CVE-2010-5194

Stack-based buffer overflow in the Image2PDF function in the SCRIBBLE.ScribbleCtrl.1 ActiveX control ImageViewer2.ocx in Viscom Image Viewer CP Pro 8.0, Gold 5.5, Gold 6.0, and earlier allows remote attackers to execute arbitrary code via a long strPDFFile parameter...

CVE-2010-5193

CVE-2010-5193 : A stack-based buffer overflow exists in the SCRIBBLE.ScribbleCtrl.1 ActiveX control (ImageViewer2.ocx) used by Viscom Image Viewer CP Pro 8.0 and Gold 6.0. The vulnerability occurs in TIFMergeMultiFiles and allows remote code execution via a long strDelimit parameter. It is a netw...

[slackware-security] glibc

New glibc packages are available for Slackware 13.1, 13.37, and -current to fix security issues. Here are the details from the Slackware 13.37 ChangeLog: patches/packages/glibc-2.13-i486-6slack13.37.txz: Rebuilt. Patched multiple integer overflows in the strtod, strtof, strtold, and strtodl...

Stack overflow

Multiple unspecified vulnerabilities in HP iNode Management Center before iNode PC 5.1 E0304 allow remote attackers to execute arbitrary code via crafted input, as demonstrated by a stack-based buffer overflow in iNodeMngChecker.exe for a crafted 0x0A0BF007 packet...

CentOS Update for glibc CESA-2012:1207 centos5

Check for the Version of glibc OpenVAS Vulnerability Test CentOS Update for glibc CESA-2012:1207 centos5 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

CentOS Update for glibc CESA-2012:1208 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Scientific Linux Security Update : glibc on SL5.x i386/x86_64 (20120827)

The glibc packages provide the standard C and standard math libraries used by multiple programs on the system. Without these libraries, the Linux system cannot function properly. Multiple integer overflow flaws, leading to stack-based buffer overflows, were found in glibc's functions for converti...

CentOS Update for glibc CESA-2012:1207 centos5

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Scientific Linux Security Update : glibc on SL6.x i386/x86_64 (20120827)

The glibc packages provide the standard C and standard math libraries used by multiple programs on the system. Without these libraries, the Linux system cannot function properly. Multiple integer overflow flaws, leading to stack-based buffer overflows, were found in glibc's functions for converti...

RedHat Update for glibc RHSA-2012:1208-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Stack overflow

Stack-based buffer overflow in the BCAAA component before build 60258, as used by Blue Coat ProxySG 4.2.3 through 6.1 and ProxyOne, allows remote attackers to execute arbitrary code via a large packet to the synchronization port 16102/tcp...

Integer overflow

Multiple integer overflows in the 1 strtod, 2 strtof, 3 strtold, 4 strtodl, and other unspecified "related functions" in stdlib in GNU C Library aka glibc or libc6 2.16 allow local users to cause a denial of service application crash and possibly execute arbitrary code via a long string, which...

CVE-2012-3480

Multiple integer overflows in the 1 strtod, 2 strtof, 3 strtold, 4 strtodl, and other unspecified "related functions" in stdlib in GNU C Library aka glibc or libc6 2.16 allow local users to cause a denial of service application crash and possibly execute arbitrary code via a long string, which...

CVE-2012-4353

Stack-based buffer overflow in RunTime.exe in Sielco Sistemi Winlog Pro SCADA before 2.07.17 and Winlog Lite SCADA before 2.07.17 allows remote attackers to execute arbitrary code via a crafted port-46824 TCP packet that triggers an incorrect file-open attempt by the TCPIPSBinOpenFileFP function,...

CVE-2012-4353

CVE-2012-4353 is a stack-based buffer overflow in RunTime.exe of Sielco Sistemi Winlog Pro SCADA (before 2.07.17) and Winlog Lite SCADA (before 2.07.17). A remote attacker can trigger arbitrary code execution by sending a crafted TCP packet to port 46824, causing an incorrect file-open by the _TC...

Adobe Reader < 10.1.4 / 9.5.2 Multiple Vulnerabilities (APSB12-16)

The version of Adobe Reader installed on the remote host is earlier than 10.1.4 / 9.5.2 and is, therefore, affected by multiple vulnerabilities : - An unspecified stack-based buffer overflow error exists. CVE-2012-2049 - An unspecified buffer overflow error exists. CVE-2012-2050 - Numerous...

Stack overflow

Multiple stack-based buffer overflows in msgserver.exe in SAP NetWeaver ABAP 7.x allow remote attackers to cause a denial of service crash and execute arbitrary code via a 1 long parameter value, 2 crafted string size field, or 3 long Parameter Name string in a package with opcode 0x43 and sub...

CVE-2012-1853

CVE-2012-1853 is a stack-based buffer overflow in the Remote Administration Protocol (RAP) handling of the LanmanWorkstation service on Microsoft Windows XP SP3. The vulnerability arises from the RAP response processing in the LAN Manager/Remote Administration Protocol stack, allowing a remote at...

SuSE 10 Security Update : bash (ZYPP Patch Number 8217)

Parsing the /dev/fd prefix could have lead to a stack-based buffer overflow which could have been exploited by attackers to bypass security restrictions. CVE-2012-3410 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...

openSUSE: Security Advisory for csound (openSUSE-SU-2012:0315-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...