50 matches found
Debian Security Advisory DSA 448-1 (pwlib)
The remote host is missing an update to pwlib announced via advisory DSA 448-1. OpenVAS Vulnerability Test $Id: deb4481.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 448-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian: Security Advisory (DSA-448)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 6.06 LTS / 6.10 / 7.04 / 7.10 : pwlib vulnerability (USN-561-1)
Jose Miguel Esparza discovered that pwlib did not correctly handle large string lengths. A remote attacker could send specially crafted packets to applications linked against pwlib e.g. Ekiga causing them to crash, leading to a denial of service. Note that Tenable Network Security has extracted t...
USN-561-1: pwlib vulnerability
Jose Miguel Esparza discovered that pwlib did not correctly handle large string lengths. A remote attacker could send specially crafted packets to applications linked against pwlib e.g. Ekiga causing them to crash, leading to a denial of service...
DTSA-94-1 pwlib - remote denial of service
Bulletin has no description...
Mandrake Linux Security Advisory : pwlib (MDKSA-2007:206)
A memory management flaw was discovered in PWLib, that an attacker could use to crash an application linked with it, such as Ekiga. Updated packages have been patched to prevent these issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plug...
pwlib security update
CentOS Errata and Security Advisory CESA-2007:0932 Updated pwlib packages that fix a security issue are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PWLib is a library used to support...
RHEL 5 : pwlib (RHSA-2007:0932)
Updated pwlib packages that fix a security issue are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PWLib is a library used to support cross-platform applications. In Red Hat Enterprise Linux 5, th...
Moderate: Red Hat Security Advisory: pwlib security update
Updated pwlib packages that fix a security issue are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PWLib is a library used to support cross-platform applications. In Red Hat Enterprise Linux 5, th...
Code injection
pwlib, as used by Ekiga 2.0.5 and possibly other products, allows remote attackers to cause a denial of service application crash via a long argument to the PString::vsprintf function, related to a "memory management flaw". NOTE: this issue was originally reported as being in the...
CVE-2007-4897
pwlib, as used by Ekiga 2.0.5 and possibly other products, allows remote attackers to cause a denial of service application crash via a long argument to the PString::vsprintf function, related to a "memory management flaw". NOTE: this issue was originally reported as being in the...
CVE-2007-4897
pwlib, as used by Ekiga 2.0.5 and possibly other products, allows remote attackers to cause a denial of service application crash via a long argument to the PString::vsprintf function, related to a "memory management flaw". NOTE: this issue was originally reported as being in the...
CVE-2007-4897
PWLib contains a memory-management flaw that can cause a remote denial-of-service in Ekiga 2.0.5 and potentially other PWLib-linked apps by sending a long argument to PString::vsprintf. Public PoCs/exploits (e.g., Ekiga GetHostAddress DoS) exist, using a crafted SIP/INVITE payload over UDP to cra...
CVE-2007-4897
pwlib, as used by Ekiga 2.0.5 and possibly other products, allows remote attackers to cause a denial of service application crash via a long argument to the PString::vsprintf function, related to a "memory management flaw". NOTE: this issue was originally reported as being in the...
Debian DSA-448-1 : pwlib - several vulnerabilities
Multiple vulnerabilities were discovered in pwlib, a library used to aid in writing portable applications, whereby a remote attacker could cause a denial of service or potentially execute arbitrary code. This library is most notably used in several applications implementing the H.323...
GLSA-200404-11 : Multiple Vulnerabilities in pwlib
The remote host is affected by the vulnerability described in GLSA-200404-11 Multiple Vulnerabilities in pwlib Multiple vulnerabilities have been found in the implementation of protocol H.323 contained in pwlib. Most of the vulnerabilies are in the parsing of ASN.1 elements which would allow an...
Mandrake Linux Security Advisory : pwlib (MDKSA-2004:017)
The NISCC uncovered bugs in pwlib prior to version 1.6.0 via a test suite for the H.225 protocol. An attacker could trigger these bugs by sending carefully crafted messages to an application that uses pwlib, and the severity would vary based on the application, but likely would result in a Denial...
Fedora Core 1 : pwlib-1.5.0-4 (2004-078)
A test suite for the H.225 protocol part of the H.323 family provided by the NISCC uncovered bugs in PWLib prior to version 1.6.0. An attacker could trigger these bugs by sending carefully crafted messages to an application. The effects of such an attack can vary depending on the application, but...
RHEL 3 : pwlib (RHSA-2004:047)
Updated PWLib packages that contain fixes for security issues found during protocol testing by the NISCC are now available. PWLib is a cross-platform class library designed to support the OpenH323 project. OpenH323 provides an implementation of the ITU H.323 teleconferencing protocol, used by...
Multiple Vulnerabilities in pwlib
Background pwlib is a multi-platform library designed for OpenH323. Description Multiple vulnerabilities have been found in the implimentation of protocol H.323 contained in pwlib. Most of the vulnerabilies are in the parsing of ASN.1 elements which would allow an attacker to use a maliciously...