Mandriva Update for ffmpeg MDVSA-2011:060 (ffmpeg)

Check for the Version of ffmpeg OpenVAS Vulnerability Test Mandriva Update for ffmpeg MDVSA-2011:060 ffmpeg Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

Mandriva Update for ffmpeg MDVSA-2011:060 (ffmpeg)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Mandriva Linux Security Advisory : ffmpeg (MDVSA-2011:061)

Multiple vulnerabilities has been identified and fixed in ffmpeg : oggparsevorbis.c in FFmpeg 0.5 does not properly perform certain pointer arithmetic, which might allow remote attackers to obtain sensitive memory contents and cause a denial of service via a crafted file that triggers an...

HP OpenView Network Node Manager ovwebsnmpsrv.exe main Buffer Overflow

This module exploits a stack buffer overflow in HP OpenView Network Node Manager 7.53 prior to NNM01203. By specifying a long 'arg' parameter when executing the 'jovgraph.exe' CGI program, an attacker can cause a stack-based buffer overflow and execute arbitrary code. This vulnerability is...

HP OpenView Network Node Manager execvp_nc Buffer Overflow

This module exploits a stack buffer overflow in HP OpenView Network Node Manager 7.53 prior to NNM01207 or NNM01206 without the SSRT100025 hotfix. By specifying a long 'sel' parameter when calling methods within the 'webappmon.exe' CGI program, an attacker can cause a stack-based buffer overflow...

HP OpenView Network Node Manager (OV NNM) - 'ovwebsnmpsrv.exe ovutil' Remote Buffer Overflow (Metasploit)

$Id: hpnnmovwebsnmpsrvovutil.rb 12096 2011-03-23 15:44:55Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

CVE-2010-4228

Stack-based buffer overflow in NWFTPD.NLM before 5.10.02 in the FTP server in Novell NetWare allows remote authenticated users to execute arbitrary code or cause a denial of service abend via a long DELE command, a different vulnerability than CVE-2010-0625.4...

CVE-2011-1147

Multiple stack-based and heap-based buffer overflows in the 1 decodeopentype and 2 udptlrxpacket functions in main/udptl.c in Asterisk Open Source 1.4.x before 1.4.39.2, 1.6.1.x before 1.6.1.22, 1.6.2.x before 1.6.2.16.2, and 1.8 before 1.8.2.4; Business Edition C.x.x before C.3.6.3; AsteriskNOW...

CVE-2011-0344

Multiple stack-based buffer overflows in unspecified CGI programs in the Unified Maintenance Tool web interface in the embedded web server in the Communication Server CS in Alcatel-Lucent OmniPCX Enterprise before R9.0 H1.301.50 allow remote attackers to execute arbitrary code via crafted HTTP...

CVE-2010-4227

The xdrDecodeString function in XNFS.NLM in Novell Netware 6.5 before SP8 allows remote attackers to cause a denial of service abend or execute arbitrary code via a crafted, signed value in a NFS RPC request to port UDP 1234, leading to a stack-based buffer overflow...

Stack overflow

Multiple stack-based buffer overflows in the PIPIWebPlayer ActiveX control PIWebPlayer.ocx in PIPI Player 2.8.0.0 allow remote attackers to execute arbitrary code via long arguments to the 1 PlayURL or 2 PlayURLWithLocalPlayer methods...

CVE-2010-4742

Stack-based buffer overflow in a certain ActiveX control in MediaDBPlayback.DLL 2.2.0.5 in the Moxa ActiveX SDK allows remote attackers to execute arbitrary code via a long PlayFileName property value...

CVE-2010-4740

Stack-based buffer overflow in WTclient.dll in SCADA Engine BACnet OPC Client before 1.0.25 allows user-assisted remote attackers to execute arbitrary code via a crafted .csv file, related to a status log message...

CVE-2010-4740

CVE-2010-4740 describes a stack-based buffer overflow in WTclient.dll of SCADA Engine’s BACnet OPC Client prior to 1.0.25, enabling a user‑assisted remote attacker to execute arbitrary code by processing a specially crafted .csv file. Public references confirm the vulnerability affects SCADA Engi...

ZDI-11-050: IBM Informix Dynamic Server SET ENVIRONMENT Remote Code Execution Vulnerability

ZDI-11-050: IBM Informix Dynamic Server SET ENVIRONMENT Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-050 February 7, 2011 - This vulnerability is being disclosed publicly without a patch in accordance with the ZDI 180 day deadline. To view mitigations for...

CVE-2011-0913

Stack-based buffer overflow in ndiiop.exe in the DIIOP implementation in the server in IBM Lotus Domino before 8.5.3 allows remote attackers to execute arbitrary code via a GIOP getEnvironmentString request, related to the local variable cache...

CVE-2011-0919

IBM Lotus Domino’s POP3/IMAP services are affected by multiple remote buffer-overflow vulnerabilities triggered by non-printable characters in the mail-from envelope address. The flaw allows arbitrary code execution, with the ZDI advisory noting exploitation in systems with vulnerable Domino inst...

CVE-2011-0918

CVE-2011-0918 affects IBM Lotus Domino (NRouter/Router service). The issue is a stack-based buffer overflow triggered by long filenames in the Content-ID and ATTACH:CID headers of attachments within malformed calendar-request emails, allowing remote code execution. The root cause is copying heade...

CVE-2011-0915

IBM Lotus Domino 8.5.x is affected by CVE-2011-0915 due to a stack-based buffer overflow in nrouter.exe when handling a long name parameter in a Content-Type header of malformed Notes calendar (iCal) meeting requests. The root cause is an overflow in the named field during iCalendar processing, p...

Adobe Acrobat Reader rt3d.dll Multimedia Playing Arbitrary Memory Overwite Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the rt3d.dl...