96 matches found
Microsoft Visio Remote Code Execution Vulnerability (3124585)
This host is missing a critical security update according to Microsoft Bulletin MS16-004 SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
FreeBSD : libtremor -- memory corruption (40497e81-fee3-4e54-9d5f-175a5c633b73)
The Mozilla Project reports : Security researcher regenrecht reported via TippingPoint's Zero Day Initiative the possibility of memory corruption during the decoding of Ogg Vorbis files. This can cause a crash during decoding and has the potential for remote code execution. %NASLMINLEVEL 70300 C...
RealNetworks RealPlayer CDDA URI Uninitialized Pointer Code Execution
Added: 10/22/2010 CVE: CVE-2010-3747 BID: 44144 OSVDB: 68673 Background RealPlayer and RealOne Player include a number of ActiveX controls allowing functions to be called by scripts embedded in web pages. Problem CDDA cdda:// is a protocol used to locate media files on Compact Disc Digital Audio...
VUPEN Security Research - Microsoft Internet Explorer "CIframeElement" Object Use-after-free Vulnerability (CVE-2010-2558)
VUPEN Security Research - Microsoft Internet Explorer "CIframeElement" Object Use-after-free Vulnerability CVE-2010-2558 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Microsoft Internet Explorer is a web browser developed by Microsoft and included as part of the...
Microsoft IE基线标签渲染远程代码执行漏洞(MS10-002)
BUGTRAQ ID: 37895 CVE ID: CVE-2010-0245 Internet Explorer是Windows操作系统中默认捆绑的web浏览器。 如果交错的strike和center标签中包含用用于操控sub或sup等字体基线的元素的话,则在IE渲染该标签时存在释放后使用错误。在删除这个元素指针的时候,IE之后会引用已被释放的指针。 攻击者可以通过构建特制的网页来利用该漏洞,当用户查看网页时,该漏洞可能允许远程执行代码。 Microsoft Internet Explorer 8.0 临时解决方法: 将Internet...
Fedora 9 : mantis-1.1.2-1.fc9 (2008-6647)
Update to upstream version 1.1.2, fixing following security issues: - 0008974: XSS Vulnerability in filters - 0008975: CSRF Vulnerabilities in usercreate CVE-2008-2276 - 0008976: Remote Code Execution in admconfig - 0009154: arbitrary file inclusion through user preferences page See upstream...
CVE-2008-0986
Integer overflow in the BMP::readFromStream method in the libsgl.so library in Google Android SDK m3-rc37a and earlier, and m5-rc14, allows remote attackers to execute arbitrary code via a crafted BMP file with a header containing a negative offset field...
Buffer overflow in KMiNT21 Software Golden FTP Server Pro v2.52 (10.04.2005)
Summary: Buffer overflow in KMiNT21 Software Golden FTP Server Pro v2.52 10.04.2005 http://www.goldenftpserver.com/ Details: Passing an overly long username parameter to the FTP server causes the EIP register to be overwritten after the USER/PASS login sequence is completed. Once this has been do...
CVE-2004-0227
Buffer overflow in the zms script in ZoneMinder before 1.19.2 may allow a remote attacker to execute arbitrary code via a long query string...
PSOProxy 0.91 - Remote Buffer Overflow (1)
PSOProxy 0.91 - Remote Buffer Overflow 1 // source: https://www.securityfocus.com/bid/9706/info It has been reported that PSOProxy is prone to a remote buffer overflow vulnerability. The issue is due to the insufficient boundary checking. A malicious user may exploit this condition to potentially...
[SECURITY] [DSA-322-1] New typespeed packages fix buffer overflow
-------------------------------------------------------------------------- Debian Security Advisory DSA 322-1 [email protected] http://www.debian.org/security/ Matt Zimmerman June 16th, 2003 http://www.debian.org/security/faq -...
FreeBSD-SA-01:43.fetchmail
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:43 Security Advisory FreeBSD, Inc. Topic: fetchmail contains potentially exploitable buffer overflow Category: ports Module: fetchmail Announced: 2001-07-10 Credits:...
FreeBSD-SA-00:11.ircii
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:11 Security Advisory FreeBSD, Inc. Topic: ircII port contains a remote overflow Category: ports Module: ircII Announced: 2000-04-10 Credits: Derek Callaway via BugTraq...
ROS-2-1984
2.1984 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability...
Security Update For Exchange Server 2013 CU22 (KB5000871)
The security update addresses four remote code execution vulnerabilities for Microsoft Exchange Server...
Security Update For Exchange Server 2019 CU5 (KB5000871)
The security update addresses four remote code execution vulnerabilities for Microsoft Exchange Server...