3816 matches found
ConnMan: Multiple vulnerabilities
Background ConnMan provides a daemon for managing Internet connections. Description Multiple vulnerabilities have been discovered in ConnMan. Please review the CVE identifiers referenced below for details. Impact A remote attacker, via a crafted DNS packet, could remotely execute code or cause a...
ncurses: Multiple vulnerabilities
Background Free software emulation of curses in System V. Description Multiple vulnerabilities have been discovered in ncurses. Please review the CVE identifiers referenced below for details. Impact A remote attacker, by enticing the user to process untrusted terminfo or other data, could execute...
Cacti: Multiple vulnerabilities
Background Cacti is a complete frontend to rrdtool. Description Multiple vulnerabilities have been discovered in Cacti. Please review the CVE identifiers referenced below for details. Impact Remote attackers could execute arbitrary code or bypass intended access restrictions. Workaround There is ...
Opus: User-assisted execution of arbitrary code
Background Opus is a totally open, royalty-free, highly versatile audio codec. Description A large NLSF values could cause the stabilization code in silk/NLSFstabilize.c to wrap-around and have the last value in NLSFQ15 to be negative, close to -32768. Under normal circumstances, the code will...
libass: Multiple vulnerabilities
Background libass is a portable subtitle renderer for the ASS/SSA Advanced Substation Alpha/Substation Alpha subtitle format. Description Multiple vulnerabilities have been discovered in libass. Please review the CVE identifiers referenced below for details. Impact A remote attacker could cause a...
a2ps: Arbitrary code execution
Background a2ps is an Any to PostScript filter. Description a2ps’ fixps script does not invoke gs with the -dSAFER option. Impact Remote attackers, by enticing a user to process a specially crafted PostScript file, could delete arbitrary files or execute arbitrary code with the privileges of the...
HDF5: Multiple vulnerabilities
Background HDF5 technology suite includes a data model, library, and file format for storing and managing data. Description Multiple arbitrary code execution vulnerabilities have been discovered in HDF5. Please review the CVE identifiers referenced below for details. Impact An attacker could...
ARJ: Multiple vulnerabilities
Background Open-source implementation of the ARJ archiver. Description Multiple vulnerabilities have been discovered in ARJ. Please review the CVE identifiers referenced below for details. Impact An attacker, using a specially crafted ARJ archive, could possibly execute arbitrary code with the...
RPCBind: Denial of service
Background The RPCBind utility is a server that converts RPC program numbers into universal addresses. Description A use-after-free vulnerability was discovered in RPCBind’s svcdodestroy function when trying to free a corrupted xprt-xpnetid pointer. Impact A remote attacker could possibly cause a...
UnZip: Multiple vulnerabilities
Background Info-ZIP’s UnZip is a tool to list and extract files inside PKZIP compressed files. Description Multiple vulnerabilities were found in UnZip. Please review the referenced CVE’s for additional information. Impact Remote attackers could execute arbitrary code or cause Denial of Service...
Adobe Flash Player: Multiple vulnerabilities
Background The Adobe Flash Player is a renderer for the SWF file format, which is commonly used to provide interactive websites. Description Multiple vulnerabilities have been discovered in Adobe Flash Player. Please review the CVE identifiers referenced below for details. Impact A remote attacke...
libtasn1: Multiple vulnerabilities
Background libtasn1 is an ASN.1 library Description Multiple vulnerabilities have been discovered in libtasn1. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly execute arbitrary code with the privileges of the process, or cause a Denial of...
Chromium: Multiple vulnerabilities
Background Chromium is an open-source web browser project. Description Multiple vulnerabilities have been discovered in Chromium. Please review the CVE identifiers referenced below for details. Impact A remote attacker can cause arbitrary remote code execution, Denial of Service or bypass of...
Adobe Flash Player: Multiple vulnerabilities
Background The Adobe Flash Player is a renderer for the SWF file format, which is commonly used to provide interactive websites. Description Multiple vulnerabilities have been discovered in Adobe Flash Player. Please review the CVE identifiers referenced below for details. Impact A remote attacke...
Chromium: Multiple vulnerabilities
Background Chromium is an open-source web browser project. Description Multiple vulnerabilities have been discovered in Chromium. Please review the CVE identifiers referenced below for details. Impact A remote attacker may be able to cause a Denial of Service condition, bypass security...
ICU: Multiple Vulnerabilities
Background ICU is a mature, widely used set of C/C++ and Java libraries providing Unicode and Globalization support for software applications. Description Multiple vulnerabilities have been discovered in ICU. Please review the CVE identifiers referenced below for details. Impact A remote attacker...
Konqueror: Multiple vulnerabilities
Background Konqueror is the KDE web browser and file manager. Description Multiple vulnerabilities have been discovered in Konqueror. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially crafted web site using Konqueror,...
QtCore, QtGui: Multiple vulnerabilities
Background The Qt toolkit is a comprehensive C++ application development framework. Description Multiple vulnerabilities have been discovered in QtCore and QtGui. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially craft...
Subversion: Multiple vulnerabilities
Background Subversion is a versioning system designed to be a replacement for CVS. Description Multiple vulnerabilities have been discovered in Subversion. Please review the CVE identifiers referenced below for details. Impact A remote attacker could cause a Denial of Service condition or obtain...
HAProxy: Arbitrary code execution
Background HAProxy is a TCP/HTTP reverse proxy for high availability environments. Description A boundary error in HAProxy could cause a buffer overflow when header rewriting is enabled and the configuration sets global.tune.bufsize to a value greater than the default 16384 bytes. Impact A remote...
PostgreSQL: Multiple vulnerabilities
Background PostgreSQL is an open source object-relational database management system. Description Multiple vulnerabilities have been discovered in PostgreSQL. Please review the CVE identifiers referenced below for details. Impact A remote attacker could spoof SSL connections. Furthermore, a remot...
BIND: Multiple vulnerabilities
Background BIND is the Berkeley Internet Name Domain Server. Description Multiple vulnerabilities have been discovered in BIND: Domain names are not properly revoked due to an error in the cache update policy CVE-2012-1033. BIND accepts records with zero-length RDATA fields CVE-2012-1667. An...
Adobe Reader: Multiple vulnerabilities
Background Adobe Reader is a closed-source PDF reader. Description Multiple vulnerabilities have been found in Adobe Reader, including an integer overflow in TrueType Font handling CVE-2012-0774 and multiple unspecified errors which could cause memory corruption. Impact A remote attacker could...
ejabberd: Multiple Denial of Service vulnerabilities
Background ejabberd is the Erlang jabber daemon. Description Multiple vulnerabilities have been discovered in ejabberd. Please review the CVE identifiers referenced below for details. Impact ejabberd allows remote attackers to cause a Denial of Service condition with the result of either crashing...
nginx: User-assisted execution of arbitrary code
Background nginx is a robust, small, and high performance HTTP and reverse proxy server. Description An error in ngxhttpmp4module.c could cause a buffer overflow. NOTE: nginx must have been emerged with USE="nginxmoduleshttpmp4" in order to be affected by this vulnerability. Impact A remote...
Libpng: Multiple vulnerabilities
Background libpng is a standard library used to process PNG Portable Network Graphics images. It is used by several programs, including web browsers and potentially server processes. Description Multiple vulnerabilities were found in libpng: The pngdecompresschunk function in pngrutil.c does not...
Bugzilla: Multiple vulnerabilities
Background Bugzilla is a bug tracking system from the Mozilla project. Description Multiple vulnerabilities have been reported in Bugzilla. Please review the CVE identifiers referenced below for details. Impact A remote attacker might be able to disclose local files, bug information, passwords, a...
GNU Emacs, XEmacs: Multiple vulnerabilities
Background GNU Emacs and XEmacs are highly extensible and customizable text editors. edit-utils are miscellaneous extensions to XEmacs. Description Morten Welinder reports about GNU Emacs and edit-utils in XEmacs: By shipping a .flc accompanying a source file .c for example and setting...
Python: Multiple vulnerabilities
Background Python is an interpreted, interactive, object-oriented programming language. Description Multiple vulnerabilities were discovered in Python: David Remahl of Apple Product Security reported several integer overflows in core modules such as stringobject, unicodeobject, bufferobject,...
MySQL: Multiple vulnerabilities
Background MySQL is a popular multi-threaded, multi-user SQL server. Description Multiple vulnerabilities have been reported in MySQL: Mattias Jonsson reported that a "RENAME TABLE" command against a table with explicit "DATA DIRECTORY" and "INDEX DIRECTORY" options would overwrite the file to...
Cpio: Buffer overflow
Background GNU cpio copies files into or out of a cpio or tar archive. Description A buffer overflow vulnerability in the safernamesuffix function in GNU cpio has been discovered. Impact A remote attacker could entice a user to open a specially crafted archive file resulting in a stack-based buff...
MySQL: Denial of Service and information leakage
Background MySQL is a popular multi-threaded, multi-user SQL server. Description Dormando reported a vulnerability within the handling of password packets in the connection protocol CVE-2007-3780. Andrei Elkin also found that the "CREATE TABLE LIKE" command didn't require SELECT privileges on the...
VLC media player: Format string vulnerabilities
Background VLC media player is a multimedia player for various audio and video formats. Description David Thiel from iSEC Partners Inc. discovered format string errors in various plugins when parsing data. The affected plugins include Vorbis, Theora, CDDA and SAP. Impact A remote attacker could...
SeaMonkey: Multiple vulnerabilities
Background The SeaMonkey project is a community effort to deliver production-quality releases of code derived from the application formerly known as the 'Mozilla Application Suite'. Description Tom Ferris reported a heap-based buffer overflow involving wide SVG stroke widths that affects SeaMonke...
Adobe Acrobat Reader: Multiple vulnerabilities
Background Adobe Acrobat Reader is a PDF reader released by Adobe. Description Adobe Acrobat Reader in stand-alone mode is vulnerable to remote code execution via heap corruption when loading a specially crafted PDF file. The browser plugin released with Adobe Acrobat Reader nppdf.so does not...
Wireshark: Multiple vulnerabilities
Background Wireshark is a feature-rich network protocol analyzer. Description The following vulnerabilities have been discovered in Wireshark. Firstly, if the IPsec ESP parser is used it is susceptible to off-by-one errors, this parser is disabled by default; secondly, the SCSI dissector is...
libTIFF: Multiple vulnerabilities
Background libTIFF provides support for reading and manipulating TIFF images. Description Tavis Ormandy of the Google Security Team discovered several heap and stack buffer overflows and other flaws in libTIFF. The affected parts include the TIFFFetchShortPair, TIFFScanLineSize and...
Dia: Format string vulnerabilities
Background Dia is a GTK+ based diagram creation program. Description KaDaL-X discovered a format string error within the handling of filenames. Hans de Goede also discovered several other format string errors in the processing of dia files. Impact By enticing a user to open a specially crafted...
phpWebSite: Multiple vulnerabilities
Background phpWebSite is a content management system written in PHP. Description phpWebSite fails to sanitize input sent to the XML-RPC server using the "POST" method. Other unspecified vulnerabilities have been discovered by Diabolic Crab of Hackers Center. Impact A remote attacker could exploit...
phpBB: Arbitrary command execution
Background phpBB is an Open Source bulletin board package. Description Ron van Daal discovered that phpBB contains a vulnerability in the highlighting code. Impact Successful exploitation would grant an attacker unrestricted access to the PHP exec or system functions, allowing the execution of...
Net-SNMP: fixproc insecure temporary file creation
Background Net-SNMP is a suite of applications used to implement the Simple Network Management Protocol. Description The fixproc application of Net-SNMP creates temporary files with predictable filenames. Impact A malicious local attacker could exploit a race condition to change the content of th...
phpMyAdmin: Multiple vulnerabilities
Background phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL databases from a web-browser. Description Nicolas Gregoire exaprobe.com has discovered two vulnerabilities that exist only on a webserver where PHP safemode is off. These vulnerabilities could lead to...
nfs-utils: Multiple remote vulnerabilities
Background nfs-utils is a package containing the client and daemon implementations for the NFS protocol. Description Arjan van de Ven has discovered a buffer overflow on 64-bit architectures in 'rquotaserver.c' of nfs-utils CAN-2004-0946. A remotely exploitable flaw on all architectures also exis...
Samba: Multiple vulnerabilities
Background Samba is a freely available SMB/CIFS implementation which allows seamless interoperability of file and print services to other SMB/CIFS clients. Description Samba fails to do proper bounds checking when handling TRANSACT2QFILEPATHINFO replies. Additionally an input validation flaw exis...
XFree86, X.org: XDM ignores requestPort setting
Background The X Display Manager XDM is a program which provides a graphical login prompt to users on the console or on remote X terminals. It has largely been superseded by programs such as GDM and KDM. Description XDM will open TCP sockets for its chooser, even if the DisplayManager.requestPort...
Ethereal: Multiple security problems
Background Ethereal is a feature rich network protocol analyzer. Description There are multiple vulnerabilities in versions of Ethereal earlier than 0.10.4, including: A buffer overflow in the MMSE dissector. Under specific conditions a SIP packet could make Ethereal crash. The AIM dissector coul...
tripwire: Format string vulnerability
Background tripwire is an open source file integrity checker. Description The code that generates email reports contains a format string vulnerability in pipedmailmessage.cpp. Impact With a carefully crafted filename on a local filesystem an attacker could cause execution of arbitrary code with...
Gallery 1.4.1 and below remote exploit vulnerability
Background Gallery is an open source image management system written in PHP. More information is available at http://gallery.sourceforge.net Description Starting in the 1.3.1 release, Gallery includes code to simulate the behaviour of the PHP 'registerglobals' variable in environments where that...
runc: Multiple Vulnerabilities
Background runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. Description Multiple vulnerabilities have been discovered in runc. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for...
Exim: Multiple Vulnerabilities
Background Exim is a message transfer agent MTA designed to be a a highly configurable, drop-in replacement for sendmail. Description Multiple vulnerabilities have been discovered in Exim. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE...