CVE-2013-5359

Affected software: Google Picasa. The CVE-2013-5359 issue is a stack-based buffer overflow in Picasa3.exe triggered by parsing a specially crafted KDC file (71 bytes), leading to arbitrary code execution. Public details confirm the vulnerability exists in Google Picasa before 3.9.0 Build 137.69, ...

IBM Forms Viewer - Unicode Buffer Overflow (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rexml/document' class Metasploit3 'IBM Forms Viewer Unicode Buffer Overflow', 'Description' = %q This module exploits a stack-based buffer...

CVE-2009-5137

Stack-based buffer overflow in Mini-stream CastRipper 2.50.70 allows remote attackers to execute arbitrary code via a long URL in the playlist section in a .pls file, a different vector than CVE-2009-1667...

CVE-2009-5137

CVE-2009-5137 affects Mini-stream CastRipper 2.50.70 and is described as a stack-based buffer overflow that allows remote code execution. The condition involves a long URL in the [playlist] section of a .pls file, representing a vector distinct from CVE-2009-1667 (which targets a long entry in a ...

CVE-2013-7049

Stack-based buffer overflow in fish.cpp in the Fish plugin for ZNC, as used in ZNC for Windows znc-msvc 0.206 and earlier, allows remote attackers to cause a denial of service crash via a long string in a DH1080INIT message...

CVE-2013-6767

Stack-based buffer overflow in pepoly.dll in Quick Heal AntiVirus Pro 7.0.0.1 allows local users to execute arbitrary code or cause a denial of service process crash via a long .text value in a PE file...

CVE-2013-6767

Stack-based buffer overflow in pepoly.dll in Quick Heal AntiVirus Pro 7.0.0.1 allows local users to execute arbitrary code or cause a denial of service process crash via a long .text value in a PE file...

CVE-2013-4988

Stack-based buffer overflow in IcoFX 2.5 and earlier allows remote attackers to execute arbitrary code via a long idCount value in an ICONDIR structure in an ICO file. NOTE: some of these details are obtained from third party information...

SketchUp Viewer buffer overflow vulnerability

Overview SketchUp Viewer version 13.0.4124 is vulnerable to a buffer overflow when opening a malformed .SKP file. Description CWE-121: Stack-based Buffer Overflow - CVE-2013-6038SketchUp Viewer version 13.0.4124 is vulnerable to a stack buffer overflow when parsing a specially crafted .SKP file...

Stack overflow

Stack-based buffer overflow in the LRPC client in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local users to gain privileges by operating an LRPC server that sends a crafted LPC port message, aka "LRPC Client Buffer Overrun Vulnerability."...

CVE-2013-3878

Stack-based buffer overflow in the LRPC client in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local users to gain privileges by operating an LRPC server that sends a crafted LPC port message, aka "LRPC Client Buffer Overrun Vulnerability."...

Microsoft Windows Local Procedure Call Local Privilege Escalation Vulnerability (2898715)

This host is missing an important security update according to Microsoft Bulletin MS13-102. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2013-5447

The CVE-2013-5447 issue is a stack-based buffer overflow in IBM Forms Viewer (4.0.x prior to 4.0.0.3 and 8.x prior to 8.0.1.1) triggered by XFDL forms with a long fontname value. The IBM security bulletin confirms remote code execution could occur if a crafted XFDL form is opened, affecting IBM F...

Scientific Linux Security Update : gimp on SL5.x, SL6.x i386/x86_64 (20131203)

A stack-based buffer overflow flaw, a heap-based buffer overflow, and an integer overflow flaw were found in the way GIMP loaded certain X Window System XWD image dump files. A remote attacker could provide a specially crafted XWD image file that, when processed, would cause the XWD plug-in to...

GLSA-201312-05 : SWI-Prolog : Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201312-05 SWI-Prolog : Multiple vulnerabilities Multiple vulnerabilities have been discovered in SWI-Prolog: An error in the canoniseFileName function could cause a stack-based buffer overflow CVE-2012-6089. An error in the expand...

CVE-2013-6029

Stack-based buffer overflow in the AT&T Connect Participant Application before 9.5.51 on Windows allows remote attackers to execute arbitrary code via a malformed .SVT file...

CVE-2013-6029

Stack-based buffer overflow in the AT&T Connect Participant Application before 9.5.51 on Windows allows remote attackers to execute arbitrary code via a malformed .SVT file...

[ MDVSA-2013:272 ] poppler

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:272 http://www.mandriva.com/en/support/security/ Package : poppler Date : November 21, 2013 Affected: Business Server 1.0 Problem Description: Updated poppler packages fix security vulnerabilities: Poppler i...

CVE-2013-0223

The SUSE coreutils-i18n.patch for GNU coreutils allows context-dependent attackers to cause a denial of service segmentation fault and crash via a long string to the join command, when using the -i switch, which triggers a stack-based buffer overflow in the alloca function...

CVE-2013-0221

The SUSE coreutils-i18n.patch for GNU coreutils allows context-dependent attackers to cause a denial of service segmentation fault and crash via a long string to the sort command, when using the 1 -d or 2 -M switch, which triggers a stack-based buffer overflow in the alloca function...