7301 matches found
CVE-2010-4742
Stack-based buffer overflow in a certain ActiveX control in MediaDBPlayback.DLL 2.2.0.5 in the Moxa ActiveX SDK allows remote attackers to execute arbitrary code via a long PlayFileName property value...
CVE-2010-4740
Stack-based buffer overflow in WTclient.dll in SCADA Engine BACnet OPC Client before 1.0.25 allows user-assisted remote attackers to execute arbitrary code via a crafted .csv file, related to a status log message...
CVE-2010-4740
CVE-2010-4740 describes a stack-based buffer overflow in WTclient.dll of SCADA Engine’s BACnet OPC Client prior to 1.0.25, enabling a user‑assisted remote attacker to execute arbitrary code by processing a specially crafted .csv file. Public references confirm the vulnerability affects SCADA Engi...
CVE-2011-0913
Stack-based buffer overflow in ndiiop.exe in the DIIOP implementation in the server in IBM Lotus Domino before 8.5.3 allows remote attackers to execute arbitrary code via a GIOP getEnvironmentString request, related to the local variable cache...
CVE-2011-0918
CVE-2011-0918 affects IBM Lotus Domino (NRouter/Router service). The issue is a stack-based buffer overflow triggered by long filenames in the Content-ID and ATTACH:CID headers of attachments within malformed calendar-request emails, allowing remote code execution. The root cause is copying heade...
CVE-2011-0915
IBM Lotus Domino 8.5.x is affected by CVE-2011-0915 due to a stack-based buffer overflow in nrouter.exe when handling a long name parameter in a Content-Type header of malformed Notes calendar (iCal) meeting requests. The root cause is an overflow in the named field during iCalendar processing, p...
(0Day) IBM Informix Dynamic Server SET ENVIRONMENT Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Informix Database Server. SQL query execution privileges are required to exploit this vulnerability. The specific flaw exists within the oninit process bound to TCP port 9088 when processing th...
RedHat Update for postgresql RHSA-2011:0197-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
CVE-2010-3270
CVE-2010-3270 covers two WebEx vulnerabilities: a stack-based buffer overflow in Cisco WebEx Meeting Center (polling via .atp) and in WebEx Player-related .wrf/.atp handling. Public writeups (CORE-2010-1001) describe that WebEx Meeting Center T27LB before SP21 EP3 and T27LC before SP22 is suscept...
Cisco WebEx .atp and .wrf Overflow Vulnerabilities
Core Security Technologies - Corelabs Advisory Cisco WebEx .atp and .wrf Overflow Vulnerabilities 1. Advisory Information Title: Cisco WebEx .atp and .wrf Overflow Vulnerabilities Advisory ID: CORE-2010-1001 Advisory URL:...
CentOS Update for wireshark CESA-2011:0013 centos4 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
CVE-2010-2777
Stack-based buffer overflow in the IMAP server component in GroupWise Internet Agent GWIA in Novell GroupWise 7.x before 7.0 post-SP4 FTF and 8.x before 8.0 SP2 allows remote attackers to execute arbitrary code via a long mailbox name in a CREATE command...
SuSE 10 Security Update : libxml (ZYPP Patch Number 6482)
This update of libxml does not use pointers after they were freed anymore. CVE-2009-2416 Additionally a stack-based buffer overflow was fixed while parsing the root XML document. CVE-2009-2414 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, In...
SuSE 10 Security Update : the Linux kernel (ZYPP Patch Number 7303)
This kernel update for the SUSE Linux Enterprise 10 SP3 kernel fixes several security issues and bugs. The following security issues were fixed : - A local attacker could use a Oops kernel crash caused by other flaws to write a 0 byte to a attacker controlled address in the kernel. This could lea...
[ MDVSA-2011:015 ] pcsc-lite
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2011:015 http://www.mandriva.com/security/ Package : pcsc-lite Date : January 20, 2011 Affected: 2009.0, 2010.0, 2010.1, Corporate 4.0, Enterprise Server 5.0 Problem Description: A vulnerability has been found an...
SuSE 11.1 Security Update : IBM Java 6 (SAT Patch Number 2553)
This update of IBM Java 6 to Service Request 8 to fixes the following security issues : - Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, and 1.4.225 allows remote attackers to affect confidentiality via unkno...
Mandriva Update for xfig MDVSA-2011:010 (xfig)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
CVE-2011-0501
Stack-based buffer overflow in Music Animation Machine MIDI Player 2006aug19 Release 035 and possibly other versions allows user-assisted remote attackers to execute arbitrary code via a long line in a .mamx file...
CVE-2011-0495
Stack-based buffer overflow in the asturiencode function in main/utils.c in Asterisk Open Source before 1.4.38.1, 1.4.39.1, 1.6.1.21, 1.6.2.15.1, 1.6.2.16.1, 1.8.1.2, 1.8.2.; and Business Edition before C.3.6.2; when running in pedantic mode allows remote authenticated users to execute arbitrary...
CVE-2011-0488
Stack-based buffer overflow in NTWebServer.exe in the test web service in InduSoft NTWebServer, as distributed in Advantech Studio 6.1 and InduSoft Web Studio 7.0, allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a long request to TCP port 8...