Fedora Update for php-pear-Structures-DataGrid-DataSource-MDB2 FEDORA-2007-0847

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

SuSE 10 Security Update : Linux Kernel (x86) (ZYPP Patch Number 5734)

This patch updates the SUSE Linux Enterprise 10 SP1 kernel. It fixes various bugs and security issues. The following security issues are addressed : - fs/open.c in the Linux kernel before 2.6.22 does not properly strip setuid and setgid bits when there is a write to a file, which allows local use...

Wireshark Multiple Vulnerabilities (Oct 2008) - Windows

Wireshark is prone to multiple security vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark";...

openSUSE 10 Security Update : kernel (kernel-5700)

The openSUSE 10.3 kernel was update to 2.6.22.19. This includes bugs and security fixes. CVE-2008-4576: Fixed a crash in SCTP INIT-ACK, on mismatch between SCTP AUTH availability. This might be exploited remotely for a denial of service crash attack. CVE-2008-3528: The ext234 filesystem code fail...

FreeBSD Ports: openssl

The remote host is missing an update to the system as announced in the referenced advisory. VID 0f37d765-c5d4-11db-9f82-000e0c2e438a OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

openssl ASN.1 DoS

OpenSSL 0.9.7 before 0.9.7l and 0.9.8 before 0.9.8d allows remote attackers to cause a denial of service infinite loop and memory consumption via malformed ASN.1 structures that trigger an improperly handled error condition...

Microsoft SQL Server On-Disk MTF Data Structures Remote Memory Corruption Vulnerability

Description Microsoft SQL Server is prone to a remote memory-corruption vulnerability because it fails to perform adequate boundary checks on user-supplied input. Authenticated attackers can exploit this issue to execute arbitrary code in the context of the server. Failed attacks will likely caus...

Heap overflow

Heap-based buffer overflow in Apple QuickTime before 7.5 on Windows allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via crafted packed scanlines in PixData structures in a PICT image...

CVE-2008-1581

Heap-based buffer overflow in Apple QuickTime before 7.5 on Windows allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via crafted packed scanlines in PixData structures in a PICT image...

Code injection

Unspecified vulnerability in Microsoft Malware Protection Engine mpengine.dll 1.1.3520.0 and 0.1.13.192, as used in multiple Microsoft products, allows context-dependent attackers to cause a denial of service disk space exhaustion via a file with "crafted data structures" that trigger the creatio...

CVE-2008-1438

Unspecified vulnerability in Microsoft Malware Protection Engine mpengine.dll 1.1.3520.0 and 0.1.13.192, as used in multiple Microsoft products, allows context-dependent attackers to cause a denial of service disk space exhaustion via a file with "crafted data structures" that trigger the creatio...

CVE-2008-1438

CVE-2008-1438 concerns the Microsoft Malware Protection Engine (mpengine.dll) (versions 1.1.3520.0 and 0.1.13.192) used in multiple Microsoft products. A denial-of-service exists when parsing certain files with “crafted data structures,” causing disk-space exhaustion and automatic engine restart....

Memory corruption

Memory leak in DLMFENC.sys 1.0.0.26 in DESlock+ 3.2.6 and earlier allows local users to cause a denial of service kernel memory consumption via a series of DLMFENCIOCTL requests to \.\DLKPFSDDevice that allocate "link list structures."...

CVE-2008-1141

Memory leak in DLMFENC.sys 1.0.0.26 in DESlock+ 3.2.6 and earlier allows local users to cause a denial of service kernel memory consumption via a series of DLMFENCIOCTL requests to \.\DLKPFSDDevice that allocate "link list structures."...

CVE-2008-1141

Memory leak in DLMFENC.sys 1.0.0.26 in DESlock+ 3.2.6 and earlier allows local users to cause a denial of service kernel memory consumption via a series of DLMFENCIOCTL requests to \.\DLKPFSDDevice that allocate "link list structures."...

[SECURITY] Fedora 8 Update: glib2-2.14.6-1.fc8

GLib is the low-level core library that forms the basis for projects such as GTK+ and GNOME. It provides data structure handling for C, portability wrappers, and interfaces for such runtime functionality as an event loop, threads, dynamic loading, and an object system. This package provides versi...

iDefense Security Advisory 02.12.08: Microsoft Office Works Converter Heap Overflow Vulnerability

iDefense Security Advisory 02.12.08 http://labs.idefense.com/intelligence/vulnerabilities/ Feb 12, 2008 I. BACKGROUND Microsoft Works is a word processor created by Microsoft in the 1980s. Microsoft Office, a widely use productivity suite, is distributed with converters for various versions of th...

Ubuntu 5.10 / 6.06 LTS / 6.10 : libpng vulnerability (USN-383-1)

Tavis Ormandy discovered that libpng did not correctly calculate the size of sPLT structures when reading an image. By tricking a user or an automated system into processing a specially crafted PNG file, an attacker could exploit this weakness to crash the application using the library. Note that...

tcpdump BGP integer overflow

Integer overflow in print-bgp.c in the BGP dissector in tcpdump 3.9.6 and earlier allows remote attackers to execute arbitrary code via crafted TLVs in a BGP packet, related to an unchecked return value...

Fedora 7 : php-pear-Structures-DataGrid-DataSource-MDB2-0.1.10-1.fc7 (2007-0847)

Security fix: users could manipulate the generated sorting queries Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...