GLSA-200603-05 : zoo: Stack-based buffer overflow

The remote host is affected by the vulnerability described in GLSA-200603-05 zoo: Stack-based buffer overflow Jean-Sebastien Guay-Leroux discovered a boundary error in the fullpath function in misc.c when processing overly long file and directory names in ZOO archives. Impact : An attacker could...

CVE-2006-0807

Stack-based buffer overflow in NJStar Chinese and Japanese Word Processor 4.x and 5.x before 5.10 allows user-assisted attackers to execute arbitrary code via font names in NJStar .njx documents...

CVE-2006-0807

Stack-based buffer overflow in NJStar Chinese and Japanese Word Processor 4.x and 5.x before 5.10 allows user-assisted attackers to execute arbitrary code via font names in NJStar .njx documents...

CVE-2005-2618

CVE-2005-2618 is a buffer overflow affecting IBM/Lotus Notes components, notably the Attachment Viewer UUE handling and the HTML Speed Reader, exploited via specially crafted UUE files, long ZIP/TAR file names, or long links in emails. The root cause is inadequate boundary checking in these viewe...

CVE-2006-0441

Stack-based buffer overflow in Sami FTP Server 2.0.1 allows remote attackers to execute arbitrary code via a long USER command, which triggers the overflow when the log is viewed...

[SA18480] E-Post Mail Server Products Multiple Vulnerabilities

TITLE: E-Post Mail Server Products Multiple Vulnerabilities SECUNIA ADVISORY ID: SA18480 VERIFY ADVISORY: http://secunia.com/advisories/18480/ CRITICAL: Highly critical IMPACT: Security Bypass, Exposure of system information, DoS, System access WHERE: From remote SOFTWARE: E-Post Mail Server 4.x...

Mandrake Linux Security Advisory : wget (MDKSA-2005:183)

A vulnerability in libcurl's NTLM function can overflow a stack-based buffer if given too long a user name or domain name in NTLM authentication is enabled and either a pass a user and domain name to libcurl that together are longer than 192 bytes or b allow libcurl to follow HTTP redirects and t...

CVE-2006-0097

Stack-based buffer overflow in the createnamedpipe function in libmysql.c in PHP 4.3.10 and 4.4.x before 4.4.3 for Windows allows attackers to execute arbitrary code via a long 1 arghost or 2 argunixsocket argument, as demonstrated by a long named pipe variable in the host argument to the...

CVE-2005-4734

Stack-based buffer overflow in IISWebAgentIF.dll in RSA Authentication Agent for Web aka SecurID Web Agent 5.2 and 5.3 for IIS allows remote attackers to execute arbitrary code via a long url parameter in the Redirect method...

CVE-2005-3525

Stack-based buffer overflow in an ActiveX control for the installer for Adobe Macromedia Shockwave Player 10.1.0.11 and earlier allows remote attackers to execute arbitrary code via crafted large values for unspecified parameters...

CVE-2005-4863

Stack-based buffer overflow in db2fmp in IBM DB2 7.x and 8.1 allows local users to execute arbitrary code via a long parameter...

RHEL 2.1 / 3 : netpbm (RHSA-2005:843)

Updated netpbm packages that fix two security issues are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The netpbm package contains a library of functions that support programs for handling various graphics file formats. A stack...

CVE-2005-4569

Stack-based buffer overflow in index.fts in FTGate Technology formerly known as Floosietek FTGate 4.4 aka Build 4.4.000 Oct 26 2005 allows remote attackers to execute arbitrary code via a long tzoffset value...

CVE-2005-4444

Stack-based buffer overflow in the trace message functionality in Pegasus Mail 4.21a through 4.21c and 4.30PB1 allow remote attackers to execute arbitrary code via a long POP3 reply...

CVE-2005-3863

CVE-2005-3863 describes a stack-based buffer overflow in kkstrtext.h of the ktools library (version 0.3 and earlier) used by multiple products (e.g., centericq, orpheus, motor, groan). The overflow can be triggered by a long parameter to the VGETSTRING macro and may allow an attacker to execute a...

CVE-2005-3354

Stack-based buffer overflow in the ldifgetline function in ldif.c of Sylpheed before 2.1.6 allows user-assisted attackers to execute arbitrary code by having local users import LDIF files with long lines...

CVE-2005-3354

Stack-based buffer overflow in the ldifgetline function in ldif.c of Sylpheed before 2.1.6 allows user-assisted attackers to execute arbitrary code by having local users import LDIF files with long lines...

MailEnable < 1.7 IMAP Server Multiple Vulnerabilities (ME-100008)

The remote host is running MailEnable, a commercial mail server for Windows. The IMAP server bundled with the version of MailEnable Professional or Enterprise Edition installed on the remote host is prone to a stack-based buffer overflow when handling an overly-long mailbox name in certain...

CVE-2005-2629

Integer overflow in RealNetworks RealPlayer 8, 10, and 10.5, RealOne Player 1 and 2, and Helix Player 10.0.0 allows remote attackers to execute arbitrary code via an .rm movie file with a large value in the length field of the first data packet, which leads to a stack-based buffer overflow, a...

CVE-2005-3116

Stack-based buffer overflow in a shared library as used by the Volume Manager daemon vmd in VERITAS NetBackup Enterprise Server 5.0 MP1 to MP5 and 5.1 up to MP3A allows remote attackers to execute arbitrary code via a crafted packet...