openSUSE Security Update : libnetpbm-devel (libnetpbm-devel-2011)

This update of netpbm fxes a stack-based buffer overflow that could be triggered while processing the contents of XPM headers in image files. CVE-2009-4274: CVSS v2 Base Score: 5.8 moderate AV:N/AC:M/Au:N/C:N/I:P/A:P: Buffer Errors CWE-119 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

CVE-2009-4676

Stack-based buffer overflow in JetCast.exe 2.0.4.1109 in jetAudio 7.5.2 and 7.5.3.15 allows remote attackers to execute arbitrary code via a long title in a FLAC file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

CVE-2009-4668

JetAudio jetCast Title Processing Buffer Overflow (CVE-2009-4668) involves a stack-based overflow in JetCast.exe 2.0.4.1109 used by jetAudio 7.5.2 and 7.5.3.15. An attacker can trigger arbitrary code execution by providing a crafted long ID3 tag in an MP3 file, due to a buffer overflow in the Tit...

CVE-2009-2754

Integer signedness error in the authentication functionality in librpc.dll in the Informix Storage Manager ISM Portmapper service aka portmap.exe, as used in IBM Informix Dynamic Server IDS 10.x before 10.00.TC9 and 11.x before 11.10.TC3 and EMC Legato NetWorker, allows remote attackers to execut...

CVE-2009-4660

Stack-based buffer overflow in the AntServer Module AntServer.exe in BigAnt IM Server 2.50 allows remote attackers to execute arbitrary code via a long GET request to TCP port 6660...

CVE-2009-4660

CVE-2009-4660: BigAnt IM Server 2.50 has a stack-based buffer overflow in the AntServer.exe module (AntServer) that lets a remote attacker execute arbitrary code by sending a long GET request to TCP port 6660. Affected: BigAnt IM Server 2.50 (and related references note the BigAnt server family)....

CVE-2010-0919

The CVE-2010-0919 issue is a stack-based buffer overflow in the Lotus Domino Web Access ActiveX control (dwa8.dll/dwa8w.dll) used by IBM Lotus iNotes. The vulnerability arises when processing a long URL argument, copying it into a fixed-size stack buffer without length checks, which can lead to r...

CVE-2010-0919

Stack-based buffer overflow in the Lotus Domino Web Access ActiveX control in IBM Lotus iNotes aka Domino Web Access or DWA 6.5, 7.0 before 7.0.4, 8.0, 8.0.2, and before 229.281 for Domino 8.0.2 FP4 allows remote attackers to execute arbitrary code via a long URL argument to an unspecified method...

Debian DSA-1917-1 : mimetex - several vulnerabilities

Several vulnerabilities have been discovered in mimetex, a lightweight alternative to MathML. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-1382 Chris Evans and Damien Miller, discovered multiple stack-based buffer overflow. An attacker could...

Mandriva Update for netpbm MDVSA-2010:039 (netpbm)

Check for the Version of netpbm OpenVAS Vulnerability Test Mandriva Update for netpbm MDVSA-2010:039 netpbm Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

CVE-2009-4643

Stack-based buffer overflow in dsInstallerService.dll in the Juniper Installer Service, as used in Juniper Odyssey Access Client 4.72.11421.0 and other products, allows remote attackers to execute arbitrary code via a long string in a malformed DSSETUPSERVICECMDUNINSTALL command to the...

CVE-2009-4643

Stack-based buffer overflow in dsInstallerService.dll in the Juniper Installer Service, as used in Juniper Odyssey Access Client 4.72.11421.0 and other products, allows remote attackers to execute arbitrary code via a long string in a malformed DSSETUPSERVICECMDUNINSTALL command to the...

Wireshark 1.2.5 - LWRES getaddrbyname Buffer Overflow

Wireshark 1.2.5 - LWRES getaddrbyname Buffer Overflow !/usr/bin/env python Wireshark 1.2.5 LWRES getaddrbyname stack-based buffer overflow Discovered by babi Reference: http://www.exploit-db.com/exploits/11288 Exploit Dev by Nullthreat & Pure|Hate import socket, sys try: host = sys.argv1 except:...

Security fix for the ALT Linux 5 package netpbm version 10.35.32-alt1.M51.1

Feb. 13, 2010 Vladimir Lettiev 10.35.32-alt1.M51.1 - fixed stack-based buffer overflow CVE-2009-4274 - fixed build + netpbm-10.35-alt-fix-overflow-destination-buffer.patch + netpbm-10.35-fix-gcc43.patch backported fix...

Stack overflow

FFmpeg 0.5 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unknown vectors that trigger a stack-based buffer overflow...

CVE-2009-4637

FFmpeg 0.5 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unknown vectors that trigger a stack-based buffer overflow...

CVE-2009-4635

FFmpeg 0.5 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted MOV container with improperly ordered tags that cause 1 mov.c and 2 utils.c to use inconsistent codec types and identifiers, leading to processing of a video-structure pointer by the...

FreeBSD Ports: wireshark, wireshark-lite

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2010 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2009-4635

FFmpeg 0.5 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted MOV container with improperly ordered tags that cause 1 mov.c and 2 utils.c to use inconsistent codec types and identifiers, leading to processing of a video-structure pointer by the...

Sun Java System Web Server Multiple Vulnerabilities - Windows

Sun Java Web Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...