23 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-43700
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xfpt versions prior to 1.01 fails to handle appropriately some parameters inside the input data, resulting in a stack-based buffer overflow vulnerability. When ...
CVE-2024-43700
xfpt versions prior to 1.01 fails to handle appropriately some parameters inside the input data, resulting in a stack-based buffer overflow vulnerability. When a user of the affected product is tricked to process a specially crafted file, arbitrary code may be executed on the user's environment...
The vulnerability of the text converter in an XML file format, XFPT, arises from copying buffers without checking the size of the input data. This allows a malicious actor to execute arbitrary code.
The vulnerability of the text converter in an XML file format, XFPT, is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows an attacker to execute arbitrary code by processing a specially created file...
USN-7192-1: xfpt vulnerability
It was discovered that xfpt did not properly manage memory under certain circumstances. If a user were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause the application to crash or execute arbitrary code...
USN-7192-1 xfpt vulnerability
It was discovered that xfpt did not properly manage memory under certain circumstances. If a user were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause the application to crash or execute arbitrary code...
Ubuntu: Security Advisory (USN-7192-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 22.04 LTS / 24.04 LTS / 24.10 : xfpt vulnerability (USN-7192-1)
The remote Ubuntu 22.04 LTS / 24.04 LTS / 24.10 host has a package installed that is affected by a vulnerability as referenced in the USN-7192-1 advisory. It was discovered that xfpt did not properly manage memory under certain circumstances. If a user were tricked into opening a specially crafte...
Debian dla-3977 : xfpt - security update
The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-3977 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3977-1 [email protected] https://www.debian.org/lts/security/...
Debian: Security Advisory (DLA-3977-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 3977-1] xfpt security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3977-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz November 30, 2024 https://wiki.debian.org/LTS -...
DLA-3977-1 xfpt - security update
Bulletin has no description...
CVE-2024-43700
xfpt versions prior to 1.01 fails to handle appropriately some parameters inside the input data, resulting in a stack-based buffer overflow vulnerability. When a user of the affected product is tricked to process a specially crafted file, arbitrary code may be executed on the user's environment...
DEBIAN-CVE-2024-43700
xfpt versions prior to 1.01 fails to handle appropriately some parameters inside the input data, resulting in a stack-based buffer overflow vulnerability. When a user of the affected product is tricked to process a specially crafted file, arbitrary code may be executed on the user's environment...
CVE-2024-43700
xfpt versions prior to 1.01 fails to handle appropriately some parameters inside the input data, resulting in a stack-based buffer overflow vulnerability. When a user of the affected product is tricked to process a specially crafted file, arbitrary code may be executed on the user's environment...
UBUNTU-CVE-2024-43700
xfpt versions prior to 1.01 fails to handle appropriately some parameters inside the input data, resulting in a stack-based buffer overflow vulnerability. When a user of the affected product is tricked to process a specially crafted file, arbitrary code may be executed on the user's environment...
CVE-2024-43700
xfpt versions prior to 1.01 fails to handle appropriately some parameters inside the input data, resulting in a stack-based buffer overflow vulnerability. When a user of the affected product is tricked to process a specially crafted file, arbitrary code may be executed on the user's environment...
CVE-2024-43700
xfpt versions prior to 1.01 fails to handle appropriately some parameters inside the input data, resulting in a stack-based buffer overflow vulnerability. When a user of the affected product is tricked to process a specially crafted file, arbitrary code may be executed on the user's environment...
CVE-2024-43700
xfpt versions prior to 1.01 fails to handle appropriately some parameters inside the input data, resulting in a stack-based buffer overflow vulnerability. When a user of the affected product is tricked to process a specially crafted file, arbitrary code may be executed on the user's environment...
CVE-2024-43700
CVE-2024-43700 concerns xfpt with versions prior to 1.01, where improper handling of input data can cause a stack-based buffer overflow, allowing arbitrary code execution when a crafted file is opened. The issue is repeatedly documented across Linux distributions and advisories: Debian DLA-3977-1...
CVE-2024-43700
xfpt versions prior to 1.01 fails to handle appropriately some parameters inside the input data, resulting in a stack-based buffer overflow vulnerability. When a user of the affected product is tricked to process a specially crafted file, arbitrary code may be executed on the user's environment...