8439 matches found
CVE-2011-5001
Stack-based buffer overflow in the CGenericScheduler::AddTask function in cmdHandlerRedAlertController.dll in CmdProcessor.exe in Trend Micro Control Manager 5.5 before Build 1613 allows remote attackers to execute arbitrary code via a crafted IPC packet to TCP port 20101...
CVE-2010-5081
Stack-based buffer overflow in Mini-Stream RM-MP3 Converter 3.1.2.1 allows remote attackers to execute arbitrary code via a long URL in a .pls file...
Stack overflow
Stack-based buffer overflow in the CmpWebServer component in 3S CoDeSys 3.4 SP4 Patch 2 and earlier, as used on the ABB AC500 PLC and possibly other products, allows remote attackers to execute arbitrary code via a long URI to TCP port 8080...
CVE-2011-5003
Stack-based buffer overflow in the Phonetic Indexer AvidPhoneticIndexer.exe in Avid Media Composer 5.5.3 and earlier allows remote attackers to execute arbitrary code via a long request to TCP port 4659...
CVE-2009-5109
CVE-2009-5109 is a stack-based buffer overflow in Mini-Stream Ripper 3.0.1.1 that permits remote code execution through a crafted long entry in a .pls file. Public references describe attacking via specially crafted .pls files, with exploit code and proof-of-concept material (exploit-db, Metasplo...
RedHat Update for netpbm RHSA-2011:1811-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Google Chrome < 16.0.912.63 Multiple Vulnerabilities
The version of Google Chrome installed on the remote host is earlier than 16.0.912.63 and is affected by the following vulnerabilities: - Out-of-bounds read errors exist related to regex matching, libxml, the PDF parser, the SVG parser, YUV video frame handling, i18n handling in V8 and PDF cross...
Ability Server 2.34 STOR Command Stack Buffer Overflow
This module exploits a stack-based buffer overflow in Ability Server 2.34. Ability Server fails to check input size when parsing 'STOR' and 'APPE' commands, which leads to a stack based buffer overflow. This plugin uses the 'STOR' command. The vulnerability has been confirmed on version 2.34 and...
CVE-2011-4052
CVE-2011-4052 affects InduSoft Web Studio (CEServer.exe in the CEServer component, Remote Agent) with versions 6.1 and 7.0. The vulnerability arises from a stack-based buffer overflow triggered by a crafted 0x15 (Remove File) operation on a long file name, allowing remote attackers to execute arb...
CVE-2011-4191
Stack-based buffer overflow in the xdrDecodeString function in XNFS.NLM in Novell NetWare 6.5 SP8 allows remote attackers to execute arbitrary code or cause a denial of service abend or NFS outage via long packets...
CVE-2009-5028
Stack-based buffer overflow in Namazu before 2.0.20 allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a crafted request containing an empty uri field...
CVE-2011-3173
Stack-based buffer overflow in the GetDriverSettings function in nipplib.dll in the iPrint client in Novell Open Enterprise Server 2 aka OES2 SP3 allows remote attackers to execute arbitrary code via a long 1 hostname or 2 port field...
eSignal WinSig.exe long StyleTemplate buffer overflow
Added: 11/21/2011 CVE: CVE-2011-3494 BID: 49600 OSVDB: 75456 Background eSignal is a tool which provides real-time financial and market information. Problem WinSig.exe in eSignal 10.6.2425 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code v...
Android 'vold'释放后使用本地特权提升漏洞
Bugtraq ID: 50598 CVE ID:CVE-2011-4123 Open Handset Alliance Android是一款超过30家科技与移动电话公司所组成的团体开发的免费的移动电话平台。 在Android平台上"log"组的本地用户向vold "volume daemon"发送畸形消息,可触发基于栈的缓冲区溢出。通过释放任意堆对象触发释放后使用错误,可在所有Froyo 2.2.x和Gingerbread 2.4.x设备上提升特权。不过看起来在Honeycomb 3.x中已经得到修补。 Open Handset Alliance Android 2.3.5 Open...
AbsoluteFTP 'LIST' Command Remote Buffer Overflow Vulnerability
This host is installed with AbsoluteFTP and is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: gbabsoluteftplistcmdbofvuln.nasl 5424 2017-02-25 16:52:36Z teissa $ AbsoluteFTP 'LIST' Command Remote Buffer Overflow Vulnerability Authors: Sooraj KS Copyright: Copyright c 2011...
MS11-021 Microsoft Office 2007 Excel .xlb Buffer Overflow
This module exploits a vulnerability found in Excel of Microsoft Office 2007. By supplying a malformed .xlb file, an attacker can control the content source of a memcpy routine, and the number of bytes to copy, therefore causing a stack- based buffer overflow. This results in arbitrary code...
Microsoft Excel 2007 - '.xlb' Local Buffer Overflow (MS11-021) (Metasploit)
$Id: ms11021xlbbof.rb 14172 2011-11-06 20:16:34Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...
RHEL 6 : php53 and php (RHSA-2011:1423)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:1423 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. A signedness issue was found in the way the PHP crypt...
RedHat Update for php53 and php RHSA-2011:1423-01
Check for the Version of php53 and php OpenVAS Vulnerability Test RedHat Update for php53 and php RHSA-2011:1423-01 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
Moderate: Red Hat Security Advisory: php53 and php security update
Updated php53 and php packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6 respectively. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detail...