Multiple stack overflows exist in dxmsft.dll version 6.3.2900.3199 (Image DirectX Transforms). Proof of concept included.
1b85d83ec0370ebc75c7b10a611ff9fcd7a11423b1a70abdadf3cecff9ca49b7Gentoo Linux Security Advisory GLSA 200711-28 - Tavis Ormandy and Will Drewry (Google Security Team) discovered a heap-based buffer overflow in the Regular Expression engine (regcomp.c) that occurs when switching from byte to Unicode (UTF-8) characters in a regular expression. Versions less than 5.8.8-r4 are affected.
769a4ef5ba214baf68c09b6f6ac71052ca6e71e3e526c72a4a6c1e5539995b89Wordpress versions 1.5 through 2.3.1 suffer from a cookie authentication vulnerability.
dcf620597516557871bd390192f9dd05e32ea32acc9591a2243559cb230b97adMandriva Linux Security Advisory - The SNMP agent in net-snmp 5.4.1 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) via a GETBULK request with a large max-repeaters value.
988809a993837cdc067f4db99495ab39ba79bcf1b42aba30a5fcd539c60547a6Citrix NetScaler version 8.0 suffers from a cross site scripting vulnerability in the web management interface.
8426e8030866ae4e9293a3c8ac554e49da50c56b21b4b5d5eaff85db4813d8ecThe Alcatel OmniPCX Enterprise VoIP system versions 7.1 and below are susceptible to a audio stream reroute vulnerability.
d29537c266f821c0cf2d28d26b204741fde07dfd462299873ecfdbe79f73a3b3The Joomla component JUser version 1.0.14 suffers from a remote file inclusion vulnerability.
d70cc245adce09458cd457fc2ceb3e1b324393cd6c907f460443b0de5be27e0aClickAndBaneX suffers from a SQL injection vulnerability.
3b3d7a737db6b0af5e55544c3bd8999a534b75fb7e9e515298c841423a949e89Gentoo Linux Security Advisory GLSA 200711-27 - Alin Rad Pop from Secunia Research discovered a boundary error in the function separate_sentence() in file tokenize.c when processing an overly long word which might lead to a stack-based buffer overflow. Versions less than 4.2.4-r1 are affected.
3422987a83a99edd74624803a9b23872643492b4b2340e20ec2e6035077b1935Gentoo Linux Security Advisory GLSA 200711-26 - Joachim Schrod discovered several buffer overflow vulnerabilities and an insecure temporary file creation in the dvilj application that is used by dvips to convert DVI files to printer formats. Bastien Roucaries reported that the dvips application is vulnerable to two stack-based buffer overflows when processing DVI documents with long \href{} URIs. teTeX also includes code from Xpdf that is vulnerable to a memory corruption and two heap-based buffer overflows (GLSA 200711-22); and it contains code from T1Lib that is vulnerable to a buffer overflow when processing an overly long font filename (GLSA 200710-12). Versions less than 3.0_p1-r6 are affected.
f85e6812ccb3c629600cfb843c3cc21c6dc61a44005ea7f1ddc7406ce7c155fdGentoo Linux Security Advisory GLSA 200711-25 - Joe Gallo and Artem Russakovskii reported an error in the convert_search_mode_to_innobase() function in ha_innodb.cc in the InnoDB engine that is leading to a failed assertion when handling CONTAINS operations. Versions less than 5.0.44-r2 are affected.
8a44317ed2cdce532a1bec6c0df6f1c71a2072e98aeacb643fe5635596e10b4bGentoo Linux Security Advisory GLSA 200711-24 - Multiple vulnerabilities have been reported in Mozilla Thunderbird's HTML browser engine and JavaScript engine that can be exploited to cause a memory corruption. Versions less than 2.0.0.9 are affected.
c926415fb8614d2ec0a289182c798f9506d21916479b72febb2c28f46ab81920Gentoo Linux Security Advisory GLSA 200711-23 - Multiple vulnerabilities have been discovered in several VMware products. Neel Mehta and Ryan Smith (IBM ISS X-Force) discovered that the DHCP server contains an integer overflow vulnerability, an integer underflow vulnerability and another error when handling malformed packets, leading to stack-based buffer overflows or stack corruption. Rafal Wojtczvk (McAfee) discovered two unspecified errors that allow authenticated users with administrative or login privileges on a guest operating system to corrupt memory or cause a Denial of Service. Another unspecified vulnerability related to untrusted virtual machine images was discovered. Versions less than 6.0.1.55017 are affected.
a3526d292c687ba2acc51426a177e22a29167c158a791debbef984335b9765fcGentoo Linux Security Advisory GLSA 200711-22 - Alin Rad Pop (Secunia Research) discovered several vulnerabilities in the Stream.cc file of Xpdf: An integer overflow in the DCTStream::reset() method and a boundary error in the CCITTFaxStream::lookChar() method, both leading to heap-based buffer overflows. He also discovered a boundary checking error in the DCTStream::readProgressiveDataUnit() method causing memory corruption. Note: Gentoo's version of Xpdf is patched to use the Poppler library, so the update to Poppler will also fix Xpdf. Versions less than 0.6.1-r1 are affected.
5f52b9f84d9302e6e300d1d2e51875e562148246b4abd18aa941c15e42413c79Mozilla based browsers (Firefox, Netscape, etc), Konqueror and Safari 2 do not bind a user-approved webserver certificate to the originating domain name. This makes the user vulnerable to certificate spoofing by "subjectAltName:dNSName" extensions.
bea6d858652bffab5a7023af650bba3ef9010cf7d7f2166821b4a21d8b7abec7Proof of concept exploit that demonstrates a memory accession violation in LIVE555 Media Server versions 2007.11.01 and below.
19fc2a72d6bcf1168854357be19ce52bc3f50bd6a2aa90a33934b95524f532c0LIVE555 Media Server versions 2007.11.01 and below suffer from a denial of service vulnerability due to a memory access violation.
7fc5868caaff49e311fec4dcc9be9ebf3b1c85576e691e467bd7101da6de8f37Debian Security Advisory 1407-1 - Alin Rad Pop discovered that the Common UNIX Printing System is vulnerable to an off-by-one buffer overflow in the code to process IPP packets, which may lead to the execution of arbitrary code.
753a3d68ac28924d7c9af18a0c52d8384412685adfd7519aebfba8c0b6da387cProfileCMS versions 1.0 and below suffer from a remote SQL injection vulnerability.
6d3c01126eefaa9348bc69c733c8390764d7741cff5d70a141bddc035413de3fSciurus Hosting Panel remote code injection exploit.
970c84d08146a628ed14566ad0049f63e193da51f4d9ca6972676548a3f8b934IceBB versions 1.0-rc6 and below database authentication details exploit.
8cec67a3a6e76358d69f0d7d9b85a3112391c9ad2fd11c0c9b41aaefa0939ceeHotScripts Clone Script suffers from a remote SQL injection vulnerability.
39d4a9b19a3827d0e0a819e3e9062e6c200ce6266c7700f8574b7e550c5fd27fVigileCMS version 1.4 suffers from local file inclusion, cross site scripting, and cross site request forgery vulnerabilities.
4e56b7d8ae88dc17992c6e483bbc9c99081cdb9a938209b69c7a90eb54a816eaphpBBViet version 0.22 suffers from a remote file inclusion vulnerability.
0d78987879a884969ed9f4f4b4dff77b7c045918cac93442a6effda1354247d2Gentoo Linux Security Advisory GLSA 200711-21 - Tavis Ormandy of the Google Security Team discovered a heap-based overflow vulnerability in the NE2000 driver. He also discovered a divide-by-zero error in the emulated floppy disk controller. Versions less than 2.3 are affected.
c23da803fed5ae5bfbfb3200e80352b8e73008f52d3771106d7e9eae43bd6a91
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed