5881 matches found
Microsoft Windows GDIplus GpFont.SetData Integer Overflow (CVE-2009-1217)
A vulnerability has been reported in Microsoft Windows Graphics Device Interface GDI. The problem is caused by improper handling the length of EmfPlusFont in EMF files. Remote attackers can exploit this vulnerability by enticing target users to open a specially crafted EMF file. Triggering this...
Orbit Downloader Download Argument Processing Stack Buffer Overflow (CVE-2008-1602)
There exists a buffer overflow vulnerability in Orbit Downloader. The vulnerability is caused due to insufficient boundary checking when the application processes the URL string. An attacker may exploit this vulnerability by enticing a target user to open a malicious long URL. Successful...
Apple QuickTime PDAT Atom Parsing Buffer Overflow (CVE-2008-3625)
Apple's QuickTime is a multimedia player that supports a wide range of media formats. The software supports parsing and displaying picture files as well as numerous audio/video formats. There exists a stack overflow vulnerability in Apple QuickTime application. The vulnerability is due to imprope...
[Backports-security-announce] etch-backports discontinued
Hi users, Hi contributors, as some of you may heard 1 the security support for etch terminated on February 15th. That means that our support for etch backports also ends here. Please dont upload to etch-backports anymore. The downloads are still possible, but please remember that there is no...
[Backports-security-announce] etch-backports discontinued
Hi users, Hi contributors, as some of you may heard 1 the security support for etch terminated on February 15th. That means that our support for etch backports also ends here. Please dont upload to etch-backports anymore. The downloads are still possible, but please remember that there is no...
Apple QuickTime MOV File JVTCompEncodeFrame Heap Overflow (CVE-2007-2295)
Apple QuickTime is a multimedia player that supports a wide range of media formats. The software supports parsing and displaying picture files as well as numerous audio/video formats. One of the supported video format is the ITU-T H.264 standard, also known as MPEG-4 Part 10 or Advanced Video...
Apple QuickTime Color Table ID Heap Corruption (CVE-2007-0718)
Apple QuickTime is a multimedia player that supports a wide range of media formats. The software supports parsing and displaying picture files as well as numerous video formats. QuickTime is capable of processing Apple QuickTime Image File format, which is a proprietary format created by Apple...
Macromedia Flash Media Server Administration Service Denial of Service (CVE-2005-4216)
Macromedia Flash Media Server software provides streaming media capabilities and an environment for creating and delivering interactive media applications. The Flash Media Server can be administered through an administration server that listens on TCP port 1111 by default. There exists a denial o...
Microsoft Windows Client/Server Run-time Subsystem
Invalid process termination on user's logout...
Dnsmasq TFTP Service Remote Heap Buffer Overflow (CVE-2009-2957)
Dnsmasq is a lightweight DNS forwarder and DHCP server, designed to provide DNS and optionally DHCP services to a small-scale network. Dnsmasq supports static and dynamic DHCP leases and BOOTP/TFTP/PXE for network booting of diskless machines. It includes a secure, read-only, TFTP server to allow...
Microsoft Windows Embedded OpenType Font Heap Buffer Overflow (MS09-029; CVE-2009-0231)
Embedded OpenType EOT fonts are a compact form of OpenType fonts designed by Microsoft for use as embedded fonts on web pages. These files usually use the extension ".eot". The Embedded OpenType EOT Font Engine is a Microsoft Windows component that enables Windows applications, such as Microsoft...
Microsoft Windows GDIplus PNG Chunk Processing Integer Overflow (MS09-062; CVE-2009-2501; CVE-2013-1331)
An integer overflow vulnerability exists in Microsoft Windows GDI+. The vulnerability is due to lack of input validation when Microsoft Windows GDI+ handles PNG files. A remote attacker can exploit this vulnerability by enticing the target to open a specially crafted PNG file. Successful...
Google Chrome HTTP Response Handling Memory Corruption (CVE-2009-2121)
Google Chrome is a web browser developed by Google. It provides rich web browsing similar to other browsers such as FireFox, Opera, and Internet Explorer. Chrome is unique from other browsers because it follows a multi-process architecture: by default, a separate process is allocated to each site...
HP OpenView Network Node Manager ovalarmsrv Integer Overflow (CVE-2008-2438)
HP OpenView product consists of a suite of network and system management software applications developed by HP. It includes hundreds of optional modules and components, for example: OpenView Quality Manager, OpenView Performance Insight, OpenView Network Node Manager, etc. An integer overflow...
nginx URI Parsing Buffer Underflow (CVE-2009-2629)
A remote buffer underflow vulnerability exists within nginx HTTP server. The vulnerability is due to an error when processing malicious HTTP requests. A remote attacker can exploit this vulnerability by sending an HTTP request containing specially crafted URI to the target system. Successful...
Mandriva Update for initscripts MDVA-2010:036 (initscripts)
Check for the Version of initscripts OpenVAS Vulnerability Test Mandriva Update for initscripts MDVA-2010:036 initscripts Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...
linux/x86 kill all processes 9 bytes
Exploit for linux/x86 platform in category shellcode ==================================== linux/x86 kill all processes 9 bytes ==================================== ; linux/x86 kill all processes 9 bytes ; email protected ; 2010-01-14 section .text global start start: ; kill-1, SIGKILL; mov al, 37...
Sun Java Web Start Splashscreen PNG Processing Buffer Overflow (CVE-2009-1097)
The Sun Java Web Start is a component of the Java 2 Runtime Environment JRE. It facilitates network deployment of applications developed with the Java programming language. This component enables stand-alone Java applications to be downloaded from a remote network location and run on a target...
Mozilla IFRAME Style Change Handling Code Execution (CVE-2008-1236)
Firefox is an open source web browser developed by Mozilla Foundation. The application is capable of interpreting and rendering many types of Internet content, including various versions of HTML, XML, CSS Cascade Style Sheet, Javascript, various graphic formats, and so on. Firefox is made availab...
Multiple Vendor CUPS Administration Interface CGI Heap Overflow (CVE-2008-0047)
The Common Unix Printing System CUPS is a modular printing system for Unix-like operating systems that allows a computer to act as a print server. A computer running CUPS is a host that can accept print jobs from client computers, process them, and send them to the appropriate printer. A heap...