CVE-2012-5002

Vulnerability CVE-2012-5002 affects Ricoh DC Software DL-10 SR10 FTP Server (SR10.exe) version 1.1.0.6. The flaw is a stack-based buffer overflow triggered by a long USER command when the Log file name option is enabled, enabling remote code execution under the FTP user context. Multiple sources ...

CVE-2012-1183

Stack-based buffer overflow in the milliwattgenerate function in the Miliwatt application in Asterisk 1.4.x before 1.4.44, 1.6.x before 1.6.2.23, 1.8.x before 1.8.10.1, and 10.x before 10.2.1, when the o option is used and the internaltiming option is off, allows remote attackers to cause a denia...

CVE-2012-1184

Stack-based buffer overflow in the astparsedigest function in main/utils.c in Asterisk 1.8.x before 1.8.10.1 and 10.x before 10.2.1 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a long string in an HTTP Digest Authentication header...

CVE-2012-1183

CVE-2012-1183 affects the Asterisk Miliwatt (milliwatt_generate) in multiple releases: 1.4.x prior to 1.4.44, 1.6.x prior to 1.6.2.23, 1.8.x prior to 1.8.10.1, and 10.x prior to 10.2.1. The flaw is a stack-based buffer overflow in the milliwatt_generate function when the o option is used and inte...

CentOS Update for quagga CESA-2012:1258 centos5

Check for the Version of quagga OpenVAS Vulnerability Test CentOS Update for quagga CESA-2012:1258 centos5 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

NCMedia Sound Editor Pro 7.5.1 Buffer Overflow

Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Sound Editor Pro v7.5.1 Vendor URL: www.soundeditorpro.com Type: Stack-based Buffer Overflow CWE-121 Date found: 2012-08-15 Date published: 2012-09-16 CVSSv2 Score: 6,9...

CVE-2011-5165

Stack-based buffer overflow in Free MP3 CD Ripper 1.1, 2.6 and earlier, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted .wav file...

CVE-2011-5164

Stack-based buffer overflow in VanDyke Software AbsoluteFTP 1.9.6 through 2.2.10 allows remote FTP servers to execute arbitrary code via a crafted file name in a LIST command response...

CVE-2011-5164

The CVE-2011-5164 entry concerns a stack-based buffer overflow in VanDyke Software AbsoluteFTP. The authenticated/remote issue affects AbsoluteFTP versions 1.9.6 through 2.2.10 and is triggered by a crafted file name in a LIST command response, allowing a remote FTP server to execute arbitrary co...

Scientific Linux Security Update : quagga on SL5.x i386/x86_64 (20120912)

A heap-based buffer overflow flaw was found in the way the bgpd daemon processed malformed Extended Communities path attributes. An attacker could send a specially crafted BGP message, causing bgpd on a target system to crash or, possibly, execute arbitrary code with the privileges of the user...

RHEL 5 : quagga (RHSA-2012:1258)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:1258 advisory. - quagga: DoS crash by processing malformed extended community attribute in a route CVE-2010-1674 - Quagga ospf6d: Stack-based buffer overfl...

RHEL 6 : quagga (RHSA-2012:1259)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:1259 advisory. - Quagga ospf6d: Stack-based buffer overflow while decoding Link State Update packet with malformed Inter Area Prefix LSA CVE-2011-3323 -...

Debian DSA-2546-1 : freeradius - stack-based buffer overflows

Timo Warns discovered that the EAP-TLS handling of FreeRADIUS, a high-performance and highly configurable RADIUS server, is not properly performing length checks on user-supplied input before copying to a local stack buffer. As a result, an unauthenticated attacker can exploit this flaw to crash...

Slackware Advisory SSA:2008-111-01 xine-lib

The remote host is missing an update as announced via advisory SSA:2008-111-01. OpenVAS Vulnerability Test $Id: esoftslkssa200811101.nasl 6598 2017-07-07 09:36:44Z cfischer $ Description: Auto-generated from the corresponding slackware advisory Authors: Thomas Reinke Copyright: Copyright c 2012...

Slackware: Security Advisory (SSA:2008-111-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2012-0254

Stack-based buffer overflow in the HMIWeb Browser HSCDSPRenderDLL ActiveX control in Honeywell Process Solutions HPS Experion R2xx, R30x, R31x, and R400.x; Honeywell Building Solutions HBS Enterprise Building Manager R400 and R410.1; and Honeywell Environmental Combustion and Controls ECC Symmetr...

CVE-2012-4876

Stack-based buffer overflow in the UltraMJCam ActiveX Control in TRENDnet SecurView TV-IP121WN Wireless Internet Camera allows remote attackers to execute arbitrary code via a long string to the OpenFileDlg method...

CVE-2012-4876

Stack-based buffer overflow in the UltraMJCam ActiveX Control in TRENDnet SecurView TV-IP121WN Wireless Internet Camera allows remote attackers to execute arbitrary code via a long string to the OpenFileDlg method...

Mandriva Linux Security Advisory : libreoffice (MDVSA-2011:172)

Multiple vulnerabilies has been discovered and corrected in libreoffice : Stack-based buffer overflow in the Lotus Word Pro import filter in LibreOffice before 3.3.3 allows remote attackers to execute arbitrary code via a crafted .lwp file CVE-2011-2685. oowriter in OpenOffice.org 3.3.0 and...

Medium: glibc

Issue Overview: Multiple integer overflow flaws, leading to stack-based buffer overflows, were found in glibc's functions for converting a string to a numeric representation strtod, strtof, and strtold. If an application used such a function on attacker controlled input, it could cause the...