GLSA-200711-18 : Cpio: Buffer overflow

The remote host is affected by the vulnerability described in GLSA-200711-18 Cpio: Buffer overflow A buffer overflow vulnerability in the safernamesuffix function in GNU cpio has been discovered. Impact : A remote attacker could entice a user to open a specially crafted archive file resulting in ...

Cpio: Buffer overflow

Background GNU cpio copies files into or out of a cpio or tar archive. Description A buffer overflow vulnerability in the safernamesuffix function in GNU cpio has been discovered. Impact A remote attacker could entice a user to open a specially crafted archive file resulting in a stack-based buff...

CVE-2007-5935

Stack-based buffer overflow in hpc.c in dvips in teTeX and TeXlive 2007 and earlier allows user-assisted attackers to execute arbitrary code via a DVI file with a long href tag...

CVE-2007-4351

Off-by-one error in the ippReadIO function in cups/ipp.c in CUPS 1.3.3 allows remote attackers to cause a denial of service crash via a crafted 1 textWithLanguage or 2 nameWithLanguage Internet Printing Protocol IPP tag, leading to a stack-based buffer overflow...

CA BrightStor HSM <= r11.5 Remote Stack Based Overflow / DoS

Exploit for unknown platform in category dos / poc ============================================================ CA BrightStor HSM = r11.5 Remote Stack Based Overflow / DoS ============================================================ !/usr/bin/perl email protected@@@@ email protected@@@@@@...

DTSA-66-1 alsaplayer - stack based buffer overflow in vorbis plugin

Bulletin has no description...

xpdf integer overflow

Integer overflow in the StreamPredictor::StreamPredictor function in xpdf 3.02, as used in 1 poppler before 0.5.91, 2 gpdf before 2.8.2, 3 kpdf, 4 kdegraphics, 5 CUPS, 6 PDFedit, and other products, might allow remote attackers to execute arbitrary code via a crafted PDF file that triggers a...

VulnCheck KEV: CVE-2007-3375

Stack-based buffer overflow in Lhaca File Archiver before 1.21 allows user-assisted remote attackers to execute arbitrary code via a crafted LZH archive, as exploited by malware such as Trojan.Lhdropper...

Exploit for eTrust Antivirus Agent r8

No description provided by source. / ---------------------------------------------------------------------- | 48Bits Advisory -=- Privilege Elevation in eTrust Antivirus Agent r8 | ---------------------------------------------------------------------- Affected versions :...

Mandrake Linux Security Advisory : clamav (MDKSA-2007:098)

iDefense discovered a stack-based overflow in ClamAV when processing negative values in .cab files. As well, multiple file descriptor leaks were also reported and fixed in chmunpack.c, pdf.c, and dblock.c. This update provides ClamAV 0.90.2 which corrects these problems and provides new...

CVE-2007-2293

Multiple stack-based buffer overflows in the processsdp function in chansip.c of the SIP channel T.38 SDP parser in Asterisk before 1.4.3 allow remote attackers to execute arbitrary code via a long 1 T38FaxRateManagement or 2 T38FaxUdpEC SDP parameter in an SIP message, as demonstrated using SIP...

Linux Kernel 2.6.x - NETLINK_FIB_LOOKUP Local Denial of Service

Linux Kernel 2.6.x - NETLINKFIBLOOKUP Local Denial of Service / source: https://www.securityfocus.com/bid/23677/info The Linux kernel is prone to a denial-of-service vulnerability. This issue presents itself when a NETLINK message is misrouted. A local attacker may exploit this issue to trigger a...

Linux Kernel 2.6.x - NETLINK_FIB_LOOKUP Local Denial of Service

/ source: https://www.securityfocus.com/bid/23677/info The Linux kernel is prone to a denial-of-service vulnerability. This issue presents itself when a NETLINK message is misrouted. A local attacker may exploit this issue to trigger an infinite-recursion stack-based overflow in the kernel. This...

Corel Wordperfect X3 13.0.0.565 (.PRS) Local Buffer Overflow Exploit

Exploit for unknown platform in category local exploits ==================================================================== Corel Wordperfect X3 13.0.0.565 .PRS Local Buffer Overflow Exploit ==================================================================== / wp13exp.c - Wordperfect X3 remote...

CVE-2007-1397

Multiple stack-based buffer overflows in the 1 ExtractRnick and 2 decrypttopic332 functions in FiSH allow remote attackers to execute arbitrary code via long strings...

Heap overflow

Multiple buffer overflows in src/ezstream.c in Ezstream before 0.3.0 allow remote attackers to execute arbitrary code via a crafted XML configuration file processed by the 1 urlParse function, which causes a stack-based overflow and the 2 ReplaceString function, which causes a heap-based overflow...

CVE-2007-0855

Stack-based buffer overflow in RARLabs Unrar, as packaged in WinRAR and possibly other products, allows user-assisted remote attackers to execute arbitrary code via a crafted, password-protected archive...

CVE-2007-0097

Multiple stack-based buffer overflows in the 1 LoadTree and 2 ReadHeader functions in PAISO.DLL 1.7.3.0 1.7.3 beta in ConeXware PowerArchiver 2006 9.64.02 allow user-assisted attackers to execute arbitrary code via a crafted ISO file containing a file within several nested directories...

FreeBSD : cscope -- Buffer Overflow Vulnerabilities (74ff10f6-520f-11db-8f1a-000a48049292)

Secunia reports : Will Drewry has reported some vulnerabilities in Cscope, which potentially can be exploited by malicious people to compromise a vulnerable system. Various boundary errors within the parsing of file lists or the expansion of environment variables can be exploited to cause...

Compression Plus CP5DLL32.DLL ZOO Archive Header Processing Overflow RCE

The version of the Compression Plus toolkit installed on the remote Windows host contains a DLL file that is affected by a stack-based overflow condition when processing specially crafted ZOO files. A remote attacker can exploit this issue, via an inconsistent size parameter in a ZOO file header,...