CVE-2014-6184

The CVE-2014-6184 issue concerns the IBM Tivoli Storage Manager (TSM) client, specifically the dsmtca module, which is affected by a stack-based buffer overflow. The vulnerability allows a local attacker to gain elevated privileges by exploiting a fault in dsmtca on UNIX, Linux, and OS X clients....

Ubuntu 14.04 LTS : GNU binutils vulnerabilities (USN-2496-1)

"The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2496-1 advisory. Michal Zalewski discovered that the setupgroup function in libbfd in GNU binutils did not properly check group headers in ELF files. An attacker could u...

Debian DSA-3157-1 : ruby1.9.1 - security update

Multiple vulnerabilities were discovered in the interpreter for the Ruby language : - CVE-2014-4975 The encodes function in pack.c had an off-by-one error that could lead to a stack-based buffer overflow. This could allow remote attackers to cause a denial of service crash or arbitrary code...

[SECURITY] [DSA 3157-1] ruby1.9.1 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3157-1 [email protected] http://www.debian.org/security/ Alessandro Ghedini February 09, 2015 http://www.debian.org/security/faq -...

Debian Security Advisory DSA 3157-1 (ruby1.9.1 - security update)

Multiple vulnerabilities were discovered in the interpreter for the Ruby language: CVE-2014-4975 The encodes function in pack.c had an off-by-one error that could lead to a stack-based buffer overflow. This could allow remote attackers to cause a denial of service crash or arbitrary code executio...

SAP SQL Anywhere .NET Data Provider Column Alias Buffer Overflow (CVE-2014-9264)

A buffer overflow vulnerability exists in SAP SQL Anywhere .NET Data Provider. The vulnerability is caused by insufficient boundary checks in the handling of column aliases. If an application allows untrusted input to be used as the column alias in an SQL query, by sending crafted requests to the...

CVE-2014-9659

CVE-2014-9659 affects FreeType’s CFF CharString interpreter (cff/cf2intrp.c) prior to 2.5.4. After computing the hint mask, it proceeds with additional hints, allowing a crafted OpenType font to cause remote arbitrary code execution or a stack-based buffer overflow (DoS). Root cause noted as an i...

CVE-2014-9659

cff/cf2intrp.c in the CFF CharString interpreter in FreeType before 2.5.4 proceeds with additional hints after the hint mask has been computed, which allows remote attackers to execute arbitrary code or cause a denial of service stack-based buffer overflow via a crafted OpenType font. NOTE: this...

CVE-2014-9659

cff/cf2intrp.c in the CFF CharString interpreter in FreeType before 2.5.4 proceeds with additional hints after the hint mask has been computed, which allows remote attackers to execute arbitrary code or cause a denial of service stack-based buffer overflow via a crafted OpenType font. NOTE: this...

Apple-QuickTime-7.5-(.m3u)

Apple QuickTime is prone to a stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. An attacker can exploit this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely result i...

CVE-2014-9200

Stack-based buffer overflow in an unspecified DLL file in a DTM development kit in Schneider Electric Unity Pro, SoMachine, SoMove, SoMove Lite, Modbus Communication Library 2.2.6 and earlier, CANopen Communication Library 1.0.2 and earlier, EtherNet/IP Communication Library 1.0.0 and earlier, EM...

CVE-2014-9200 Schneider Electric Device Type Managers (DTMs) Stack-based Buffer Overflow

Stack-based buffer overflow in an unspecified DLL file in a DTM development kit in Schneider Electric Unity Pro, SoMachine, SoMove, SoMove Lite, Modbus Communication Library 2.2.6 and earlier, CANopen Communication Library 1.0.2 and earlier, EtherNet/IP Communication Library 1.0.0 and earlier, EM...

CVE-2014-5211

Stack-based buffer overflow in the Attachmate Reflection FTP Client before 14.1.433 allows remote FTP servers to execute arbitrary code via a large PWD response...

CVE-2014-5211

CVE-2014-5211 affects Attachmate Reflection FTP Client prior to 14.1.433. It is a stack-based buffer overflow caused by insufficient boundary checking when processing the PWD command response, allowing remote code execution in the context of the current user. Exploitation involves a crafted large...

Stack overflow

Multiple stack-based buffer overflows in jpcqmfb.c in JasPer 1.900.1 and earlier allow remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted JPEG 2000 image...

CVE-2014-8158

Multiple stack-based buffer overflows in jpcqmfb.c in JasPer 1.900.1 and earlier allow remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted JPEG 2000 image...

CVE-2014-8158

JasPer 1.900.1 and earlier contain multiple stack-based buffer overflows in jpc_qmfb.c, enabling remote attackers to crash or possibly execute arbitrary code via crafted JPEG 2000 images. The issue (CVE-2014-8158) affects the JasPer JPEG-2000 library; impact is a denial of service and potential c...

CVE-2014-8158

Multiple stack-based buffer overflows in jpcqmfb.c in JasPer 1.900.1 and earlier allow remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted JPEG 2000 image...

CVE-2014-8386

CVE-2014-8386 affects Advantech ADAMView 4.3 and earlier. It describes multiple stack-based buffer overflows that allow a remote attacker to execute arbitrary code by supplying a crafted GNI file (display properties or conditional bitmap parameters). Public references include NVD entry, Exploit-D...

Oracle Solaris Third-Party Patch Update : bash (cve_2012_3410_stack_based)

The remote Solaris system is missing necessary patches to address security updates : - Stack-based buffer overflow in lib/sh/eaccess.c in GNU Bash before 4.2 patch 33 might allow local users to bypass intended restricted shell access via a long filename in /dev/fd, which is not properly handled...