 |
|
|
|
| Jetty multiple security vulnerabilities | | Published: |  | 26.10.2009 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 10345 | | Type: |  | remote | | Level: |  | 6/10 | | Description: |  | Crossite scripting, information leak. |
| Pegasus Mail buffer overflow | | Published: | | 26.10.2009 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 10350 | | Type: | | client | | Level: | | 5/10 | | Description: | | Buffer overflow on POP3 server response parsing. |
| Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) | | Published: | | 26.10.2009 | | Source: | | | | SecurityVulns ID: | | 10347 | | Type: | | remote | | Level: | | 5/10 | | Description: | | PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. |
CamlImages library integer overflows
updated since 03.07.2009 | | Published: | | 26.10.2009 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 10036 | | Type: | | library | | Level: | | 6/10 | | Description: | | Multiple overflows on PNG, TIFF, GIF, JPEG processing. |
| Affected: |  | CAMLIMAGES : CamlImages 2.2 | | | | ADVI : advi 1.6 | | CVE: |  | CVE-2009-3296 (Multiple integer overflows in tiffread.c in CamlImages 2.2 might allow remote attackers to execute arbitrary code via TIFF images containing large width and height values that trigger heap-based buffer overflows.) | | | | CVE-2009-2660 (Multiple integer overflows in CamlImages 2.2 might allow context-dependent attackers to execute arbitrary code via images containing large width and height values that trigger a heap-based buffer overflow, related to (1) crafted GIF files (gifread.c) and (2) crafted JPEG files (jpegread.c), a different vulnerability than CVE-2009-2295.) | | | | CVE-2009-2295 (Multiple integer overflows in CamlImages 2.2 and earlier might allow context-dependent attackers to execute arbitrary code via a crafted PNG image with large width and height values that trigger a heap-based buffer overflow in the (1) read_png_file or (2) read_png_file_as_rgb24 function.) |
| squidGuard buffer overflows | | Published: | | 26.10.2009 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 10346 | | Type: | | remote | | Level: | | 6/10 | | Description: | | Multiple buffer overflows. |
| Affected: | | SQUIDGUARD : squidGuard 1.4 | | | | SQUIDGUARD : squidGuard 1.3 | | CVE: | | CVE-2009-3700 (Buffer overflow in sgLog.c in squidGuard 1.3 and 1.4 allows remote attackers to cause a denial of service (application hang or loss of blocking functionality) via a long URL with many / (slash) characters, related to "emergency mode.") |
Novell eDirectory buffer overflow
updated since 26.10.2009 | | Published: | | 18.11.2009 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 10348 | | Type: | | remote | | Level: | | 6/10 | | Description: | | Buffer overflow in /dhost/modules?L: |
Eureka Mail buffer overflow
updated since 26.10.2009 | | Published: | | 01.12.2009 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 10349 | | Type: | | client | | Level: | | 5/10 | | Description: | | Buffer overflow on POP3 / SMTP server response parsing. |
|
|
|
|
|
|
|
|
