[SECURITY] [DSA 1917-1] New mimetex packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-1917-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano October 24, 2009 http://www.debian.org/security/faq -...

DSA-1917-1 mimetex - several vulnerabilities

Bulletin has no description...

CVE-2009-2970

Stack-based buffer overflow in the GetUiDllVersion function in an ActiveX control in UiCheck.dll before 1.0.0.7 in UiTV UiPlayer, as used in BaiduX and other products, allows remote attackers to execute arbitrary code via the filename parameter...

CVE-2009-3699

Stack-based buffer overflow in libcsa.a aka the calendar daemon library in IBM AIX 5.x through 5.3.10 and 6.x through 6.1.3, and VIOS 2.1 and earlier, allows remote attackers to execute arbitrary code via a long XDR string in the first argument to procedure 21 of rpc.cmsd...

CVE-2009-3691

Multiple integer overflows in setnet32.exe 3.50.0.13752 in IBM Informix Client SDK 3.0 and 3.50 and Informix Connect Runtime 3.x allow remote attackers to execute arbitrary code via a .nfx file with a crafted 1 HostSize, and possibly 2 ProtoSize and 3 ServerSize, field that triggers a stack-based...

CVE-2009-3569

Stack-based buffer overflow in OpenOffice.org OOo allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.8, aka "Client-side stack overflow exploit." NOTE: as of 20091005, this disclosure has no actionable...

CVE-2009-3569

Stack-based buffer overflow in OpenOffice.org OOo allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.8, aka "Client-side stack overflow exploit." NOTE: as of 20091005, this disclosure has no actionable...

Stack overflow

Multiple stack-based buffer overflows in EpicDJSoftware EpicVJ 1.2.8.0 and 1.3.1.2 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long string in a 1 .m3u or 2 .mpl playlist file...

CVE-2009-3536

Multiple stack-based buffer overflows in EpicDJSoftware EpicVJ 1.2.8.0 and 1.3.1.2 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long string in a 1 .m3u or 2 .mpl playlist file...

CVE-2009-3536

CVE-2009-3536 affects EpicDJSoftware EpicVJ versions 1.2.8.0 and 1.3.1.2. It describes multiple stack-based buffer overflows exploitable via a long string in playlist files (.m3u, .mpl), allowing remote denial of service or potentially arbitrary code execution. No remediation details are provided...

CVE-2009-3537

Multiple stack-based buffer overflows in EpicDJSoftware EpicDJ 1.3.9.1 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long string in a 1 .m3u or 2 .mpl playlist file...

[Backports-security-announce] Security update for dovecot

Jaldhar H. Vyas uploaded new packages which fix the following problem: DSA-1892-1 CVE-2009-2632, CVE-2009-3235 Multiple stack-based buffer overflows in the Sieve plugin in Dovecot For the etch-backports distribution the problem has been fixed in version 1.0.15-2.3+lenny1bpo40+1 For the...

[Backports-security-announce] Security update for dovecot

Jaldhar H. Vyas uploaded new packages which fix the following problem: DSA-1892-1 CVE-2009-2632, CVE-2009-3235 Multiple stack-based buffer overflows in the Sieve plugin in Dovecot For the etch-backports distribution the problem has been fixed in version 1.0.15-2.3+lenny1bpo40+1 For the...

CVE-2009-3484

Stack-based buffer overflow in Core FTP 2.1 build 1612 allows user-assisted remote attackers to execute arbitrary code via a long hostname in an FTP server entry in a site backup file. NOTE: some of these details are obtained from third party information...

EMC Captiva QuickScan Pro 4.6 SP1 and EMC Documentum ApllicationXtender Desktop 5.4 (keyhelp.ocx 1.2.312) - Remote Overflow

EMC Captiva QuickScan Pro 4.6 SP1 and EMC Documentum ApllicationXtender Desktop 5.4 keyhelp.ocx 1.2.312 - Remote Overflow //executing calc scode = unescape"%eb%03%59%eb%05%e8%f8%ff%ff%ff%4f%49%49%49%49%49" & unescape"%49%51%5a%56%54%58%36%33%30%56%58%34%41%30%42%36" &...

EMC Captiva QuickScan Pro 4.6 SP1 and EMC Documentum ApllicationXtender Desktop 5.4 (keyhelp.ocx 1.2.312) - Remote Overflow

//executing calc scode = unescape"%eb%03%59%eb%05%e8%f8%ff%ff%ff%4f%49%49%49%49%49" & unescape"%49%51%5a%56%54%58%36%33%30%56%58%34%41%30%42%36" & unescape"%48%48%30%42%33%30%42%43%56%58%32%42%44%42%48%34" & unescape"%41%32%41%44%30%41%44%54%42%44%51%42%30%41%44%41" &...

CVE-2009-3429

Stack-based buffer overflow in Pirate Radio Destiny Media Player 1.61 allows remote attackers to execute arbitrary code via a long string in a .pls playlist file...

CVE-2009-3429

The CVE-2009-3429 entry describes a stack-based buffer overflow in Destiny Media Player 1.61 (Pirate Radio Destiny Media Player) that can be triggered by a long string in a .pls playlist file, enabling remote code execution. Connected documents confirm practical exploit paths: a Metasploit module...

CVE-2009-3364

Stack-based buffer overflow in FTPShell Client 4.1 RC2 allows remote FTP servers to execute arbitrary code via a long response to a PASV command...

SuSE9 Security Update : unrar (YOU Patch Number 11465)

This update fixes a stack-based buffer overflow in unrar that can be exploited with user-assistance by sending a password-protected archive. CVE-2007-0855 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc';...