CVE-2009-3829

Integer overflow in wiretap/erf.c in Wireshark before 1.2.2 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted erf file, related to an "unsigned integer wrap vulnerability."...

CVE-2009-3829

Integer overflow in wiretap/erf.c in Wireshark before 1.2.2 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted erf file, related to an "unsigned integer wrap vulnerability."...

openSUSE Security Update : java-1_6_0-openjdk (java-1_6_0-openjdk-1252)

The XML signature checker did not impose limits on the minimum length of HMAC signatures in XML documentes. Attackers could therefore specify a length of e.g. 1 to make the signature appear valid and therefore effectively bypass verification of XML documents. CVE-2009-0217 The WebStart component...

RHEL 4 / 5 : java-1.5.0-bea (RHSA-2008:1044)

java-1.5.0-bea as shipped in Red Hat Enterprise Linux 4 Extras and Red Hat Enterprise Linux 5 Supplementary, contains security flaws and should not be used. This update has been rated as having important security impact by the Red Hat Security Response Team. The BEA WebLogic JRockit JRE and SDK...

RHEL 3 / 4 / 5 : java-1.4.2-bea (RHSA-2008:1043)

java-1.4.2-bea as shipped in Red Hat Enterprise Linux 3 Extras, Red Hat Enterprise Linux 4 Extras, and Red Hat Enterprise Linux 5 Supplementary, contains security flaws and should not be used. This update has been rated as having important security impact by the Red Hat Security Response Team. Th...

RHEL 4 / 5 : java-1.5.0-ibm (RHSA-2008:0790)

Updated java-1.5.0-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 4 Extras and 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team. The IBM 1.5.0 Java release includes the IBM Java 2...

Linux Kernel < 2.6.14.6 procfs Kernel Memory Disclosure Exploit

Exploit for linux platform in category local exploits =============================================================== Linux Kernel include include include include include include include include include...

Apple Working to Fix Serious iPhone SMS Flaw

From IDG News Service Sumner Lemon Apple is working to fix an iPhone vulnerability that could allow an attacker to remotely install and run unsigned software code with root access to the phone. The attack in question exploits a weakness in the way iPhones handle text messages received via SMS Sho...

CVE-2003-1572

Sun Java Media Framework JMF 2.1.1 through 2.1.1c allows unsigned applets to cause a denial of service JVM crash and read or write unauthorized memory locations via the ReadEnv class, as demonstrated by reading environment variables using modified .data and .size fields...

CVE-2003-1572

Sun Java Media Framework JMF 2.1.1 through 2.1.1c allows unsigned applets to cause a denial of service JVM crash and read or write unauthorized memory locations via the ReadEnv class, as demonstrated by reading environment variables using modified .data and .size fields...

Fedora 10 : java-1.6.0-openjdk-1.6.0.0-9.b14.fc10 (2009-1373)

This fixes a default security policy, that allowed unsigned applets to access the gnome-java-bridge, allowing a privilege escalation 474431. There are also several bug fixes included in this update. Note that Tenable Network Security has extracted the preceding description block directly from the...

mpg123 signed-unsigned conversion vulnerability

Integer sign mismatch error on ID3 MP3 tags parsing...

Ubuntu Update for gnupg2, gpgme1.0 vulnerability USN-432-2

Ubuntu Update for Linux kernel vulnerabilities USN-432-2 OpenVAS Vulnerability Test $Id: gbubuntuUSN4322.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for gnupg2, gpgme1.0 vulnerability USN-432-2 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

Fedora Core 10 FEDORA-2009-1373 (java-1.6.0-openjdk)

The remote host is missing an update to java-1.6.0-openjdk announced via advisory FEDORA-2009-1373. OpenVAS Vulnerability Test $Id: fcore20091373.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-1373 java-1.6.0-openjdk Authors: Thomas Reinke Copyrigh...

Critical: Red Hat Security Advisory: java-1.6.0-ibm security update

Updated java-1.6.0-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 4 Extras and Red Hat Enterprise Linux 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team. The IBM 1.6.0 Java release...

SuSE 10 Security Update : IBM Java 1.5.0 (ZYPP Patch Number 5557)

IBM Java 5 was updated to SR8 to fix various security issues : - Multiple vulnerabilities with unsigned applets were reported. A remote attacker could misuse an unsigned applet to connect to localhost services running on the host running the applet. CVE-2008-3104 - A vulnerability in the XML...

Critical: Red Hat Security Advisory: java-1.5.0-ibm security update

Updated java-1.5.0-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 4 Extras and 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team. The IBM 1.5.0 Java release includes the IBM Java 2...

Critical: Red Hat Security Advisory: java-1.5.0-sun security update

Updated java-1.5.0-sun packages that correct several security issues are now available for Red Hat Enterprise Linux 4 Extras and 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team. The Java Runtime Environment JRE contains the...

Firefox arbitrary signed JAR code execution

Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 do not properly implement JAR signing, which allows remote attackers to execute arbitrary code via 1 injection of JavaScript into documents within a JAR archive or 2 a JAR archive that uses relative URLs to JavaScript files...

Re: Multiple vulnerabilities in HP OpenView NNM 7.53

Luigi Auriemma Application: HP OpenView Network Node Manager http://www.openview.hp.com/products/nnm/ Versions: = 7.53 Platforms: Windows tested, Solaris, Linux, HP-UX Bug: memory corruption in ovspmd Exploitation: remote Date: 08 Apr 2008 Author: Luigi Auriemma e-mail: [email protected] web:...