EUVD-2005-3261

Malware in sbrugna...

IBM Lotus Notes Attachment Viewer UUE File Handling Buffer Overflow - ver 2 (CVE-2005-2618)

Lotus Notes is a client-server collaborative software and email system provided by IBM. The Lotus Notes email client application is capable of communicating with email servers over the SMTP, POP and IMAP protocols. There exists a buffer overflow vulnerability in IBM Lotus Notes Attachment Viewer...

RARLAB WinRar 2.90/3.x UUE/XXE Invalid Filename Error Message Format String

No description provided by source. source: http://www.securityfocus.com/bid/15062/info WinRAR is prone to multiple remote vulnerabilities. These issues include a format string and a buffer overflow vulnerability. Successful exploitation may allow an attacker to execute arbitrary code on a...

IBM Lotus Notes Attachment Viewer UUE File Handling Buffer Overflow (CVE-2005-2618)

Lotus Notes is a client-server collaborative software and email system provided by IBM. The Lotus Notes email client application is capable of communicating with email servers over the SMTP, POP and IMAP protocols. There exists a buffer overflow vulnerability in IBM Lotus Notes Attachment Viewer...

CVE-2007-6563

Heap-based buffer overflow in WinAce 2.65 and earlier, and possibly other versions before 2.69, allows user-assisted remote attackers to execute arbitrary code via a long filename in a compressed UUE archive...

Heap overflow

Heap-based buffer overflow in WinAce 2.65 and earlier, and possibly other versions before 2.69, allows user-assisted remote attackers to execute arbitrary code via a long filename in a compressed UUE archive...

CVE-2007-6563

WinAce (by e-merge GmbH) is vulnerable to a heap-based buffer overflow in 2.65 and earlier (and possibly other versions before 2.69). A specially crafted long filename in a compressed UUE archive can cause a user-assisted remote attacker to execute arbitrary code with the user’s privileges. The J...

CVE-2007-6563

Heap-based buffer overflow in WinAce 2.65 and earlier, and possibly other versions before 2.69, allows user-assisted remote attackers to execute arbitrary code via a long filename in a compressed UUE archive...

Winace UUE文件解压堆溢出漏洞

BUGTRAQ ID: 27017 Winace是一款支持多种格式的压缩/解压程序。 Winace在处理畸形格式的UUE文档时存在缓冲区溢出漏洞，远程攻击者可能利用此漏洞控制用户系统。 如果用户受骗使用Winace解压了包含有超长文件名的UUE文件的话，就可能触发堆溢出，导致执行任意代码。 e-merge GmbH Winace 2.65 e-merge GmbH Winace 2.60 厂商补丁： e-merge GmbH ------------ 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.winace.com/down.html...

CVE-2007-6386

Stack-based buffer overflow in PccScan.dll before build 1451 in Trend Micro AntiVirus plus AntiSpyware 2008, Internet Security 2008, and Internet Security Pro 2008 allows user-assisted remote attackers to cause a denial of service SfCtlCom.exe crash, and allows local users to gain privileges, via...

Trend Micro产品UUE畸形ZIP文件缓冲区溢出漏洞

BUGTRAQ ID: 26818 CNCAN ID:CNCAN-2007121208 Trend Micro Antivirus plus AntiSpyware是一款反恶意软件应用程序。 Trend Micro Antivirus plus AntiSpyware处理.uue文件存在格式串错误，远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。 当解析.uue文件时Trend Micro Antivirus plus AntiSpyware等多个产品不正确检查部分字段值，导致远程内存破坏，当.uue文件的部分字段包含格式串字符时，可导致"Trend Micro Central...

Lotus Notes Attachment Viewer UUE file buffer overflow

Added: 02/21/2006 CVE: CVE-2005-2618 BID: 16576 OSVDB: 23065 Background Lotus Notes is the client for Lotus Domino servers. Problem A buffer overflow in the attachment viewer in the Lotus Notes e-mail client allows command execution when a user opens a specially crafted UUE file. Resolution Upgra...

Lotus Notes Attachment Viewer UUE file buffer overflow

Added: 02/21/2006 CVE: CVE-2005-2618 BID: 16576 OSVDB: 23065 Background Lotus Notes is the client for Lotus Domino servers. Problem A buffer overflow in the attachment viewer in the Lotus Notes e-mail client allows command execution when a user opens a specially crafted UUE file. Resolution Upgra...

CVE-2005-2619

The CVE-2005-2619 issue affects Lotus Notes (6.5.4 and 7.0) using Autonomy/Verity KeyView SDK kvarcve.dll (pre-9.2.0). The vulnerability arises in the preview generation of archives (ZIP, UUE, TAR) where a filename containing .. can lead to directory traversal and deletion of arbitrary files acce...

CVE-2005-2618

Multiple stack-based buffer overflows in Autonomy formerly Verity KeyView SDK before 9.2.0, as used in Lotus Notes 6.5.4 and 7.0, allow remote attackers to execute arbitrary code via 1 a UUE file containing an encoded file with a long filename handled by uudrdr.dll, 2 a compressed ZIP file with a...

Secunia Research: Lotus Notes UUE File Handling Buffer Overflow

====================================================================== Secunia Research 10/02/2006 - Lotus Notes UUE File Handling Buffer Overflow - ====================================================================== Table of Contents Affected...

GLSA-200511-10 : RAR: Format string and buffer overflow vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200511-10 RAR: Format string and buffer overflow vulnerabilities Tan Chew Keong reported about two vulnerabilities found in RAR: A format string error exists when displaying a diagnostic error message that informs the user of an...

RAR: Format string and buffer overflow vulnerabilities

Background RAR is a powerful archive manager that can decompress RAR, ZIP and other files, and can create new archives in RAR and ZIP file format. Description Tan Chew Keong reported about two vulnerabilities found in RAR: A format string error exists when displaying a diagnostic error message th...

CVE-2005-3284

Multiple buffer overflows in AhnLab V3 AntiVirus V3Pro 2004 before 6.0.0.488, V3Net for Windows Server 6.0 before 6.0.0.488, and MyV3, with compressed file scanning enabled, allow remote attackers to execute arbitrary code via crafted 1 ALZ, 2 UUE, or 3 XXE archives...

CVE-2005-3284

Multiple buffer overflows in AhnLab V3 AntiVirus V3Pro 2004 before 6.0.0.488, V3Net for Windows Server 6.0 before 6.0.0.488, and MyV3, with compressed file scanning enabled, allow remote attackers to execute arbitrary code via crafted 1 ALZ, 2 UUE, or 3 XXE archives...