CVE-2008-0378

Stack-based buffer overflow in SocksCap 2.40-051231 and earlier, when "Resolve all names remotely" is enabled, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long hostname...

CVE-2008-0065

CVE-2008-0065 describes a stack-based buffer overflow in Winamp’s Ultravox streaming metadata handling (in_mp3.dll) that could allow remote code execution when processing a long or tag. Affected Winamp versions include 5.21, 5.5, and 5.51 (with advisories noting exploitation up to ~5.24 and fix...

Winamp < 5.52 Ultravox Streaming Metadata Parsing Buffer Overflows

Binary data 4347.prm...

Winamp < 5.52 Ultravox Streaming Metadata in_mp3.dll Multiple Tag Overflow

The remote host is using Winamp, a popular media player for Windows. The version of Winamp installed on the remote Windows host reportedly contains two stack-based buffer overflows in 'inmp3.dll' when parsing Ultravox streaming metadata that can be triggered by overly-long '' and '' tag values. I...

Debian: Security Advisory (DSA-1135-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 532-1 (libapache-mod-ssl)

The remote host is missing an update to libapache-mod-ssl announced via advisory DSA 532-1. OpenVAS Vulnerability Test $Id: deb5321.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 532-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian Security Advisory DSA 833-1 (mysql-dfsg-4.1)

The remote host is missing an update to mysql-dfsg-4.1 announced via advisory DSA 833-1. This VT has been deprecated and merged into the VT SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

CentOS 4 / 5 : tog-pegasus (CESA-2008:0002)

Updated tog-pegasus packages that fix a security issue are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. The tog-pegasus packages provide OpenPegasus Web-Based Enterprise Management WBEM...

CVE-2008-0220

CVE-2008-0220 : Multiple stack-based buffer overflows in the WebLaunch.WeblaunchCtl.1 (CWebLaunchCtl) ActiveX control in weblaunch.ocx 1.0.0.1 (Gateway Weblaunch) allow remote attackers to execute arbitrary code by sending a long string in the (1) second or (2) fourth argument to the DoWebLaunch ...

CVE-2007-6531

Stack-based buffer overflow in the Panel xfce4-panel component in Xfce before 4.4.2 might allow remote attackers to execute arbitrary code via Launcher tooltips. NOTE: a second buffer overflow over-read in the xfcemkdirhier function was also reported, but it might not be exploitable for a crash o...

Stack overflow

Stack-based buffer overflow in the Panel xfce4-panel component in Xfce before 4.4.2 might allow remote attackers to execute arbitrary code via Launcher tooltips. NOTE: a second buffer overflow over-read in the xfcemkdirhier function was also reported, but it might not be exploitable for a crash o...

CVE-2007-6531

Stack-based buffer overflow in the Panel xfce4-panel component in Xfce before 4.4.2 might allow remote attackers to execute arbitrary code via Launcher tooltips. NOTE: a second buffer overflow over-read in the xfcemkdirhier function was also reported, but it might not be exploitable for a crash o...

CVE-2007-6250

Stack-based buffer overflow in AOL AOLMediaPlaybackControl AOLMediaPlaybackControl.exe, as used by AmpX ActiveX control AmpX.dll, might allow remote attackers to execute arbitrary code via the AppendFileToPlayList method...

CVE-2008-0003

Stack-based buffer overflow in the PAMBasicAuthenticator::PAMCallback function in OpenPegasus CIM management server tog-pegasus, when compiled to use PAM and without PEGASUSUSEPAMSTANDALONEPROC defined, might allow remote attackers to execute arbitrary code via unknown vectors, a different...

Stack overflow

Stack-based buffer overflow in the Scene::errorf function in Scene.cpp in WhiteDune 0.29 beta791 and earlier allows remote attackers to execute arbitrary code via a long string in a .WRL file...

CVE-2007-6613

Stack-based buffer overflow in the printiso9660recurse function in iso-info src/iso-info.c in GNU Compact Disc Input and Control Library libcdio 0.79 and earlier allows context-dependent attackers to cause a denial of service core dump and possibly execute arbitrary code via a disk or image that...

CVE-2007-6613

CVE-2007-6613 is a stack-based buffer overflow in libcdio (libcdio 0.79 and earlier) within the print_iso9660_recurse function of iso-info.c. The overflow can be triggered by a disk or image containing a long Joliet filename, allowing a context-dependent attacker to cause a denial of service (cor...

CVE-2007-6609

Multiple stack-based buffer overflows in the CPLIReadTagOGG function in CPIPlaylistItem.c in CoolPlayer 217 and earlier allow user-assisted remote attackers to execute arbitrary code via a long 1 cTag or 2 cValue field in an OGG Vorbis file...

CVE-2007-6593

CVE-2007-6593 is a buffer overflow in Autonomy KeyView (l123sr.dll) used by IBM Lotus Notes (versions 5.x–8.x) when viewing Lotus 1-2-3 (.123) Worksheet files. The vulnerability arises from a boundary/stack-based overflow in SRANGE handling, enabling user‑assisted remote code execution if a malic...

[SECURITY] [DSA 1438-1] New tar packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-1438-1 [email protected] http://www.debian.org/security/ Florian Weimer December 28, 2007 http://www.debian.org/security/faq -...