CVE-2008-2583

CVE-2008-2583 affects Oracle Portal’s sample Discussion Forum Portlet (Oracle Application Server 10g). The vulnerability resides in the Discussion Forum Portlet distributed via OTN prior to 20080715, enabling remote exploitation over a network with unknown impact per the initial description, but ...

Vulnerability in Sample Code in Hitachi uCosminexus Portal Framework Manuals

Overview The sample code provided in Hitachi uCosminexus Portal Framework Manuals has a vulnerability which could allow a logged-in user to view or update data with the privileges of those who have logged in later than the user. Impact A remote attacker could view or update files. Solution Please...

tomcat XSS in samples

Multiple cross-site scripting XSS vulnerabilities in the appdev/sample/web/hello.jsp example application in Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.23, and 6.0.0 through 6.0.10 allow remote attackers to inject arbitrary web script or HTML via the...

MS Windows JPEG GDI+ Overflow Shellcoded Exploit

No description provided by source. // launch a local cmd.exe not bound to the net... // GDI+ buffer overrun exploit by FoToZ // NB: the headers here are only sample headers taken from a .JPG file, // with the FF FE 00 01 inserted in header1. // Sample shellcode is provided // You can put approx...

KDDI sample CGI download program directory traversal vulnerability

Overview A directory traversal vulnerability exists in a sample CGI download program included with KDDI's EZFactory. A sample CGI download program is included with KDDI's EZFactory for downloading and saving data such as images and ringtones to EZweb compatible cellular phones. A directory...

tomcat XSS in samples

Multiple cross-site scripting XSS vulnerabilities in the appdev/sample/web/hello.jsp example application in Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.23, and 6.0.0 through 6.0.10 allow remote attackers to inject arbitrary web script or HTML via the...

Fedora 8 : nagios-2.11-3.fc8 (2008-3098)

Tue Mar 18 2008 Tom 'spot' Callaway 2.11-3 - add Requires for versioned perl libperl.so - get rid of pointless file Requires - Mon Mar 17 2008 Mike McGrath 2.11-2 - Upstream released new version - Added perl-ExtUtils-Embed - Tue Feb 12 2008 Mike McGrath 2.10-6 - Rebuild for gcc43 - Thu Nov 29...

Debian Security Advisory DSA 565-1 (sox)

The remote host is missing an update to sox announced via advisory DSA 565-1. OpenVAS Vulnerability Test $Id: deb5651.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 565-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian: Security Advisory (DSA-565-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 7 : nagios-2.10-3.fc7 (2007-4123)

Thu Nov 29 2007 Mike McGrath 2.10-3 - Upstream released 2.10 - Renamed cfg-sample configs to just .cfg - Added BR of perl-devel, libjpeg-devel, libpng-devel - Wed Sep 26 2007 Mike McGrath 2.9-5 - rebuild for koji test - Sat Sep 8 2007 Mike McGrath 2.9-4 - rebuild - Wed Aug 22 2007 Mike McGrath...

[48Bits Advisory] QuickTime Panorama Sample Atom Heap Overflow

48bits Advisory QuickTime Panorama Sample Atom Heap Overflow Abstract: QuickTime is prone to a heap overflow vulnerability when parsing malformed Panorama Sample Atoms, which are used in QuickTime Virtual Reality Movies. This Vulnerability allows attackers to execute code on vulnerable...

Heap overflow

Heap-based buffer overflow in the QuickTime VR extension 7.2.0.240 in QuickTime.qts in Apple QuickTime before 7.3 allows remote attackers to execute arbitrary code via a QTVR QuickTime Virtual Reality movie file containing a large size field in the atom header of a panorama sample atom...

Heap overflow

Heap-based buffer overflow in Apple QuickTime before 7.3 allows remote attackers to execute arbitrary code via crafted Sample Table Sample Descriptor STSD atoms in a movie file...

CVE-2007-4675

Heap-based buffer overflow in the QuickTime VR extension 7.2.0.240 in QuickTime.qts in Apple QuickTime before 7.3 allows remote attackers to execute arbitrary code via a QTVR QuickTime Virtual Reality movie file containing a large size field in the atom header of a panorama sample atom...

CVE-2007-3750

Heap-based buffer overflow in Apple QuickTime before 7.3 allows remote attackers to execute arbitrary code via crafted Sample Table Sample Descriptor STSD atoms in a movie file...

CVE-2007-4675

Heap-based buffer overflow in the QuickTime VR extension 7.2.0.240 in QuickTime.qts in Apple QuickTime before 7.3 allows remote attackers to execute arbitrary code via a QTVR QuickTime Virtual Reality movie file containing a large size field in the atom header of a panorama sample atom...

PT-2007-6063 · Phpreactor · Phpreactor

Name of the Vulnerable Software and Affected Versions: phpReactor version 1.2.7pl1 Description: Multiple PHP remote file inclusion issues allow remote attackers to execute arbitrary PHP code via a URL in the pathtohomedir parameter to certain PHP files, including 1 ekilat.com-int.tpl.php, 2...

PT-2007-6065 · Yapig · Yapig

Name of the Vulnerable Software and Affected Versions: YaPiG version 0.95b Description: A remote file inclusion issue in sample.php allows remote attackers to execute arbitrary PHP code via a URL in the YAPIG PATH parameter. Recommendations: For YaPiG version 0.95b, consider restricting the use o...

CVE-2007-3467

Integer overflow in the statusUpdate function in stats.c VideoLAN VLC Media Player before 0.8.6c allows remote attackers to cause a denial of service crash via a WAV file with a large sample rate...

CVE-2007-3467

Integer overflow in the statusUpdate function in stats.c VideoLAN VLC Media Player before 0.8.6c allows remote attackers to cause a denial of service crash via a WAV file with a large sample rate...