Oracle Solaris Third-Party Patch Update : quagga (cve_2013_2236_buffer_errors)

The remote Solaris system is missing necessary patches to address security updates : - Stack-based buffer overflow in the newmsglsachangenotify function in the OSPFD API ospfapi.c in Quagga before 0.99.22.2, when --enable-opaque-lsa and the -a command line option are used, allows remote attackers...

GetGo Download Manager HTTP Response Buffer Overflow Exploit

Exploit for windows platform in category remote exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'GetGo Download Manager HTTP Response Buffer Overflow', 'Description' = %q...

Oracle Solaris Third-Party Patch Update : icu (multiple_vulnerabilities_in_international_components)

The remote Solaris system is missing necessary patches to address security updates : - The International Components for Unicode ICU functionality in Google Chrome before 13.0.782.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...

Oracle Solaris Third-Party Patch Update : libtiff (cve_2012_5581_denial_of)

The remote Solaris system is missing necessary patches to address security updates : - Stack-based buffer overflow in tifdir.c in LibTIFF before 4.0.2 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted DOTRANGE tag in a TIFF image...

GetGo Download Manager HTTP Response Buffer Overflow

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'GetGo Download Manager HTTP Response Buffer Overflow', 'Description' = %q This module exploits a stack-based buffer overflow...

Stack overflow

Multiple stack-based buffer overflows in pdmwService.exe in SolidWorks Workgroup PDM 2014 SP2 allow remote attackers to execute arbitrary code via a long string in a 1 2001, 2 2002, or 3 2003 opcode to port 3000...

Updated ettercap packages fix security vulnerabilities

Updated ettercap package fixes security vulnerabilities: Heap-based buffer overflow in the dissectorpostgresql function in dissectors/ecpostgresql.c in Ettercap before 8.1 allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted password length value...

BlazeDVD-Pro-player-6.1-Stack-Based-Buffer

BlazeDVD Pro player 6.1 Local stack based buffer overflow Author: PuN1sh3r Email: [email protected] Date: Mon Jul 15 03:01:37 EDT 2013 Vendor link: http://www.blazevideo.com/download.htmm Software Link: http://www.blazevideo.com/download.php?product=BlazeDVDPro App Version: 6.1 $file =...

CVE-2014-9451

Multiple stack-based buffer overflows in the DIVA web service API /webservice in VDG Security SENSE formerly DIVA 2.3.13 allow remote attackers to execute arbitrary code via the 1 user or 2 password parameter in an AuthenticateUser request...

CVE-2014-8184

A vulnerability was found in liblouis, versions 2.5.x before 2.5.4. A stack-based buffer overflow was found in findTable in liblouis. An attacker could create a malicious file that would cause applications that use liblouis such as Orca to crash, or potentially execute arbitrary code when opened...

GLSA-201412-46 : LittleCMS: Denial of Service

The remote host is affected by the vulnerability described in GLSA-201412-46 LittleCMS: Denial of Service Multiple stack-based buffer overflows and a profile parser error have been found in LittleCMS. Impact : A remote attacker could entice a user or automated system to open a specially crafted...

Stack overflow

Multiple stack-based buffer overflows in VideoLAN VLC media player before 1.0.2 allow remote attackers to execute arbitrary code via 1 a crafted ASF file, related to the ASFObjectDumpDebug function in modules/demux/asf/libasf.c; 2 a crafted AVI file, related to the AVIChunkDumpDebuglevel function...

CVE-2011-3623

Multiple stack-based buffer overflows in VideoLAN VLC media player before 1.0.2 allow remote attackers to execute arbitrary code via 1 a crafted ASF file, related to the ASFObjectDumpDebug function in modules/demux/asf/libasf.c; 2 a crafted AVI file, related to the AVIChunkDumpDebuglevel function...

Apple Patches NTP Vulnerabilities in First Automated Patch

Apple last night for the first time pushed an automated patch to Mac OS X users, taking care of critical Network Time Protocol NTP vulnerabilities. The fix was delivered automatically and did not require Mac users to restart their machines. The latest security issue in NTP, which is used by...

Stack overflow

Multiple stack-based buffer overflows in ntpd in NTP before 4.2.8 allow remote attackers to execute arbitrary code via a crafted packet, related to 1 the cryptorecv function when the Autokey Authentication feature is used, 2 the ctlputdata function, and 3 the configure function...

CVE-2014-9379

The radiusgetattribute function in dissectors/ecradius.c in Ettercap 0.8.1 performs an incorrect cast, which allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via unspecified vectors, which triggers a stack-based buffer overflow...

Stack overflow

The radiusgetattribute function in dissectors/ecradius.c in Ettercap 0.8.1 performs an incorrect cast, which allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via unspecified vectors, which triggers a stack-based buffer overflow...

CVE-2014-8118

Integer overflow in RPM 4.12 and earlier allows remote attackers to execute arbitrary code via a crafted CPIO header in the payload section of an RPM file, which triggers a stack-based buffer overflow...

Integer overflow

Integer overflow in RPM 4.12 and earlier allows remote attackers to execute arbitrary code via a crafted CPIO header in the payload section of an RPM file, which triggers a stack-based buffer overflow...

CVE-2014-8118

Integer overflow in RPM 4.12 and earlier allows remote attackers to execute arbitrary code via a crafted CPIO header in the payload section of an RPM file, which triggers a stack-based buffer overflow...