8440 matches found
[SECURITY] [DSA 1438-1] New tar packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1438-1 [email protected] http://www.debian.org/security/ Florian Weimer December 28, 2007 http://www.debian.org/security/faq -...
CVE-2007-6562
Multiple stack-based buffer overflows in the use of FDSET in TCPreen before 1.4.4 allow remote attackers to cause a denial of service via multiple concurrent connections, which result in overflows in the 1 SocketAddress::Connect function in libsolve/sockprot.cpp and 2 monitorbridge function in...
CVE-2007-6562
Multiple stack-based buffer overflows in the use of FDSET in TCPreen before 1.4.4 allow remote attackers to cause a denial of service via multiple concurrent connections, which result in overflows in the 1 SocketAddress::Connect function in libsolve/sockprot.cpp and 2 monitorbridge function in...
CVE-2007-6562
TCPreen is affected prior to version 1.4.4. The vulnerability arises from multiple stack-based overflows in FD_SET handling that enable remote denial of service through many concurrent connections. Reported vulnerable components include SocketAddress::Connect (libsolve/sockprot.cpp) and monitor_b...
CVE-2007-6561
Multiple stack-based buffer overflows in PDFLib allow user-assisted remote attackers to execute arbitrary code via a long filename argument to the PDFloadimage function that results in an overflow in the pdcfsearchfopen function, and possibly other vectors...
Stack overflow
Multiple stack-based buffer overflows in ProWizard 4 PC prowiz 1.62 and earlier allow remote attackers to execute arbitrary code via a crafted file to the 1 AMOS-MusicBank, 2 FuzzacPacker, and 3 QuadraComposer rippers; and 4 have an unknown impact via a crafted file to the SkytPacker ripper...
CVE-2007-6510
Multiple stack-based buffer overflows in ProWizard 4 PC prowiz 1.62 and earlier allow remote attackers to execute arbitrary code via a crafted file to the 1 AMOS-MusicBank, 2 FuzzacPacker, and 3 QuadraComposer rippers; and 4 have an unknown impact via a crafted file to the SkytPacker ripper...
CVE-2007-5849
Integer underflow in the asn1getstring function in the SNMP back end backend/snmp.c for CUPS 1.2 through 1.3.4 allows remote attackers to execute arbitrary code via a crafted SNMP response that triggers a stack-based buffer overflow...
Apple Mac OS X mount_smbfs Stack Based Buffer Overflow Exploit
Exploit for macOS platform in category local exploits ============================================================== Apple Mac OS X mountsmbfs Stack Based Buffer Overflow Exploit ============================================================== / Copyright C 2007-2008 Subreption LLC. All rights...
CVE-2007-6436
Stack-based buffer overflow in JSGCI.DLL in JustSystems Ichitaro 2005, 2006, and 2007 allows user-assisted remote attackers to execute arbitrary code via a crafted document, as actively exploited in December 2007 by the Tarodrop.F trojan. NOTE: some of these details are obtained from third party...
CVE-2007-6436
Stack-based buffer overflow in JSGCI.DLL in JustSystems Ichitaro 2005, 2006, and 2007 allows user-assisted remote attackers to execute arbitrary code via a crafted document, as actively exploited in December 2007 by the Tarodrop.F trojan. NOTE: some of these details are obtained from third party...
CUPS: Multiple vulnerabilities
Background CUPS provides a portable printing layer for UNIX-based operating systems. The alternate pdftops filter is a CUPS filter used to convert PDF files to the Postscript format via Poppler; the filter is installed by default in Gentoo Linux. Description Wei Wang McAfee AVERT Research...
CVE-2007-6402
Stack-based buffer overflow in mplayerc.exe in Media Player Classic MPC 6.4.9, when used with the 3ivx 4.5.1 or 5.0.1 codec, allows remote attackers to execute arbitrary code via a certain .mp4 file, possibly a related issue to CVE-2007-6401...
CVE-2007-6401
Stack-based buffer overflow in mplayer2.exe in Microsoft Windows Media Player WMP 6.4, when used with the 3ivx 4.5.1 or 5.0.1 codec, allows remote attackers to execute arbitrary code via a certain .mp4 file, possibly a related issue to CVE-2007-6402...
Stack overflow
Multiple stack-based buffer overflows in the awApi4.AnswerWorks.1 ActiveX control in awApi4.dll 4.0.0.42, as used by Vantage Linguistics AnswerWorks, and Intuit Clearly Bookkeeping, ProSeries, QuickBooks, Quicken, QuickTax, and TurboTax, allow remote attackers to execute arbitrary code via long...
CVE-2007-6387
Multiple stack-based buffer overflows in the awApi4.AnswerWorks.1 ActiveX control in awApi4.dll 4.0.0.42, as used by Vantage Linguistics AnswerWorks, and Intuit Clearly Bookkeeping, ProSeries, QuickBooks, Quicken, QuickTax, and TurboTax, allow remote attackers to execute arbitrary code via long...
CVE-2007-6386
Stack-based buffer overflow in PccScan.dll before build 1451 in Trend Micro AntiVirus plus AntiSpyware 2008, Internet Security 2008, and Internet Security Pro 2008 allows user-assisted remote attackers to cause a denial of service SfCtlCom.exe crash, and allows local users to gain privileges, via...
CVE-2007-6387
Multiple stack-based buffer overflows in the awApi4.AnswerWorks.1 ActiveX control in awApi4.dll 4.0.0.42, as used by Vantage Linguistics AnswerWorks, and Intuit Clearly Bookkeeping, ProSeries, QuickBooks, Quicken, QuickTax, and TurboTax, allow remote attackers to execute arbitrary code via long...
CVE-2007-6015
Stack-based buffer overflow in the sendmailslot function in nmbd in Samba 3.0.0 through 3.0.27a, when the "domain logons" option is enabled, allows remote attackers to execute arbitrary code via a GETDC mailslot request composed of a long GETDC string following an offset username in a SAMLOGON...
CVE-2007-6204
Multiple stack-based buffer overflows in HP OpenView Network Node Manager OV NNM 6.41, 7.01, and 7.51 allow remote attackers to execute arbitrary code via unspecified long arguments to 1 ovlogin.exe, 2 OpenView5.exe, 3 snmpviewer.exe, and 4 webappmon.exe, as demonstrated via a long Action paramet...