CVE-2005-2856

CVE-2005-2856 describes a stack-based buffer overflow in the WinACE UNACEV2.DLL used by many products (e.g., ALZip, Total Commander, IZArc, BitZipper, UltimateZip, etc.). The flaw occurs when extracting an ACE archive with an overly long filename, allowing user-assisted attackers to execute arbit...

CVE-2005-2810

Urban (software) before version 1.5.3 contains multiple stack-based buffer overflows exploitable by a long HOME environment variable, enabling local users to escalate privileges through (1) config.cc, (2) game.cc, (3) highscor.cc, or (4) meny.cc. Root cause: improper handling of environment data ...

CVE-2005-2558

Stack-based buffer overflow in the initsyms function in MySQL 4.0 before 4.0.25, 4.1 before 4.1.13, and 5.0 before 5.0.7-beta allows remote authenticated users who can create user-defined functions to execute arbitrary code via a long functionname field...

CVE-2005-1272

Stack-based buffer overflow in the Backup Agent for Microsoft SQL Server in BrightStor ARCserve Backup Agent for SQL Server 11.0 allows remote attackers to execute arbitrary code via a long string sent to port 1 6070 or 2 6050...

CVE-2005-1272

Stack-based buffer overflow in the Backup Agent for Microsoft SQL Server in BrightStor ARCserve Backup Agent for SQL Server 11.0 allows remote attackers to execute arbitrary code via a long string sent to port 1 6070 or 2 6050...

CVE-2004-2269

The CVE-2004-2269 entry concerns a stack-based buffer overflow in pads.c of Passive Asset Detection System (Pads). The vulnerability could allow local users to execute arbitrary code via a long report file name argument. Note that Pads is not normally installed setuid, which may affect exploitabi...

[Full-disclosure] ALT-N MDaemon multiple vulnerabilities

Hello this is kcope, there are two remote vulnerabilities in the latest ALT-N MDaemon imapd product i don't know if any of them is exploitable .. the stack based buffer overflow seems promising, but it's not preauth so i didn't investigate it further. 1. Remote denial of service in AUTHENTICATE...

CVE-2005-2210

CVE-2005-2210 describes a stack-based buffer overflow in Internet Download Manager 4.05 when processing a long URL, allowing remote code execution. The connected PT-2005-3139 entry confirms affected software and version, noting the issue is triggered by a long URL and that no fix/version is liste...

CVE-2005-2081

Stack-based buffer overflow in the function that parses commands in Asterisk 1.0.7, when the 'write = command' option is enabled, allows remote attackers to execute arbitrary code via a command that has two double quotes followed by a tab character...

CVE-2005-1814

The CVE-2005-1814 entry describes a stack-based buffer overflow in PicoWebServer 1.0. The vulnerability occurs when processing a long URL, which can lead to a denial of service (application crash) and potentially arbitrary code execution. Affected component is the server’s URL handling/parsing lo...

CVE-2004-2131

CVE-2004-2131 affects IBM Informix Dynamic Server (IDS) 9.40.xC3 and earlier. The flaw is a stack-based buffer overflow in ontape triggered by a long ONCONFIG environment variable, allowing local users with DSA privileges to execute arbitrary code. Affected component is ontape; root cause is unch...

CVE-2005-1679

Stack-based buffer overflow in the error directive in picasm 1.12b and earlier allows attackers to execute arbitrary code via a long error message...

CVE-2005-1256

Stack-based buffer overflow in the IMAP daemon IMAPD32.EXE in IMail 8.13 in Ipswitch Collaboration Suite ICS, and other versions before IMail Server 8.2 Hotfix 2, allows remote authenticated users to execute arbitrary code via a STATUS command with a long mailbox name...

iDEFENSE Security Advisory 05.24.05: Ipswitch IMail IMAP SELECT Command DoS Vulnerability

Ipswitch IMail IMAP SELECT Command DoS Vulnerability iDEFENSE Security Advisory 05.24.05 www.idefense.com/application/poi/display?id=241&type=vulnerabilities May 24, 2005 I. BACKGROUND Ipswitch IMail server is a Windows based messaging solution with a customer base of over 53 million users. More...

CVE-2005-1679

Stack-based buffer overflow in the error directive in picasm 1.12b and earlier allows attackers to execute arbitrary code via a long error message...

CVE-2005-1679

Stack-based buffer overflow in the error directive in picasm 1.12b and earlier allows attackers to execute arbitrary code via a long error message...

CVE-2004-2086

Stack-based buffer overflow in results.stm for Sambar Server before the 6.0 production release allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via an HTTP POST request with a long query parameter...

CVE-2005-1544

CVE-2005-1544 describes a stack-based buffer overflow in libTIFF prior to 3.7.2, triggered while processing a TIFF file with a malformed BitsPerSample tag. This allows remote attackers to execute arbitrary code. The OpenVAS and distro advisories (e.g., Debian DSA-755-1, Ubuntu USN-130-1, Mandrake...

CVE-2005-1261

CVE-2005-1261 is a stack-based buffer overflow in Gaim's URL parsing that affects versions before 1.3.0. A remote attacker could trigger arbitrary code execution by sending an IM containing a very large URL. Public disclosures and advisories (SUSE, OpenVAS/Gentoo, Mandrake/CentOS/Ubuntu/Nessus co...

RHEL 2.1 : gaim (RHSA-2005:432)

An updated gaim package that fixes security issues is now available for Red Hat Enterprise Linux 2.1. This update has been rated as having critical security impact by the Red Hat Security Response Team. The Gaim application is a multi-protocol instant messaging client. A stack based buffer overfl...