Fedora 13 : pcsc-lite-1.5.5-5.fc13 (2011-0123)

This update fixes the following security issue : A stack-based buffer overflow flaw was found in the way PC/SC Lite smart card framework decoded certain attribute values of the Answer-to-Reset ATR message, received back from the card after connecting. A local attacker could use this flaw to execu...

Vulnerabilities in DirectX Could Allow Remote Code Execution (941568)

This host is missing a critical security update according to Microsoft Bulletin MS07-064. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2011-0404

Stack-based buffer overflow in NetSupport Manager Agent for Linux 11.00, for Solaris 9.50, and for Mac OS X 11.00 allows remote attackers to execute arbitrary code via a long control hostname to TCP port 5405, probably a different vulnerability than CVE-2007-5252...

ProFTPD 1.2 - 1.3.0 sreplace Buffer Overflow (Linux)

$Id: proftpsreplace.rb 11526 2011-01-09 23:33:53Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...

Newv SmartClient 1.1.0 - NewvCommon.ocx ActiveX Control Multiple Vulnerabilities

Newv SmartClient 1.1.0 - NewvCommon.ocx ActiveX Control Multiple Vulnerabilities source: https://www.securityfocus.com/bid/45751/info The Newv SmartClient ActiveX control is prone to multiple insecure-method vulnerabilities and a stack-based buffer-overflow vulnerability. Successfully exploiting...

ProFTPD 1.2 - 1.3.0 sreplace Buffer Overflow (Linux)

This module exploits a stack-based buffer overflow in versions 1.2 through 1.3.0 of ProFTPD server. The vulnerability is within the "sreplace" function within the "src/support.c" file. The off-by-one heap overflow bug in the ProFTPD sreplace function has been discovered about 2 two years ago by...

CVE-2010-4540

Stack-based buffer overflow in the loadpresetresponse function in plug-ins/lighting/lighting-ui.c in the "LIGHTING EFFECTS LIGHT" plugin in GIMP 2.6.11 allows user-assisted remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long Position field...

CVE-2010-4523

Multiple stack-based buffer overflows in libopensc in OpenSC 0.11.13 and earlier allow physically proximate attackers to execute arbitrary code via a long serial-number field on a smart card, related to 1 card-acos5.c, 2 card-atrust-acos.c, and 3 card-starcos.c...

CVE-2010-4541

CVE-2010-4541 affects GIMP 2.6.11 via the Sphere Designer plugin (loadit function). A stack-based buffer overflow can be triggered by a long Number of lights value in a plugin configuration file, enabling user-assisted remote exploitation and potentially crashing the application or executing arbi...

CVE-2010-4541

Stack-based buffer overflow in the loadit function in plug-ins/common/sphere-designer.c in the SPHERE DESIGNER plugin in GIMP 2.6.11 allows user-assisted remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long "Number of lights" field in a...

CVE-2010-4523

Multiple stack-based buffer overflows in libopensc in OpenSC 0.11.13 and earlier allow physically proximate attackers to execute arbitrary code via a long serial-number field on a smart card, related to 1 card-acos5.c, 2 card-atrust-acos.c, and 3 card-starcos.c...

CVE-2010-4542

Stack-based buffer overflow in the gfigreadparametergimprgb function in plug-ins/gfig/gfig-style.c in the GFIG plugin in GIMP 2.6.11 allows user-assisted remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long Foreground field in a plugin...

MySQL 4.1 < 4.1.3 Multiple Vulnerabilities

The version of MySQL 4.1 installed on the remote host is earlier than 4.1.3. Such versions are reported affected by multiple vulnerabilities : - It is possible for a remote attacker to bypass the password authentication mechanism using a specially crafted packet with a zero-length scramble buff...

Microsoft Windows CreateSizedDIBSECTION Stack Buffer Overflow

$Id: ms11xxxcreatesizeddibsection.rb 11473 2011-01-04 23:00:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

HP Photo Creative v 2.x audio.Record.1 ActiveX Control &#40;ContentMan.dll 1.0.0.4272&#41; Remote Stack Based Buffer Overflow poc

!-- HP Photo Creative v 2.x audio.Record.1 ActiveX Control ContentMan.dll 1.0.0.4272 Remote Stack Based Buffer Overflow poc by rgod tested against Windows Vista / IE 7 download url: http://www.hp.com/global/us/en/consumer/digitalphotography/free/software/photo-creations.html activex settings:...

CVE-2010-4321

Stack-based buffer overflow in an ActiveX control in ienipp.ocx in Novell iPrint Client 5.52 allows remote attackers to execute arbitrary code via a long argument to 1 the GetDriverSettings2 method, as reachable by 2 the GetDriverSettings method...

CVE-2010-4321

Stack-based buffer overflow in an ActiveX control in ienipp.ocx in Novell iPrint Client 5.52 allows remote attackers to execute arbitrary code via a long argument to 1 the GetDriverSettings2 method, as reachable by 2 the GetDriverSettings method...

CVE-2010-4321

CVE-2010-4321 : Stack-based buffer overflow in the Novell iPrint Client ActiveX control ienipp.ocx (version 5.52). An attacker can send a long argument to the GetDriverSettings2/GetDriverSettings methods to trigger remote code execution. Public references in the provided documents include ZDI adv...

Novell iPrint Client < 5.56 Multiple Vulnerabilities

The version of Novell iPrint Client installed on the remote host is earlier than 5.56. Such versions are reportedly affected by one or more of the following vulnerabilities that can allow for arbitrary code execution : - The iPrint ActiveX control fails to sanitize input to the 'GetDriverSettings...

CVE-2010-4597

Ecava IntegraXor HMI is affected by CVE-2010-4597 due to a stack-based buffer overflow in the save method of igcomm.dll (IntegraXor.Project ActiveX) prior to version 3.5.3900.10. An attacker could remotely trigger arbitrary code execution by sending a long string in the second argument. ICS-CERT ...