CVE-2010-4262

Stack-based buffer overflow in Xfig 3.2.4 and 3.2.5 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a FIG image with a crafted color definition...

Stack overflow

Stack-based buffer overflow in Xfig 3.2.4 and 3.2.5 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a FIG image with a crafted color definition...

PHP 5.3 < 5.3.4 Multiple Vulnerabilities

Binary data 801074.prm...

PHP 5.3.x < 5.3.4 Multiple Vulnerabilities

Binary data 5732.prm...

Winamp < 5.601 MIDI Timestamp Stack-based Buffer Overflow

The remote host is running Winamp, a media player for Windows. The version of Winamp installed on the remote host is earlier than 5.601. Such versions are potentially affected by a stack-based buffer overflow vulnerability due to an error in the 'inmidi.ddl' plugin that improperly serializes...

CVE-2010-4259

FontForge 20100501 is vulnerable to a stack-based buffer overflow triggered by a crafted CHARSET_REGISTRY header in a BDF font file, potentially allowing remote code execution or a denial of service. Public advisories confirm the issue and provide patches/upgrades: Debian DSA-2253-1 recommends up...

CVE-2010-4398

Stack-based buffer overflow in the RtlQueryRegistryValues function in win32k.sys in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows local users to gain privileges, and bypass the User Account Control...

SuSE 11 / 11.1 Security Update : quagga (SAT Patch Numbers 3535 / 3536)

This update of quagga fixes two security issues : - Stack-based buffer overflow while processing malformed Route-Refresh messages. CVE-2010-2948: CVSS v2 Base Score: 6.5 MEDIUM AV:N/AC:L/Au:S/C:P/I:P/A:P - Denial of service while processing malformed BGP update AS path messages. CVE-2010-2949: CV...

ProFTPd 1.3.2 rc3 &lt; 1.3.3b (FreeBSD) - Telnet IAC Buffer Overflow (Metasploit)

$Id: proftptelnetiac.rb 11208 2010-12-02 21:10:03Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

SuSE 10 Security Update : quagga (ZYPP Patch Number 7237)

This update of quagga fixes two security issues : - Stack-based buffer overflow while processing malformed Route-Refresh messages. CVE-2010-2948: CVSS v2 Base Score: 6.5 MEDIUM AV:N/AC:L/Au:S/C:P/I:P/A:P - Denial of service while processing malformed BGP update AS path messages. CVE-2010-2949: CV...

Cain &amp; Abel 4.9.24 - RDP Buffer Overflow (Metasploit)

$Id: cainabel4918rdp.rb 11127 2010-11-24 19:35:38Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

CVE-2010-3872

A flaw was found in the modfcgid module of httpd. A malformed FastCGI response may result in a stack-based buffer overflow in the modules/fcgid/fcgidbucket.c file in the fcgidheaderbucketread function, resulting in an application crash...

CVE-2010-3872 Httpd: mod_fcgid: stack-based buffer overflow in fcgid_header_bucket_read() in modules/fcgid/fcgid_bucket.c

A flaw was found in the modfcgid module of httpd. A malformed FastCGI response may result in a stack-based buffer overflow in the modules/fcgid/fcgidbucket.c file in the fcgidheaderbucketread function, resulting in an application crash...

CVE-2010-4230

Stack-based buffer overflow in a certain ActiveX control for the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008 allows remote attackers to execute arbitrary code via a long string in the first argument to the connect method...

Debian Security Advisory DSA 2124-1 (xulrunner)

The remote host is missing an update to xulrunner announced via advisory DSA 2124-1. OpenVAS Vulnerability Test $Id: deb21241.nasl 6614 2017-07-07 12:09:12Z cfischer $ Description: Auto-generated from advisory DSA 2124-1 xulrunner Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...

CVE-2010-4230

Stack-based buffer overflow in a certain ActiveX control for the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008 allows remote attackers to execute arbitrary code via a long string in the first argument to the connect method...

CVE-2010-1840

Stack-based buffer overflow in the password-validation functionality in Directory Services in Apple Mac OS X 10.5.8 and 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via unspecified vectors...

CVE-2010-3894

Stack-based buffer overflow in the JavacomibmesossCryptionNativeESEncrypt function in /opt/IBM/es/lib/libffq.cryptionjni.so in the login form in the administration interface in IBM OmniFind Enterprise Edition before 8.5 FP6 allows remote attackers to execute arbitrary code via a long password...

Mandriva Linux Security Advisory : proftpd (MDVSA-2010:227)

Multiple vulnerabilities were discovered and corrected in proftpd : Multiple directory traversal vulnerabilities in the modsitemisc module in ProFTPD before 1.3.3c allow remote authenticated users to create directories, delete directories, create symlinks, and modify file timestamps via directory...

CVE-2010-3333

Stack-based buffer overflow in Microsoft Office XP SP3, Office 2003 SP3, Office 2007 SP2, Office 2010, Office 2004 and 2008 for Mac, Office for Mac 2011, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via crafted RTF data, aka "RTF Stack Buffer Overfl...