CVE-2004-1035

Multiple integer signedness errors in 1 imapcommon.c, 2 main.c, 3 request.c, and 4 select.c for up-imapproxy IMAP proxy 1.2.2 allow remote attackers to cause a denial of service server crash and possibly leak sensitive information via certain literal values that are not properly handled when usin...

CVE-2005-0180

Multiple integer signedness errors in the sgscsiioctl function in scsiioctl.c for Linux 2.6.x allow local users to read or modify kernel memory via negative integers in arguments to the scsi ioctl, which bypass a maximum length check before calling the copyfromuser and copytouser functions...

CVE-2005-0180

CVE-2005-0180 involves multiple signedness errors in sg_scsi_ioctl (scsi_ioctl.c) of Linux 2.6.x. The flaw lets a local user read or modify kernel memory by passing negative integers to the ioctl, bypassing a maximum-length check before copy_from_user/copy_to_user. Connected advisories (e.g., Man...

CVE-2004-1035

CVE-2004-1035 affects up-imapproxy IMAP proxy version 1.2.2. The vulnerability is described as multiple integer signedness errors in imapcommon.c, main.c, request.c, and select.c, allowing remote attackers to cause a denial of service (server crash) and possibly leak sensitive information via cer...

CVE-2004-0094

CVE-2004-0094 concerns XFree86 4.1.0 with integer signedness errors in the GLX extension/DRI. Remote attackers could cause a denial of service and potentially execute arbitrary code by sending crafted data to the X server. Related advisories (e.g., Debian DSA-443-1, Red Hat RHSA-2004:152, SUSE) d...

CVE-2003-0297

CVE-2003-0297 affects the c-client IMAP client (as used in imap-2002b and Pine 4.53). The flaw allows remote malicious IMAP servers to trigger a denial of service (crash) and potentially execute arbitrary code via large literal and mailbox size values, due to integer signedness/overflow errors. R...

CVE-2003-0301

CVE-2003-0301 concerns the IMAP Client for Outlook Express 6.00.2800.1106. The issue is triggered by certain large literal size values that cause integer signedness or integer overflow errors during parsing, enabling remote servers to induce a denial of service (crash). The public sources in the ...

CVE-2003-0300

The IMAP Client for Sylpheed 0.8.11 allows remote malicious IMAP servers to cause a denial of service crash via certain large literal size values that cause either integer signedness errors or integer overflow errors...

CVE-2003-0236

Integer signedness errors in the POP3 client for Mirabilis ICQ Pro 2003a allow remote attackers to execute arbitrary code via the 1 Subject or 2 Date headers...

rsync I/O Functions Multiple Signedness Errors RCE

The remote rsync server is affected by multiple signedness errors in the I/O functions. An unauthenticated, remote attacker can exploit these to cause a denial of service or execute arbitrary code. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11390; scriptversion...

CVE-2002-1355

Multiple integer signedness errors in the BGP dissector in Ethereal 0.9.7 and earlier allow remote attackers to cause a denial of service infinite loop via malformed messages...

PT-2002-2278 · Ethereal · Ethereal

Name of the Vulnerable Software and Affected Versions: Ethereal version 0.9.7 and earlier Description: The issue is related to multiple integer signedness errors in the BGP dissector. This can be exploited by remote attackers who send malformed messages, resulting in a denial of service due to an...

CVE-2002-0666

CVE-2002-0666 affects multiple IPsec implementations (notably FreeS/WAN and KAME). The root cause is incorrect calculation of the authentication data length for very small ESP datagrams, which can result in an unsigned integer overflow and cause a kernel panic (remote denial of service). The NVD/...

CVE-2002-0048

Multiple signedness errors mixed signed and unsigned numbers in the I/O functions of rsync 2.4.6, 2.3.2, and other versions allow remote attackers to cause a denial of service and execute arbitrary code in the rsync client or server...

CVE-2002-0048

Summary: CVE-2002-0048 describes multiple signedness errors in rsync I/O functions that can allow a remote attacker to cause a denial of service or execute arbitrary code in rsync when used as client or daemon/server. Affected versions (from provided documents): rsync 2.4.6, 2.3.2, and other vers...

CVE-2002-0048

Multiple signedness errors mixed signed and unsigned numbers in the I/O functions of rsync 2.4.6, 2.3.2, and other versions allow remote attackers to cause a denial of service and execute arbitrary code in the rsync client or server...