CVE-2007-6252

Multiple stack-based buffer overflows in the Learn2 Corporation STRunner aka Street Technologies ActiveX control in iestm32.dll allow remote attackers to execute arbitrary code via unspecified vectors...

CVE-2007-6016

Multiple stack-based buffer overflows in the PVATLCalendar.PVCalendar.1 ActiveX control in pvcalendar.ocx in the scheduler component in the Media Server in Symantec Backup Exec for Windows Server BEWS 11d 11.0.6235 and 11.0.7170, and 12.0 12.0.1364, allow remote attackers to execute arbitrary cod...

Stack overflow

Stack-based buffer overflow in Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before 5.1.6.31, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a malformed RAR file to...

Stack overflow

Multiple stack-based buffer overflows in Symark PowerBroker 2.8 through 5.0.1 allow local users to gain privileges via a long argv0 string when executing 1 pbrun, 2 pbsh, or 3 pbksh. NOTE: the product is often installed in environments with trust relationships that facilitate subsequent remote...

RHEL 4 / 5 : ghostscript (RHSA-2008:0155)

The remote Redhat Enterprise Linux 4 / 5 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2008:0155 advisory. - ghostscript: stack-based buffer overflow in .seticcspace operator CVE-2008-0411 Note that Nessus has not tested for this issue but has instead...

CVE-2008-1044

The CVE-2008-1044 vulnerability is a stack-based buffer overflow in Move Media Player’s Quantum Streaming Player ActiveX control (QSP2IE.QSP2IE) used by Move Media Player. It occurs in the qsp2ie07076007.dll (7.7.6.7) and qsp2ie07074039.dll (7.7.4.39) when processing a long argument to the Upload...

CVE-2008-0871

Multiple stack-based buffer overflows in Now SMS/MMS Gateway 2007.06.27 and earlier allow remote attackers to execute arbitrary code via a 1 long password in an Authorization header to the HTTP service or a 2 large packet to the SMPP service...

Stack overflow

Multiple stack-based buffer overflows in the legacy modjk2 2.0.3-DEV and earlier Apache module allow remote attackers to execute arbitrary code via a long 1 Host header, or 2 Hostname within a Host header...

CVE-2008-0766

CVE-2008-0766 affects Brooks Remote Print Manager (RPM) for Windows, specifically RpmSrvc.exe in RPM 4.5.1.11 and earlier (Elite and Select). The flaw is a stack-based buffer overflow triggered by a long filename in a "Receive data file" LPD command. This enables remote attackers to execute arbit...

CVE-2008-0766

Stack-based buffer overflow in RpmSrvc.exe in Brooks Remote Print Manager RPM 4.5.1.11 and earlier Elite and Select for Windows allows remote attackers to execute arbitrary code via a long filename in a "Receive data file" LPD command. NOTE: some of these details are obtained from third party...

CVE-2008-0639

Stack-based buffer overflow in the EnumPrinters function in the Spooler service nwspool.dll in Novell Client 4.91 SP2, SP3, and SP4 for Windows allows remote attackers to execute arbitrary code via a crafted RPC request, aka Novell bug 353138, a different vulnerability than CVE-2006-5854. NOTE:...

CVE-2008-0108

Stack-based buffer overflow in wkcvqd01.dll in Microsoft Works 6 File Converter, as used in Office 2003 SP2 and SP3, Works 8.0, and Works Suite 2005, allows remote attackers to execute arbitrary code via a .wps file with crafted field lengths, aka "Microsoft Works File Converter Field Length...

CVE-2008-0553

The CVE-2008-0553 issue is a stack-based buffer overflow in Tk’s GIF image handling (ReadImage in tkImgGIF.c) in Tcl/Tk prior to 8.5.1, which could allow remote code execution via a crafted GIF. Impact is partial confidentiality/integrity/availability; exploitation could be remote over the networ...

CVE-2008-0553

Stack-based buffer overflow in the ReadImage function in tkImgGIF.c in Tk Tcl/Tk before 8.5.1 allows remote attackers to execute arbitrary code via a crafted GIF image, a similar issue to CVE-2006-4484...

CVE-2008-0492

Stack-based buffer overflow in the Persits.XUpload.2 ActiveX control in XUpload.ocx 3.0.0.4 and earlier in Persits XUpload 3.0 allows remote attackers to execute arbitrary code via a long argument to the AddFile method. NOTE: some of these details are obtained from third party information...

CVE-2008-0492

CVE-2008-0492 affects the Persits XUpload ActiveX control (XUpload.ocx 3.0.0.4 and earlier). A stack-based buffer overflow is triggered by a long argument to the AddFile method, allowing remote code execution. The CVSS notes a network vector, no authentication, and partial impact to confidentiali...

CVE-2008-0492

Stack-based buffer overflow in the Persits.XUpload.2 ActiveX control in XUpload.ocx 3.0.0.4 and earlier in Persits XUpload 3.0 allows remote attackers to execute arbitrary code via a long argument to the AddFile method. NOTE: some of these details are obtained from third party information...

CVE-2008-0477

Stack-based buffer overflow in the QMPUpgrade.Upgrade.1 ActiveX control in QMPUpgrade.dll 1.0.0.1 in Move Networks Upgrade Manager allows remote attackers to execute arbitrary code via a long first argument to the Upgrade method. NOTE: some of these details are obtained from third party informati...

CVE-2008-0477

Stack-based buffer overflow in the QMPUpgrade.Upgrade.1 ActiveX control in QMPUpgrade.dll 1.0.0.1 in Move Networks Upgrade Manager allows remote attackers to execute arbitrary code via a long first argument to the Upgrade method. NOTE: some of these details are obtained from third party informati...

CVE-2008-0467

Stack-based buffer overflow in Firebird before 2.0.4, and 2.1.x before 2.1.0 RC1, might allow remote attackers to execute arbitrary code via a long username...