Now SMS/MMS Gateway < 2008.02.22 Multiple Remote Overflows

The remote host is running Now SMS/MMS Gateway, a tool for connecting to SMS and/or MMS messaging providers and managing GSM modems. The web interface component of the version of Now SMS/MMS Gateway installed on the remote host contains a stack-based buffer overflow that can be triggered using a...

Stack overflow

Multiple stack-based buffer overflows in the Online Media Technologies NCTSoft NCTAudioInformation2 ActiveX control in NCTAudioInformation2.dll, as used in 1 Power Audio CD Grabber 1.0, 2 Power Audio CD Burner 1.02, 3 CinematicMP3 1.4.0.0, 4 Alive MP3 WAV Converter 3.9.3.2, and possibly other...

CVE-2008-0959

Multiple stack-based buffer overflows in the Online Media Technologies NCTSoft NCTAudioInformation2 ActiveX control in NCTAudioInformation2.dll, as used in 1 Power Audio CD Grabber 1.0, 2 Power Audio CD Burner 1.02, 3 CinematicMP3 1.4.0.0, 4 Alive MP3 WAV Converter 3.9.3.2, and possibly other...

CVE-2008-2499

Stack-based buffer overflow in the Community Services Multiplexer aka MUX or StMux.exe in IBM Lotus Sametime 7.5.1 CF1 and earlier, and 8.x before 8.0.1, allows remote attackers to execute arbitrary code via a crafted URL...

CVE-2008-0958

Multiple stack-based buffer overflows in the Online Media Technologies NCTSoft NCTAudioGrabber2 ActiveX control in NCTAudioGrabber2.dll allow remote attackers to execute arbitrary code via unspecified vectors...

CVE-2008-2499

The CVE-2008-2499 issue is a stack-based buffer overflow in IBM Lotus Sametime’s Community Services Multiplexer (STMux.exe). The vulnerability arises from inadequate bounds-checking while parsing long URLs, allowing a remote attacker to cause arbitrary code execution. Affected products include IB...

CVE-2008-0955

The CVE-2008-0955 issue is a stack-based buffer overflow in the Creative Labs AutoUpdate Engine ActiveX CTSUEng.ocx , triggered by a long CacheFolder property value. A remote attacker could execute arbitrary code by enticing a user to a malicious page. Connected sources confirm the vulnerability ...

Stack overflow

Multiple buffer overflows in xdr functions in the server in CA BrightStor ARCServe Backup 11.0, 11.1, and 11.5 allow remote attackers to execute arbitrary code, as demonstrated by a stack-based buffer overflow via a long parameter to the xdrrwsstring function...

CVE-2008-2357

CVE-2008-2357 affects mtr prior to version 0.73, where a stack-based buffer overflow in split_redraw (split.c) can be triggered by a crafted DNS PTR record when using -p. Several OpenVAS/Nessus entries link this to multiple distributions (e.g., SUSE/OpenSUSE, Gentoo GLSA, Slackware SSA) and refer...

CVE-2008-2357

Stack-based buffer overflow in the splitredraw function in split.c in mtr before 0.73, when invoked with the -p aka --split option, allows remote attackers to execute arbitrary code via a crafted DNS PTR record. NOTE: it could be argued that this is a vulnerability in the nsnamentop function in...

CVE-2008-2357

Stack-based buffer overflow in the splitredraw function in split.c in mtr before 0.73, when invoked with the -p aka --split option, allows remote attackers to execute arbitrary code via a crafted DNS PTR record. NOTE: it could be argued that this is a vulnerability in the nsnamentop function in...

CVE-2008-2214

Castle Rock Computing SNMPc Network Manager is affected by a stack-based buffer overflow when a long SNMP TRAP community string is sent. The vulnerability exists in SNMPc 7.1 and earlier and can allow remote attackers to crash the service or run arbitrary code (often with SYSTEM-level privileges)...

CVE-2008-1922

CVE-2008-1922 concerns multiple stack-based buffer overflows in the Squid Analysis Report Generator (SARG). The issue could allow remote attackers to execute arbitrary code via unknown vectors, with a crafted Squid log file cited as a probable vector. Public advisories reference SARG fixes across...

Debian DSA-1572-1 : php5 - several vulnerabilities

Several vulnerabilities have been discovered in PHP, a server-side, HTML-embedded scripting language. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-3806 The glob function allows context-dependent attackers to cause a denial of service and possibly...

Stack overflow

Stack-based buffer overflow in the searchwn function in Wordnet 2.0, 2.1, and 3.0 might allow context-dependent attackers to execute arbitrary code via a long command line option. NOTE: this issue probably does not cross privilege boundaries except in cases in which Wordnet is used as a back end...

CVE-2008-2145

Stack-based buffer overflow in Novell Client 4.91 SP4 and earlier allows local users to cause a denial of service crash and possibly execute arbitrary code via a long username in the "forgotten password" dialog...

Stack overflow

Multiple stack-based buffer overflows in the 1 getremoteipmedia and 2 getremoteipv6media functions in call.cpp in SIPp 3.1 allow remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted SIP message...

CVE-2008-2085

The CVE-2008-2085 vulnerability affects SIPp 3.1, specifically the get_remote_ip_media and get_remote_ipv6_media functions in call.cpp, where multiple stack-based buffer overflows can allow a remote attacker to crash the application and potentially execute arbitrary code via a crafted SIP message...

CVE-2008-2085

Multiple stack-based buffer overflows in the 1 getremoteipmedia and 2 getremoteipv6media functions in call.cpp in SIPp 3.1 allow remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted SIP message...

openSUSE 10 Security Update : sarg (sarg-5226)

Multiple stack-based buffer overflows have been fixed in sarg. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update sarg-5226. The text description of this plugin is C SUSE LLC...