CVE-2008-5008

CVE-2008-5008 : Buffer overflow in Secret Rabbit Code (libsamplerate) src_sinc.c prior to 0.1.4 when using extreme low conversion ratios. This allows user-assisted attackers to trigger a remotely exploitable condition by processing a specially crafted audio file, potentially leading to arbitrary ...

CVE-2008-5008

Buffer overflow in src/srcsinc.c in Secret Rabbit Code aka SRC or libsamplerate before 0.1.4, when "extreme low conversion ratios" are used, allows user-assisted attackers to have an unknown impact via a crafted audio file...

CVE-2008-5008

Buffer overflow in src/srcsinc.c in Secret Rabbit Code aka SRC or libsamplerate before 0.1.4, when "extreme low conversion ratios" are used, allows user-assisted attackers to have an unknown impact via a crafted audio file...

GNU Enscript src/psgen.c栈溢出漏洞

BUGTRAQ ID: 31858 CVECAN ID: CVE-2008-3863 GNU enscript是用于替换Adobe enscript程序的脚本。Enscript可将ASCII文件转换为PostScript并将生成的PostScript输出提供给指定的打印机。 GNU enscript src/psgen.c文件中的readspecialescape函数存在栈溢出漏洞。如果用户通过-e选项启用了特殊转义处理的话，在转换恶意文件时就可能触发这个溢出，导致执行任意指令。 GNU Enscript 1.6.4 beta GNU Enscript 1.6.1 GNU ---...

minix-panic.txt

Hello again, another day.. kokanin@gmail 20080724 minix 3.1.2a remote tty panic trunk/src/drivers/tty/tty.c 14965 if status = sendreplyee, &ttymess != OK 14966 panic"TTY","ttyreply failed, status\n", status; $ while true ; do sleep 1 && killall nc 2/dev/null; done & $ while true ; do cat...

IBM AFP查看器插件SRC属性堆溢出漏洞

BUGTRAQ ID: 29932 IBM的AFP查看器插件允许用户在WEB浏览器中查看AFP文档。 AFP查看器插件在处理文档中的SRC属性时存在堆溢出漏洞，如果用户打开的文档包含有超过1023个字符的超长属性参数的话，就可以触发这个溢出，导致执行任意指令。 IBM AFP Viewer 3.2.1.1 IBM AFP Viewer 2.0.7.1 IBM --- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

Heap overflow

Heap-based buffer overflow in the IBM AFP Viewer Plug-in 2.0.7.1 and 3.2.1.1 allows remote attackers to execute arbitrary code via a long SRC property value. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

Authentication flaw

SNMPv3 HMAC verification in 1 Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x before 5.4.1.1; 2 UCD-SNMP; 3 eCos; 4 Juniper Session and Resource Control SRC C-series 1.0.0 through 2.0.0; 5 NetApp aka Network Appliance Data ONTAP 7.3RC1 and 7.3RC2; 6 SNMP Research before 16.2; 7...

DEBIAN-CVE-2008-0960

SNMPv3 HMAC verification in 1 Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x before 5.4.1.1; 2 UCD-SNMP; 3 eCos; 4 Juniper Session and Resource Control SRC C-series 1.0.0 through 2.0.0; 5 NetApp aka Network Appliance Data ONTAP 7.3RC1 and 7.3RC2; 6 SNMP Research before 16.2; 7...

Directory traversal

Multiple directory traversal vulnerabilities in Project-Based Calendaring System PBCS 0.7.1-1 allow remote attackers to read arbitrary files via a .. dot dot in the filename parameter to 1 src/yopysync.php and 2 system-logger/printlogs.php...

Debian: Security Advisory (DSA-1439-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Novell GroupWise Client IMG SRC buffer overflow

Added: 01/15/2008 CVE: CVE-2007-6435 BID: 26875 OSVDB: 40870 Background Novell GroupWise is an e-mail and collaboration product suite. Problem A buffer overflow vulnerability in the GroupWise client allows command execution when a user replies to or forwards a message containing an IMG tag with a...

Novell GroupWise Client IMG SRC buffer overflow

Added: 01/15/2008 CVE: CVE-2007-6435 BID: 26875 OSVDB: 40870 Background Novell GroupWise is an e-mail and collaboration product suite. Problem A buffer overflow vulnerability in the GroupWise client allows command execution when a user replies to or forwards a message containing an IMG tag with a...

Novell GroupWise Client IMG SRC buffer overflow

Added: 01/15/2008 CVE: CVE-2007-6435 BID: 26875 OSVDB: 40870 Background Novell GroupWise is an e-mail and collaboration product suite. Problem A buffer overflow vulnerability in the GroupWise client allows command execution when a user replies to or forwards a message containing an IMG tag with a...

CVE-2007-6562

Multiple stack-based buffer overflows in the use of FDSET in TCPreen before 1.4.4 allow remote attackers to cause a denial of service via multiple concurrent connections, which result in overflows in the 1 SocketAddress::Connect function in libsolve/sockprot.cpp and 2 monitorbridge function in...

CVE-2007-6562

TCPreen is affected prior to version 1.4.4. The vulnerability arises from multiple stack-based overflows in FD_SET handling that enable remote denial of service through many concurrent connections. Reported vulnerable components include SocketAddress::Connect (libsolve/sockprot.cpp) and monitor_b...

CVE-2007-6183

Format string vulnerability in the mdiaginitialize function in gtk/src/rbgtkmessagedialog.c in Ruby-GNOME 2 aka Ruby/Gnome2 0.16.0, and SVN versions before 20071127, allows context-dependent attackers to execute arbitrary code via format string specifiers in the message parameter...

FreeBSD : tikiwiki -- multiple vulnerabilities (20a4eb11-8ea3-11dc-a396-0016179b2dd5)

Secunia reports : Some vulnerabilities have been reported in TikiWiki, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks and disclose potentially sensitive information. Input passed to the username parameter in tiki-remindpassword.php when...

Design/Logic Flaw

Microsoft Internet Explorer 6 drops DNS pins based on failed connections to irrelevant TCP ports, which makes it easier for remote attackers to conduct DNS rebinding attacks, as demonstrated by a port 81 URL in an IMG SRC, when the DNS pin had been established for a session on port 80, a differen...

CVE-2007-2958

CVE-2007-2958 affects Sylpheed 2.4.4 and Sylpheed-Claws (Claws Mail) 1.9.100 and 2.10.0. The vulnerability is a format string issue in inc_put_error (src/inc.c) that can be triggered by crafted POP3 replies from a remote server, allowing arbitrary code execution. Public references and OpenVAS ent...