iDefense Security Advisory 07.16.07: Trend Micro OfficeScan Session Cookie Buffer Overflow Vulnerability

Trend Micro OfficeScan Session Cookie Buffer Overflow Vulnerability iDefense Security Advisory 07.16.07 http://labs.idefense.com/intelligence/vulnerabilities/ Jul 16, 2007 I. BACKGROUND Trend Micro OfficeScan is a centrally managed AntiVirus solution that allows administrators to manage virus and...

CVE-2007-3762

Stack-based buffer overflow in the IAX2 channel driver chaniax2 in Asterisk before 1.2.22 and 1.4.x before 1.4.8, Business Edition before B.2.2.1, AsteriskNOW before beta7, Appliance Developer Kit before 0.5.0, and s800i before 1.0.2 allows remote attackers to execute arbitrary code by sending a...

Stack overflow

Multiple stack-based buffer overflows in a InterActual Player 2.60.12.0717 and b Roxio CinePlayer 3.2 allow remote attackers to execute arbitrary code via a 1 long FailURL attribute in the IAMCE ActiveX Control IAMCE.dll or a 2 long URLCode attribute in the IAKey ActiveX Control IAKey.dll. NOTE:...

CVE-2007-3829

Multiple stack-based buffer overflows in a InterActual Player 2.60.12.0717 and b Roxio CinePlayer 3.2 allow remote attackers to execute arbitrary code via a 1 long FailURL attribute in the IAMCE ActiveX Control IAMCE.dll or a 2 long URLCode attribute in the IAKey ActiveX Control IAKey.dll. NOTE:...

CVE-2007-3771

Stack-based buffer overflow in the Internet E-mail Auto-Protect feature in Symantec AntiVirus Corporate Edition before 10.1, and Client Security before 3.1, allows local users to cause a denial of service service crash via a long 1 To, 2 From, or 3 Subject header in an outbound SMTP e-mail messag...

CVE-2007-3703

CVE-2007-3703 and CVE-2007-3984 pertain to buffer overflow vulnerabilities in the Zenturi ProgramChecker sasatl.dll 1.5.0.531 ActiveX controls. CVE-2007-3703 (Fill method) and CVE-2007-3984 (Scan method) are described as stack-based or buffer overflow flaws that could allow remote code execution ...

CVE-2007-3655

Stack-based buffer overflow in javaws.exe in Sun Java Web Start in JRE 5.0 Update 11 and earlier, and 6.0 Update 1 and earlier, allows remote attackers to execute arbitrary code via a long codebase attribute in a JNLP file...

CVE-2007-3655

Stack-based buffer overflow in javaws.exe in Sun Java Web Start in JRE 5.0 Update 11 and earlier, and 6.0 Update 1 and earlier, allows remote attackers to execute arbitrary code via a long codebase attribute in a JNLP file...

CVE-2007-3614

Multiple stack-based buffer overflows in waHTTP.exe aka the SAP DB Web Server in SAP DB, possibly 7.3 through 7.5, allow remote attackers to execute arbitrary code via 1 a certain cookie value; 2 a certain additional parameter, related to sapdbwaGetQueryString; and other unspecified vectors relat...

CVE-2007-3612

Stack-based buffer overflow in Visual IRC ViRC 2.0 allows remote IRC servers to execute arbitrary code via a long response to a JOIN command...

CVE-2007-3612

Stack-based buffer overflow in Visual IRC ViRC 2.0 allows remote IRC servers to execute arbitrary code via a long response to a JOIN command...

CVE-2007-3554

The CVE-2007-3554 entry describes a stack-based buffer overflow in the HPSDDX Class (SDD) ActiveX control (sdd.dll) used by HP Instant Support – Driver Check. A long argument to the queryHub function can allow remote code execution on affected hosts. The vulnerability affects the ActiveX control ...

CVE-2007-3554

Stack-based buffer overflow in the HPSDDX Class SDD ActiveX control in sdd.dll in HP Instant Support - Driver Check before 1.5.0.3 allows remote attackers to execute arbitrary code via a long argument to the queryHub function...

CVE-2007-3548

Stack-based buffer overflow in W3Filer 2.1.3 allows remote FTP servers to cause a denial of service application hang or crash and possibly execute arbitrary code by sending a large banner to a client that is sending a file...

Stack overflow

Stack-based buffer overflow in W3Filer 2.1.3 allows remote FTP servers to cause a denial of service application hang or crash and possibly execute arbitrary code by sending a large banner to a client that is sending a file...

CVE-2007-3548

Stack-based buffer overflow in W3Filer 2.1.3 allows remote FTP servers to cause a denial of service application hang or crash and possibly execute arbitrary code by sending a large banner to a client that is sending a file...

CVE-2007-3512

Stack-based buffer overflow in Lhaca File Archiver before 1.22 allows user-assisted remote attackers to execute arbitrary code via a large LHA "Extended Header Size" value in an LZH archive, a different issue than CVE-2007-3375...

Stack overflow

Stack-based buffer overflow in Lhaca File Archiver before 1.22 allows user-assisted remote attackers to execute arbitrary code via a large LHA "Extended Header Size" value in an LZH archive, a different issue than CVE-2007-3375...

CVE-2007-2835

Multiple stack-based buffer overflows in 1 CCEpinyin.c and 2 xlpinyin.c in ImmModules/cce/ in unicon-imc2 3.0.4, as used by zhcon and other applications, allow local users to gain privileges via a long HOME environment variable...

Stack overflow

Multiple stack-based buffer overflows in 1 CCEpinyin.c and 2 xlpinyin.c in ImmModules/cce/ in unicon-imc2 3.0.4, as used by zhcon and other applications, allow local users to gain privileges via a long HOME environment variable...