Buffer overflow

Multiple buffer overflows in the RLE decoder in the rgbimg module in Python 2.5 allow remote attackers to have an unspecified impact via an image file containing crafted data that triggers improper processing within the 1 longimagedata or 2 expandrow function...

CVE-2010-1449

Integer overflow in rgbimgmodule.c in the rgbimg module in Python 2.5 allows remote attackers to have an unspecified impact via a large image that triggers a buffer overflow. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-3143.12...

Integer overflow

Integer overflow in rgbimgmodule.c in the rgbimg module in Python 2.5 allows remote attackers to have an unspecified impact via a large image that triggers a buffer overflow. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-3143.12...

CVE-2010-1450

Multiple buffer overflows in the RLE decoder in the rgbimg module in Python 2.5 allow remote attackers to have an unspecified impact via an image file containing crafted data that triggers improper processing within the 1 longimagedata or 2 expandrow function...

PSF-2010-1 rgbimg and imageop overflows

Buffer underflow in the rgbimg module in Python 2.5 allows remote attackers to cause a denial of service application crash via a large ZSIZE value in a black-and-white aka B/W RGB image that triggers an invalid pointer dereference...

CVE-2010-1450

CVE-2010-1450 affects the rgbimg module in Python (version 2.5) via multiple buffer overflows in the RLE decoder. A crafted SGI image can trigger improper processing in longimagedata or expandrow, potentially crashing the application or (in theory) allowing code execution. Remediation is provided...

CVE-2009-4134

CVE-2009-4134: In Python 2.5, the rgbimg module has a buffer underflow that can cause a denial of service via a crafted B/W SGI-like RGB image with a large ZSIZE, triggering an invalid pointer dereference. The vulnerability is referenced in multiple advisories and vendor bulletins (e.g., MiracleL...

CVE-2010-1449

Integer overflow in rgbimgmodule.c in the rgbimg module in Python 2.5 allows remote attackers to have an unspecified impact via a large image that triggers a buffer overflow. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-3143.12...

CVE-2009-4134

Buffer underflow in the rgbimg module in Python 2.5 allows remote attackers to cause a denial of service application crash via a large ZSIZE value in a black-and-white aka B/W RGB image that triggers an invalid pointer dereference...

CVE-2010-1449

CVE-2010-1449 is confirmed in connected documents: it targets the Python rgbimg module (rgbimgmodule.c) in Python 2.5, caused by an integer overflow when processing a large image, which can lead to a buffer overflow and remote impact. The MiracleLinux AXSA advisories list CVE-2010-1449 among fixe...

PSF-2010-3 rgbimg and imageop overflows

Multiple buffer overflows in the RLE decoder in the rgbimg module in Python 2.5 allow remote attackers to have an unspecified impact via an image file containing crafted data that triggers improper processing within the 1 longimagedata or 2 expandrow function...

PSF-2010-2 rgbimg and imageop overflows

Integer overflow in rgbimgmodule.c in the rgbimg module in Python 2.5 allows remote attackers to have an unspecified impact via a large image that triggers a buffer overflow. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-3143.12...

Ubuntu 8.04 LTS / 8.10 / 9.04 / 9.10 : python2.5 vulnerabilities (USN-890-2)

USN-890-1 fixed vulnerabilities in Expat. This update provides the corresponding updates for the PyExpat module in Python 2.5. Jukka Taimisto, Tero Rontti and Rauli Kaksonen discovered that Expat did not properly process malformed XML. If a user or application linked against Expat were tricked in...

USN-890-2: Python 2.5 vulnerabilities

USN-890-1 fixed vulnerabilities in Expat. This update provides the corresponding updates for the PyExpat module in Python 2.5. Original advisory details: Jukka Taimisto, Tero Rontti and Rauli Kaksonen discovered that Expat did not properly process malformed XML. If a user or application linked...

Enhanced CTorrent / dtorrent "btFiles::BuildFromMI()"缓冲区溢出漏洞

CNCAN ID：CNCAN-2009042102 Enhanced CTorrent是一款UNIX环境下的Bittorrent客户端。 Enhanced CTorrent存在缓冲区溢出，远程攻击者可以利用漏洞以应用程序权限执行任意指令。 btfiles.cpp包含的"btFiles::BuildFromMI"函数存在边界错误，诱使用户打开特殊构建的torrent文件，可导致触发基于栈的缓冲区溢出，可能以应用程序权限执行任意指令。 Enhanced CTorrent 3.x 目前没有解决方案提供： http://sourceforge.net/projects/dtorrent/...

cTorrentDTorrent - .torrent Local Buffer Overflow

cTorrentDTorrent - .torrent Local Buffer Overflow !/usr/bin/python Written By Michael Brooks 04/17/2009 Stack Based Buffer Overflow The vulnerability is in the btFiles::BuildFromMI function inside the btfiles.cpp file Exploit tested on cTorrent 1.3.4 using Debian Sarge using Linux kernel...

cTorrent/DTorrent (.Torrent File) Buffer Overflow Exploit

Exploit for linux platform in category local exploits ========================================================= cTorrent/DTorrent .Torrent File Buffer Overflow Exploit ========================================================= !/usr/bin/python Written By Michael Brooks Stack Based Buffer Overflow...

cTorrent/DTorrent - '.torrent' Local Buffer Overflow

!/usr/bin/python Written By Michael Brooks 04/17/2009 Stack Based Buffer Overflow The vulnerability is in the btFiles::BuildFromMI function inside the btfiles.cpp file Exploit tested on cTorrent 1.3.4 using Debian Sarge using Linux kernel 2.4.27-3-386 Can't get the exploit working on a modern lin...

Gentoo Security Advisory GLSA 200807-16 (python)

The remote host is missing updates announced in advisory GLSA 200807-16. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

CVE-2007-2052

Off-by-one error in the PyLocalestrxfrm function in Modules/localemodule.c for Python 2.4 and 2.5 causes an incorrect buffer size to be used for the strxfrm function, which allows context-dependent attackers to read portions of memory via unknown manipulations that trigger a buffer over-read due ...