SGI ProPack 3.0

exif.c in PHP before 4.3.11 allows remote attackers to cause a denial of service (memory consumption and crash) via an EXIF header with a large IFD nesting level, which causes significant stack recursion.

Published: 2005-04-12T04:00:00.000Z
Updated: 2024-08-07T21:35:59.682Z

Unknown vulnerability in ImageMagick before 6.1.8 allows remote attackers to cause a denial of service (application crash) via a crafted PSD file.

Published: 2005-03-26T05:00:00.000Z
Updated: 2024-08-07T21:28:27.138Z

ImageMagick before 6.0 allows remote attackers to cause a denial of service (application crash) via a TIFF image with an invalid tag.

Published: 2005-03-26T05:00:00.000Z
Updated: 2024-08-07T21:28:27.132Z

scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.

Published: 2005-03-04T05:00:00.000Z
Updated: 2024-08-07T21:21:06.249Z

The KAME racoon daemon in ipsec-tools before 0.5 allows remote attackers to cause a denial of service (crash) via malformed ISAKMP packets.

Published: 2005-03-26T05:00:00.000Z
Updated: 2024-08-07T21:13:54.134Z

The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users exposed to the original vulnerabilities.

Published: 2005-02-15T05:00:00.000Z
Updated: 2024-08-07T21:05:25.397Z

Buffer overflow in the PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to execute arbitrary code by setting the PERLIO_DEBUG variable and executing a Perl script whose full pathname contains a long directory tree.

Published: 2005-02-07T05:00:00.000Z
Updated: 2024-08-07T21:05:24.911Z

Heap-based buffer overflow in psd.c for ImageMagick 6.1.0, 6.1.7, and possibly earlier versions allows remote attackers to execute arbitrary code via a .PSD image file with a large number of layers.

Published: 2005-01-19T05:00:00.000Z
Updated: 2024-08-07T20:57:40.834Z

Mozilla allows remote attackers to cause a denial of service (application crash from null dereference or infinite loop) via a web page that contains a (1) TEXTAREA, (2) INPUT, (3) FRAMESET or (4) IMG tag followed by a null character and some trailing characters, as demonstrated by mangleme.

Published: 2005-02-20T05:00:00.000Z
Updated: 2024-08-08T01:00:36.308Z

Format string vulnerability in wrapper.c in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16 allows remote attackers with CVSROOT commit access to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in a wrapper line.

Published: 2005-02-13T05:00:00.000Z
Updated: 2024-08-08T00:53:23.983Z

Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a heap-based buffer overflow.

Published: 2005-05-04T04:00:00.000Z
Updated: 2024-08-08T00:46:12.284Z

The EPSF pipe support in enscript 1.6.3 allows remote attackers or local users to execute arbitrary commands via shell metacharacters.

Published: 2005-01-29T05:00:00.000Z
Updated: 2024-08-08T00:46:11.489Z

Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier (1) allow access to restricted Java classes via JavaScript and (2) do not properly restrict access to certain Java classes from the Java applet, which allows remote attackers to bypass sandbox restrictions and read or write arbitrary files.

Published: 2004-12-31T05:00:00.000Z
Updated: 2024-08-08T00:39:00.876Z

Ethereal 0.9.0 through 0.10.7 allows remote attackers to cause a denial of service (CPU consumption) via a certain malformed SMB packet.

Published: 2004-12-31T05:00:00.000Z
Updated: 2024-08-08T00:39:00.905Z

Unknown vulnerability in the DICOM dissector in Ethereal 0.10.4 through 0.10.7 allows remote attackers to cause a denial of service (application crash).

Published: 2004-12-31T05:00:00.000Z
Updated: 2024-08-08T00:39:00.832Z

Multiple cross-site scripting (XSS) vulnerabilities in Squirrelmail 1.2.10 and earlier allow remote attackers to inject arbitrary HTML or script via (1) the $mailer variable in read_body.php, (2) the $senderNames_part variable in mailbox_display.php, and possibly other vectors including (3) the $event_title variable or (4) the $event_text variable.

Published: 2004-07-09T04:00:00.000Z
Updated: 2024-08-08T00:24:26.813Z

Multiple buffer overflows in krb5_aname_to_localname for MIT Kerberos 5 (krb5) 1.3.3 and earlier allow remote attackers to execute arbitrary code as root.

Published: 2004-06-03T04:00:00.000Z
Updated: 2024-08-08T00:24:25.838Z

SQL injection vulnerability in SquirrelMail before 1.4.3 RC1 allows remote attackers to execute unauthorized SQL statements, with unknown impact, probably via abook_database.php.

Published: 2004-06-03T04:00:00.000Z
Updated: 2024-08-08T00:17:15.247Z

Cross-site scripting (XSS) vulnerability in mime.php for SquirrelMail before 1.4.3 allows remote attackers to insert arbitrary HTML and script via the content-type mail header, as demonstrated using read_body.php.

Published: 2004-06-03T04:00:00.000Z
Updated: 2024-08-08T00:17:15.174Z

Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.2 allow remote attackers to execute arbitrary script as other users and possibly steal authentication information via multiple attack vectors, including the mailbox parameter in compose.php.

Published: 2004-06-03T04:00:00.000Z
Updated: 2024-08-08T00:17:15.176Z

Buffer overflow in the MMSE dissector for Ethereal 0.10.1 to 0.10.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code.

Published: 2004-06-03T04:00:00.000Z
Updated: 2024-08-08T00:17:15.258Z

The SPNEGO dissector in Ethereal 0.9.8 to 0.10.3 allows remote attackers to cause a denial of service (crash) via unknown attack vectors that cause a null pointer dereference.

Published: 2004-06-03T04:00:00.000Z
Updated: 2024-08-08T00:17:15.171Z

The AIM dissector in Ethereal 0.10.3 allows remote attackers to cause a denial of service (assert error) via unknown attack vectors.

Published: 2004-06-03T04:00:00.000Z
Updated: 2024-08-08T00:17:15.245Z

Ethereal 0.10.3 allows remote attackers to cause a denial of service (crash) via certain SIP messages between Hotsip servers and clients.

Published: 2004-06-03T04:00:00.000Z
Updated: 2024-08-08T00:17:15.261Z

Integer overflow in the ip_setsockopt function in Linux kernel 2.4.22 through 2.4.25 and 2.6.1 through 2.6.3 allows local users to cause a denial of service (crash) or execute arbitrary code via the MCAST_MSFILTER socket option.

Published: 2004-04-30T04:00:00.000Z
Updated: 2024-08-08T00:17:14.977Z

serve_notify in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle empty data lines, which may allow remote attackers to perform an "out-of-bounds" write for a single byte to execute arbitrary code or modify critical program data.

Published: 2004-06-11T04:00:00.000Z
Updated: 2024-08-08T00:17:14.976Z

Integer overflow in the "Max-dotdot" CVS protocol command (serve_max_dotdot) for CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, may allow remote attackers to cause a server crash, which could cause temporary data to remain undeleted and consume disk space.

Published: 2004-06-11T04:00:00.000Z
Updated: 2024-08-08T00:17:14.946Z

Double free vulnerability for the error_prog_name string in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, may allow remote attackers to execute arbitrary code.

Published: 2004-06-11T04:00:00.000Z
Updated: 2024-08-08T00:17:14.603Z

CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle malformed "Entry" lines, which prevents a NULL terminator from being used and may lead to a denial of service (crash), modification of critical program data, or arbitrary code execution.

Published: 2004-06-11T04:00:00.000Z
Updated: 2024-08-08T00:17:14.669Z

Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. sequences or (2) absolute pathnames with double leading slashes ("//absolute/path").

Published: 2004-05-05T04:00:00.000Z
Updated: 2024-08-08T00:10:03.724Z

Multiple stack-based buffer overflows in the get_header function in header.c for LHA 1.14, as used in products such as Barracuda Spam Firewall, allow remote attackers or local users to execute arbitrary code via long directory or file names in an LHA archive, which triggers the overflow when testing or extracting the archive.

Published: 2004-05-05T04:00:00.000Z
Updated: 2024-08-08T00:10:03.930Z

Utempter allows device names that contain .. (dot dot) directory traversal sequences, which allows local users to overwrite arbitrary files via a symlink attack on device names in combination with an application that trusts the utmp or wtmp files.

Published: 2004-05-05T04:00:00.000Z
Updated: 2024-08-08T00:10:03.818Z

The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that causes an out-of-bounds read.

Published: 2004-03-18T05:00:00.000Z
Updated: 2024-08-08T00:10:03.359Z

OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool.

Published: 2004-03-18T05:00:00.000Z
Updated: 2024-08-08T00:01:23.650Z

The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.

Published: 2004-03-18T05:00:00.000Z
Updated: 2025-01-16T17:33:22.869Z