CVE-2008-1044

The CVE-2008-1044 vulnerability is a stack-based buffer overflow in Move Media Player’s Quantum Streaming Player ActiveX control (QSP2IE.QSP2IE) used by Move Media Player. It occurs in the qsp2ie07076007.dll (7.7.6.7) and qsp2ie07074039.dll (7.7.4.39) when processing a long argument to the Upload...

CVE-2008-0766

CVE-2008-0766 affects Brooks Remote Print Manager (RPM) for Windows, specifically RpmSrvc.exe in RPM 4.5.1.11 and earlier (Elite and Select). The flaw is a stack-based buffer overflow triggered by a long filename in a "Receive data file" LPD command. This enables remote attackers to execute arbit...

CVE-2008-0766

Stack-based buffer overflow in RpmSrvc.exe in Brooks Remote Print Manager RPM 4.5.1.11 and earlier Elite and Select for Windows allows remote attackers to execute arbitrary code via a long filename in a "Receive data file" LPD command. NOTE: some of these details are obtained from third party...

CVE-2008-0639

Stack-based buffer overflow in the EnumPrinters function in the Spooler service nwspool.dll in Novell Client 4.91 SP2, SP3, and SP4 for Windows allows remote attackers to execute arbitrary code via a crafted RPC request, aka Novell bug 353138, a different vulnerability than CVE-2006-5854. NOTE:...

CVE-2008-0108

Stack-based buffer overflow in wkcvqd01.dll in Microsoft Works 6 File Converter, as used in Office 2003 SP2 and SP3, Works 8.0, and Works Suite 2005, allows remote attackers to execute arbitrary code via a .wps file with crafted field lengths, aka "Microsoft Works File Converter Field Length...

CVE-2008-0553

The CVE-2008-0553 issue is a stack-based buffer overflow in Tk’s GIF image handling (ReadImage in tkImgGIF.c) in Tcl/Tk prior to 8.5.1, which could allow remote code execution via a crafted GIF. Impact is partial confidentiality/integrity/availability; exploitation could be remote over the networ...

CVE-2008-0553

Stack-based buffer overflow in the ReadImage function in tkImgGIF.c in Tk Tcl/Tk before 8.5.1 allows remote attackers to execute arbitrary code via a crafted GIF image, a similar issue to CVE-2006-4484...

CVE-2008-0492

Stack-based buffer overflow in the Persits.XUpload.2 ActiveX control in XUpload.ocx 3.0.0.4 and earlier in Persits XUpload 3.0 allows remote attackers to execute arbitrary code via a long argument to the AddFile method. NOTE: some of these details are obtained from third party information...

CVE-2008-0492

CVE-2008-0492 affects the Persits XUpload ActiveX control (XUpload.ocx 3.0.0.4 and earlier). A stack-based buffer overflow is triggered by a long argument to the AddFile method, allowing remote code execution. The CVSS notes a network vector, no authentication, and partial impact to confidentiali...

CVE-2008-0492

Stack-based buffer overflow in the Persits.XUpload.2 ActiveX control in XUpload.ocx 3.0.0.4 and earlier in Persits XUpload 3.0 allows remote attackers to execute arbitrary code via a long argument to the AddFile method. NOTE: some of these details are obtained from third party information...

CVE-2008-0477

Stack-based buffer overflow in the QMPUpgrade.Upgrade.1 ActiveX control in QMPUpgrade.dll 1.0.0.1 in Move Networks Upgrade Manager allows remote attackers to execute arbitrary code via a long first argument to the Upgrade method. NOTE: some of these details are obtained from third party informati...

CVE-2008-0477

Stack-based buffer overflow in the QMPUpgrade.Upgrade.1 ActiveX control in QMPUpgrade.dll 1.0.0.1 in Move Networks Upgrade Manager allows remote attackers to execute arbitrary code via a long first argument to the Upgrade method. NOTE: some of these details are obtained from third party informati...

CVE-2008-0467

Stack-based buffer overflow in Firebird before 2.0.4, and 2.1.x before 2.1.0 RC1, might allow remote attackers to execute arbitrary code via a long username...

CVE-2008-0378

Stack-based buffer overflow in SocksCap 2.40-051231 and earlier, when "Resolve all names remotely" is enabled, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long hostname...

CVE-2008-0065

CVE-2008-0065 describes a stack-based buffer overflow in Winamp’s Ultravox streaming metadata handling (in_mp3.dll) that could allow remote code execution when processing a long or tag. Affected Winamp versions include 5.21, 5.5, and 5.51 (with advisories noting exploitation up to ~5.24 and fix...

Winamp < 5.52 Ultravox Streaming Metadata in_mp3.dll Multiple Tag Overflow

The remote host is using Winamp, a popular media player for Windows. The version of Winamp installed on the remote Windows host reportedly contains two stack-based buffer overflows in 'inmp3.dll' when parsing Ultravox streaming metadata that can be triggered by overly-long '' and '' tag values. I...

Debian Security Advisory DSA 532-1 (libapache-mod-ssl)

The remote host is missing an update to libapache-mod-ssl announced via advisory DSA 532-1. OpenVAS Vulnerability Test $Id: deb5321.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 532-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian Security Advisory DSA 833-1 (mysql-dfsg-4.1)

The remote host is missing an update to mysql-dfsg-4.1 announced via advisory DSA 833-1. This VT has been deprecated and merged into the VT SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

CentOS 4 / 5 : tog-pegasus (CESA-2008:0002)

Updated tog-pegasus packages that fix a security issue are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. The tog-pegasus packages provide OpenPegasus Web-Based Enterprise Management WBEM...

CVE-2008-0220

CVE-2008-0220 : Multiple stack-based buffer overflows in the WebLaunch.WeblaunchCtl.1 (CWebLaunchCtl) ActiveX control in weblaunch.ocx 1.0.0.1 (Gateway Weblaunch) allow remote attackers to execute arbitrary code by sending a long string in the (1) second or (2) fourth argument to the DoWebLaunch ...