter Remote Code Execution
source: https://www.securityfocus.com/bid/31688/info CUPS is prone to a remote code-execution vulnerability caused by an error in the 'HP-GL/2 filter. Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will likely cau...
Kyocera FTP Bounce
Kyocera FTP Server Bounce Attack Version: I've tested this vulnerability to MontaVista Linux 3.0, Professional Edition Linux/ppc 2.4.18mvl30-kmmfp embedded in Kyocera's printer FS-118MFP but I suppose that other Kyocera printers may be vulnerable Vulnerability: FTP Bounce Attack Risk: Critical...
xeroxphaser-dos.txt
!/usr/bin/perl carved-out by: crit3rion, just making th3 world a b3tt3r plac3! XeroxRemoteDoS.20080801.ver01 tanx to dr0pz0N3 for reminding me to close my $&! s0ck3t Make: Xerox Model: Phaser 8400 Firmware: 03/03/2004 What's the deal? Apparently, if you send an empty packet to a Xerox Phaser 8400...
Xerox Phaser 8400 - Remote Reboot (Denial of Service)
!/usr/bin/perl carved-out by: crit3rion, just making th3 world a b3tt3r plac3! XeroxRemoteDoS.20080801.ver01 tanx to dr0pz0N3 for reminding me to close my $&! s0ck3t Make: Xerox Model: Phaser 8400 Firmware: 03/03/2004 What's the deal? Apparently, if you send an empty packet to a Xerox Phaser 8400...
Xerox CentreWare Web < 4.6.46 Multiple Vulnerabilities (XRX08-008)
Xerox CentreWare Web, a web-based tool for IP printer management, is installed on the remote web server. According to its banner, the installed version of Xerox CentreWare Web reportedly contains three areas that are prone to SQL injection attacks, provided the attacker has valid credentials, and...
FreeType PFB integer overflow
Integer overflow in FreeType2 before 2.3.6 allows context-dependent attackers to execute arbitrary code via a crafted set of 16-bit length values within the Private dictionary table in a Printer Font Binary PFB file, which triggers a heap-based buffer overflow...
FreeType invalid free() flaw
FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via an invalid "number of axes" field in a Printer Font Binary PFB file, which triggers a free of arbitrary memory locations, leading to memory corruption...
Important: Red Hat Security Advisory: freetype security update
Updated freetype packages that fix various security issues are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Updated 25th June 2008 The original packages for Red Hat Enterprise Linux 3...
FreeType off-by-one flaws
Multiple off-by-one errors in FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via 1 a crafted table in a Printer Font Binary PFB file or 2 a crafted SHC instruction in a TrueType Font TTF file, which triggers a heap-based buffer overflow...
FreeType PFB integer overflow
Integer overflow in FreeType2 before 2.3.6 allows context-dependent attackers to execute arbitrary code via a crafted set of 16-bit length values within the Private dictionary table in a Printer Font Binary PFB file, which triggers a heap-based buffer overflow...
FreeType invalid free() flaw
FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via an invalid "number of axes" field in a Printer Font Binary PFB file, which triggers a free of arbitrary memory locations, leading to memory corruption...
DEBIAN-CVE-2008-1806
Integer overflow in FreeType2 before 2.3.6 allows context-dependent attackers to execute arbitrary code via a crafted set of 16-bit length values within the Private dictionary table in a Printer Font Binary PFB file, which triggers a heap-based buffer overflow...
CVE-2008-1808
Multiple off-by-one errors in FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via 1 a crafted table in a Printer Font Binary PFB file or 2 a crafted SHC instruction in a TrueType Font TTF file, which triggers a heap-based buffer overflow...
CVE-2008-1806
Integer overflow in FreeType2 before 2.3.6 allows context-dependent attackers to execute arbitrary code via a crafted set of 16-bit length values within the Private dictionary table in a Printer Font Binary PFB file, which triggers a heap-based buffer overflow...
CVE-2008-1807
FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via an invalid "number of axes" field in a Printer Font Binary PFB file, which triggers a free of arbitrary memory locations, leading to memory corruption...
Memory corruption
FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via an invalid "number of axes" field in a Printer Font Binary PFB file, which triggers a free of arbitrary memory locations, leading to memory corruption...
Heap overflow
Multiple off-by-one errors in FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via 1 a crafted table in a Printer Font Binary PFB file or 2 a crafted SHC instruction in a TrueType Font TTF file, which triggers a heap-based buffer overflow...