8440 matches found
CVE-2009-3811
Stack-based buffer overflow in Music Tag Editor 1.61 build 212 allows remote attackers to execute arbitrary code via an MP3 file with a long ID3 tag. NOTE: some of these details are obtained from third party information...
[SECURITY] [DSA 1917-1] New mimetex packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1917-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano October 24, 2009 http://www.debian.org/security/faq -...
DSA-1917-1 mimetex - several vulnerabilities
Bulletin has no description...
CVE-2009-2970
Stack-based buffer overflow in the GetUiDllVersion function in an ActiveX control in UiCheck.dll before 1.0.0.7 in UiTV UiPlayer, as used in BaiduX and other products, allows remote attackers to execute arbitrary code via the filename parameter...
CVE-2009-3699
Stack-based buffer overflow in libcsa.a aka the calendar daemon library in IBM AIX 5.x through 5.3.10 and 6.x through 6.1.3, and VIOS 2.1 and earlier, allows remote attackers to execute arbitrary code via a long XDR string in the first argument to procedure 21 of rpc.cmsd...
CVE-2009-3691
Multiple integer overflows in setnet32.exe 3.50.0.13752 in IBM Informix Client SDK 3.0 and 3.50 and Informix Connect Runtime 3.x allow remote attackers to execute arbitrary code via a .nfx file with a crafted 1 HostSize, and possibly 2 ProtoSize and 3 ServerSize, field that triggers a stack-based...
CVE-2009-3569
Stack-based buffer overflow in OpenOffice.org OOo allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.8, aka "Client-side stack overflow exploit." NOTE: as of 20091005, this disclosure has no actionable...
CVE-2009-3569
Stack-based buffer overflow in OpenOffice.org OOo allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.8, aka "Client-side stack overflow exploit." NOTE: as of 20091005, this disclosure has no actionable...
Stack overflow
Multiple stack-based buffer overflows in EpicDJSoftware EpicVJ 1.2.8.0 and 1.3.1.2 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long string in a 1 .m3u or 2 .mpl playlist file...
CVE-2009-3536
Multiple stack-based buffer overflows in EpicDJSoftware EpicVJ 1.2.8.0 and 1.3.1.2 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long string in a 1 .m3u or 2 .mpl playlist file...
CVE-2009-3536
CVE-2009-3536 affects EpicDJSoftware EpicVJ versions 1.2.8.0 and 1.3.1.2. It describes multiple stack-based buffer overflows exploitable via a long string in playlist files (.m3u, .mpl), allowing remote denial of service or potentially arbitrary code execution. No remediation details are provided...
CVE-2009-3537
Multiple stack-based buffer overflows in EpicDJSoftware EpicDJ 1.3.9.1 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long string in a 1 .m3u or 2 .mpl playlist file...
[Backports-security-announce] Security update for dovecot
Jaldhar H. Vyas uploaded new packages which fix the following problem: DSA-1892-1 CVE-2009-2632, CVE-2009-3235 Multiple stack-based buffer overflows in the Sieve plugin in Dovecot For the etch-backports distribution the problem has been fixed in version 1.0.15-2.3+lenny1bpo40+1 For the...
[Backports-security-announce] Security update for dovecot
Jaldhar H. Vyas uploaded new packages which fix the following problem: DSA-1892-1 CVE-2009-2632, CVE-2009-3235 Multiple stack-based buffer overflows in the Sieve plugin in Dovecot For the etch-backports distribution the problem has been fixed in version 1.0.15-2.3+lenny1bpo40+1 For the...
CVE-2009-3484
Stack-based buffer overflow in Core FTP 2.1 build 1612 allows user-assisted remote attackers to execute arbitrary code via a long hostname in an FTP server entry in a site backup file. NOTE: some of these details are obtained from third party information...
EMC Captiva QuickScan Pro 4.6 SP1 and EMC Documentum ApllicationXtender Desktop 5.4 (keyhelp.ocx 1.2.312) - Remote Overflow
EMC Captiva QuickScan Pro 4.6 SP1 and EMC Documentum ApllicationXtender Desktop 5.4 keyhelp.ocx 1.2.312 - Remote Overflow //executing calc scode = unescape"%eb%03%59%eb%05%e8%f8%ff%ff%ff%4f%49%49%49%49%49" & unescape"%49%51%5a%56%54%58%36%33%30%56%58%34%41%30%42%36" &...
EMC Captiva QuickScan Pro 4.6 SP1 and EMC Documentum ApllicationXtender Desktop 5.4 (keyhelp.ocx 1.2.312) - Remote Overflow
//executing calc scode = unescape"%eb%03%59%eb%05%e8%f8%ff%ff%ff%4f%49%49%49%49%49" & unescape"%49%51%5a%56%54%58%36%33%30%56%58%34%41%30%42%36" & unescape"%48%48%30%42%33%30%42%43%56%58%32%42%44%42%48%34" & unescape"%41%32%41%44%30%41%44%54%42%44%51%42%30%41%44%41" &...
CVE-2009-3429
Stack-based buffer overflow in Pirate Radio Destiny Media Player 1.61 allows remote attackers to execute arbitrary code via a long string in a .pls playlist file...
CVE-2009-3429
The CVE-2009-3429 entry describes a stack-based buffer overflow in Destiny Media Player 1.61 (Pirate Radio Destiny Media Player) that can be triggered by a long string in a .pls playlist file, enabling remote code execution. Connected documents confirm practical exploit paths: a Metasploit module...
CVE-2009-3364
Stack-based buffer overflow in FTPShell Client 4.1 RC2 allows remote FTP servers to execute arbitrary code via a long response to a PASV command...