CVE-2007-5747

Integer underflow in OpenOffice.org before 2.4 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a Quattro Pro QPRO file with crafted values that trigger an excessive loop and a stack-based buffer overflow...

CVE-2007-5747

Integer underflow in OpenOffice.org before 2.4 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a Quattro Pro QPRO file with crafted values that trigger an excessive loop and a stack-based buffer overflow...

xinelib-overflow.txt

xine-lib title = strdup&header0x0E; demuxnsfsendchunk: 122: char title100; 162: sprintftitle, "%s, song %d/%d", this-title, this-currentsong, this-totalsongs; - Affected applications http://xinehq.de/index.php/releases - PoC perl -e 'print "\x4E\x45\x53\x4D\x1A\x01\x01\x01\x80\x80\x18\x8A\x03\x8A...

CVE-2007-5758

Stack-based buffer overflow in db2dasrrm in the DB2 Administration Server DAS in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users to execute arbitrary code via a long DASPROF environment variable...

Secunia Research: Autonomy Keyview Applix Graphics Parsing Vulnerabilities

====================================================================== Secunia Research 08/04/2008 - Autonomy Keyview Applix Graphics Parsing Vulnerabilities - ====================================================================== Table of Contents Affected...

CVE-2008-0962

Stack-based buffer overflow in the File System Manager for EMC DiskXtender 6.20.060 allows remote authenticated users to execute arbitrary code via a crafted request to the RPC interface...

CVE-2008-0962

Stack-based buffer overflow in the File System Manager for EMC DiskXtender 6.20.060 allows remote authenticated users to execute arbitrary code via a crafted request to the RPC interface...

CVE-2008-0962

EMC DiskXtender 6.20.060’s File System Manager is affected by a stack-based buffer overflow in the RPC interface (UUID b157b800-aef5-11d3-ae49-00600834c15f) that can allow remote authenticated users to execute arbitrary code. The vulnerability arises from improper validation of string length in c...

Secunia Research: Autonomy Keyview Folio Flat File Parsing Buffer Overflows

====================================================================== Secunia Research 08/04/2008 - Autonomy Keyview Folio Flat File Parsing Buffer Overflows - ====================================================================== Table of Contents Affected...

CVE-2008-1724

Stack-based buffer overflow in the IActiveXTransfer.FileTransfer method in the SecureTransport FileTransfer ActiveX control in vcsten.dll 1.0.0.5 in Tumbleweed SecureTransport Server before 4.6.1 Hotfix 20 allows remote attackers to execute arbitrary code via a long remoteFile parameter...

CVE-2007-6020

CVE-2007-6020 describes multiple stack-based buffer overflows in the Folio Flat File speed reader (foliosr.dll) of Autonomy KeyView 10.3.0.0, used by IBM Lotus Notes and Symantec Mail Security (SMSSMTP/Exchange/Domino) and activePDF DocConverter. Secunia and NVD detail that boundary errors occur ...

CVE-2008-1087

Stack-based buffer overflow in GDI in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, Vista, and Server 2008 allows remote attackers to execute arbitrary code via an EMF image file with crafted filename parameters, aka "GDI Stack Overflow Vulnerability."...

CVE-2008-1087

Stack-based buffer overflow in GDI in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, Vista, and Server 2008 allows remote attackers to execute arbitrary code via an EMF image file with crafted filename parameters, aka "GDI Stack Overflow Vulnerability."...

CVE-2008-1697

Stack-based buffer overflow in ovwparser.dll in HP OpenView Network Node Manager OV NNM 7.53, 7.51, and earlier allows remote attackers to execute arbitrary code via a long URI in an HTTP request processed by ovas.exe, as demonstrated by a certain topology/homeBaseView request. NOTE: some of thes...

Stack overflow

Stack-based buffer overflow in the PGMWebHandler::parserequest function in the StarTeam Multicast Service component STMulticastService 6.4 in Borland CaliberRM 2006 allows remote attackers to execute arbitrary code via a large HTTP request...

CVE-2008-1602

Stack-based buffer overflow in Orbit downloader 2.6.3 and 2.6.4 allows remote attackers to execute arbitrary code via a long download URL, which is not properly handled during Unicode conversion for a balloon notification after a download has failed...

openSUSE 10 Security Update : java-1_5_0-sun (java-1_5_0-sun-5133)

Sun Java was updated to 1.5.0u15 to fix following security vulnerabilities : - CVE-2008-1158: Unspecified vulnerability in the Virtual Machine for Sun Java Runtime Environment JRE and JDK 6 Update 4 and earlier, 5.0 Update 14 and earlier, and SDK/JRE 1.4.216 and earlier allows remote attackers...

openSUSE 10 Security Update : java-1_4_2-sun (java-1_4_2-sun-5130)

Sun Java was updated to 1.4.2u17 to fix following security vulnerabilities : - CVE-2008-1158: Unspecified vulnerability in the Virtual Machine for Sun Java Runtime Environment JRE and JDK 6 Update 4 and earlier, 5.0 Update 14 and earlier, and SDK/JRE 1.4.216 and earlier allows remote attackers...

CVE-2008-1628

Stack-based buffer overflow in the auditlogusercommand function in lib/auditlogging.c in Linux Audit before 1.7 might allow remote attackers to execute arbitrary code via a long command argument. NOTE: some of these details are obtained from third party information...

CVE-2008-0924

Stack-based buffer overflow in the DoLBURPRequest function in libnldap in ndsd in Novell eDirectory 8.7.3.9 and earlier, and 8.8.1 and earlier in the 8.8.x series, allows remote attackers to cause a denial of service daemon crash or CPU consumption or execute arbitrary code via a long delRequest...