[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

249461

 
 

909

 
 

195508

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 31248 Download | Alert*

Off-by-one error in the dissect_negprot_response function in packet-smb.c in the SMB dissector in Wireshark 1.2.0 through 1.2.2 allows remote attackers to cause a denial of service (application crash) via a file that records a malformed packet trace. NOTE: some of these details are obtained from third party information.

Multiple buffer overflows in the LWRES dissector in Wireshark 0.9.15 through 1.0.10 and 1.2.0 through 1.2.5 allow remote attackers to cause a denial of service (crash) via a malformed packet, as demonstrated using a stack-based buffer overflow to the dissect_getaddrsbyname_request function.

Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 might allow attackers to execute arbitrary code via unspecified vectors, related to a "data injection vulnerability."

Heap-based buffer overflow in Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 allows remote attackers to execute arbitrary code via crafted dimensions of JPEG data in an SWF file.

The host is installed with Apache Tomcat 6.0.0 through 6.0.20 or 5.5.0 through 5.5.28 and is prone to insecure default administrative password vulnerability. A flaw is present in the application, where the Windows installer creates a blank password by default for the administrative user. Successful exploitation allows remote attackers to gain privileges.

The host is installed with Apache Tomcat 5.5.0 through 5.5.28 or 6.0.0 through 6.0.20 and is prone to security bypass vulnerability. A flaw is present in the application, which fails handle HTTP requests. Successful exploitation allows remote attackers to bypass intended authentication requirements.

The host is installed with Apache Tomcat 5.5.0 through 5.5.28 or 6.0.0 through 6.0.20 and is prone to directory traversal vulnerability. A flaw is present in the application, which fails handle a directory traversal sequences in a WAR filename, as demonstrated by the ...war filename. Successful exploitation allows remote attackers to delete work-directory files.

The host is installed with OpenOffice.org before 3.2 and is prone to integer overflow vulnerability. A flaw is present in XPMReader::ReadXPM function in filter.vcl/ixpm/svt_xpmread.cxx, which fails to properly handle a crafted XPM file. Successful exploitation allows remote attackers to execute arbitrary code.

The host is installed with OpenOffice.org before 3.2 and is prone to heap-based buffer overflow vulnerability. A flaw is present in the GIFLZWDecompressor::GIFLZWDecompressor function in filter.vcl/lgif/decode.cxx, which fails to properly handle a crafted GIF file. Successful exploitation allows remote attackers to execute arbitrary code.

The host is installed with OpenOffice.org before 3.2 and is prone to integer underflow vulnerability. A flaw is present in filter/ww8/ww8par2.cxx, which fails to properly handle a crafted sprmTDefTable table property modifier in a Word document. Successful exploitation allows remote attackers to execute arbitrary code.


Pages:      Start    1869    1870    1871    1872    1873    1874    1875    1876    1877    1878    1879    1880    1881    1882    ..   3124

© SecPod Technologies