Stack overflow

Stack-based buffer overflow in the random number generator RNG implementation in the Linux kernel before 2.6.22 might allow local root users to cause a denial of service or gain privileges by setting the default wakeup threshold to a value greater than the output pool size, which triggers writing...

GLSA-200707-07 : MPlayer: Multiple buffer overflows

The remote host is affected by the vulnerability described in GLSA-200707-07 MPlayer: Multiple buffer overflows Stefan Cornelius and Reimar Doffinger of Secunia Research discovered several boundary errors in the functions cddbqueryparse, cddbparsematcheslist and cddbreadparse, each allowing for a...

CVE-2007-4005

CVE-2007-4006 is a buffer overflow in Mike Dubman’s Windows RSH daemon (rshd) 1.7/1.8 that enables remote execution of commands. Public sources describe the flaw as a remote, unchecked-input length vulnerability, with exploit references (Metasploit/Exploit-DB). Red Hat’s entry notes unknown impac...

CVE-2007-3962

CVE-2007-3962 concerns the fsplib library (fsplib.c) with two boundary errors in fsplib before 0.9 that could allow remote code execution via: (1) a long filename not handled by fsp_readdir_native when MAXNAMLEN > 255, and (2) a long dirent field in fsp_readdir. Connected advisories (Mandriva ...

fsplib -- multiple vulnerabilities

A Secunia Advisory reports: fsplib can be exploited to compromise an application using the library. A boundary error exists in the processing of file names in fspreaddirnative, which can be exploited to cause a stack-based buffer overflow if the defined MAXNAMLEN is bigger than 256. A boundary...

CVE-2007-3762

Stack-based buffer overflow in the IAX2 channel driver chaniax2 in Asterisk before 1.2.22 and 1.4.x before 1.4.8, Business Edition before B.2.2.1, AsteriskNOW before beta7, Appliance Developer Kit before 0.5.0, and s800i before 1.0.2 allows remote attackers to execute arbitrary code by sending a...

CVE-2007-3829

Multiple stack-based buffer overflows in a InterActual Player 2.60.12.0717 and b Roxio CinePlayer 3.2 allow remote attackers to execute arbitrary code via a 1 long FailURL attribute in the IAMCE ActiveX Control IAMCE.dll or a 2 long URLCode attribute in the IAKey ActiveX Control IAKey.dll. NOTE:...

CVE-2007-3771

Stack-based buffer overflow in the Internet E-mail Auto-Protect feature in Symantec AntiVirus Corporate Edition before 10.1, and Client Security before 3.1, allows local users to cause a denial of service service crash via a long 1 To, 2 From, or 3 Subject header in an outbound SMTP e-mail messag...

CVE-2007-3703

CVE-2007-3703 and CVE-2007-3984 pertain to buffer overflow vulnerabilities in the Zenturi ProgramChecker sasatl.dll 1.5.0.531 ActiveX controls. CVE-2007-3703 (Fill method) and CVE-2007-3984 (Scan method) are described as stack-based or buffer overflow flaws that could allow remote code execution ...

CVE-2007-3655

Stack-based buffer overflow in javaws.exe in Sun Java Web Start in JRE 5.0 Update 11 and earlier, and 6.0 Update 1 and earlier, allows remote attackers to execute arbitrary code via a long codebase attribute in a JNLP file...

CVE-2007-3655

Stack-based buffer overflow in javaws.exe in Sun Java Web Start in JRE 5.0 Update 11 and earlier, and 6.0 Update 1 and earlier, allows remote attackers to execute arbitrary code via a long codebase attribute in a JNLP file...

CVE-2007-3612

Stack-based buffer overflow in Visual IRC ViRC 2.0 allows remote IRC servers to execute arbitrary code via a long response to a JOIN command...

CVE-2007-3612

Stack-based buffer overflow in Visual IRC ViRC 2.0 allows remote IRC servers to execute arbitrary code via a long response to a JOIN command...

CVE-2007-3554

The CVE-2007-3554 entry describes a stack-based buffer overflow in the HPSDDX Class (SDD) ActiveX control (sdd.dll) used by HP Instant Support – Driver Check. A long argument to the queryHub function can allow remote code execution on affected hosts. The vulnerability affects the ActiveX control ...

CVE-2007-3554

Stack-based buffer overflow in the HPSDDX Class SDD ActiveX control in sdd.dll in HP Instant Support - Driver Check before 1.5.0.3 allows remote attackers to execute arbitrary code via a long argument to the queryHub function...

CVE-2007-3548

Stack-based buffer overflow in W3Filer 2.1.3 allows remote FTP servers to cause a denial of service application hang or crash and possibly execute arbitrary code by sending a large banner to a client that is sending a file...

Stack overflow

Stack-based buffer overflow in W3Filer 2.1.3 allows remote FTP servers to cause a denial of service application hang or crash and possibly execute arbitrary code by sending a large banner to a client that is sending a file...

CVE-2007-3548

Stack-based buffer overflow in W3Filer 2.1.3 allows remote FTP servers to cause a denial of service application hang or crash and possibly execute arbitrary code by sending a large banner to a client that is sending a file...

CVE-2007-3512

Stack-based buffer overflow in Lhaca File Archiver before 1.22 allows user-assisted remote attackers to execute arbitrary code via a large LHA "Extended Header Size" value in an LZH archive, a different issue than CVE-2007-3375...

Stack overflow

Stack-based buffer overflow in Lhaca File Archiver before 1.22 allows user-assisted remote attackers to execute arbitrary code via a large LHA "Extended Header Size" value in an LZH archive, a different issue than CVE-2007-3375...