html entity decode software vulnerabilities
vulnerabilities.aspcode.net
Searching html entity decode software vulnerabilities
The encrypted loop device in Linux kernel 2.4.1
encrypted
|
kernel
|
device
|
Linux
|
loop
|
The encrypted loop device in Linux kernel 2.4.10 and earlier does not authenticate the entity that is encrypting data, which allows local users to modify encrypted data without knowing the key.
Unknown vulnerability in the "ipopts decode" fu
functionality
|
vulnerability
|
Firestorm
|
decode"
|
Unknown
|
"ipopts
|
IDS
|
Unknown vulnerability in the "ipopts decode" functionality in Firestorm IDS 0.4.0 through 0.4.2 allows remote attackers to cause a denial of service (crash) via certain IP options.
The php_if_imap_mime_header_decode function in
php_if_imap_mime_header_decode
|
functionality
|
function
|
before
|
IMAP
|
PHP
|
The php_if_imap_mime_header_decode function in the IMAP functionality in PHP before 4.2.2 allows remote attackers to cause a denial of service (crash) via an e-mail header with a long "To" header.
Integer overflow in parse_decode_path() of sloc
overflow
|
Integer
|
Integer overflow in parse_decode_path() of slocate may allow attackers to execute arbitrary code via a LOCATE_PATH with a large number of ":" (colon) characters, whose count is used in a call to malloc.
Multiple buffer overflows in Gaim 0.75 allow re
overflows
|
Multiple
|
buffer
|
Gaim
|
Multiple buffer overflows in Gaim 0.75 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) octal encoding in yahoo_decode that causes a null byte to be written beyond the buffer, (2) octal encoding in yahoo_decode that causes a pointer to reference memory beyond the terminating null byte, (3) a quoted printable string to the gaim_quotedp_decode MIME decoder that causes a null byte to be written beyond the buffer, and (4) quoted printable encoding in gaim_quotedp_decode that causes a pointer to reference memory beyond the terminating null byte.
Outlook 2003 allows remote attackers to bypass
Outlook
|
Outlook 2003 allows remote attackers to bypass intended access restrictions and cause Outlook to request a URL from a remote site via an HTML e-mail message containing a Vector Markup Language (VML) entity whose src parameter points to the remote site, which could allow remote attackers to know when a message has been read, verify valid e-mail addresses, and possibly leak other information.
HP OpenView Select Access 5.0 through 6.0 does
restrictions
|
characters
|
correctly
|
attackers
|
OpenView
|
encoded
|
unicode
|
through
|
Access
|
remote
|
decode
|
Select
|
bypass
|
allow
|
could
|
UTF-8
|
which
|
does
|
URL
|
not
|
HP OpenView Select Access 5.0 through 6.0 does not correctly decode UTF-8 encoded unicode characters in a URL, which could allow remote attackers to bypass access restrictions.
Davenport before 0.9.10 allows attackers to cau
Davenport
|
before
|
Davenport before 0.9.10 allows attackers to cause a denial of service (resource consumption) via (1) a very large XML file or (2) entity expansion attacks.
Buffer overflow in the decode_post function in
decode_post
|
function
|
overflow
|
before
|
Buffer
|
ELOG
|
Buffer overflow in the decode_post function in ELOG before 2.5.7 allows remote attackers to execute arbitrary code via attachments with long file names.
The Adobe Reader control in Adobe Reader and Ac
control
|
Acrobat
|
Reader
|
Adobe
|
The Adobe Reader control in Adobe Reader and Acrobat 7.0 and 7.0.1 allows remote attackers to determine the existence of files via Javascript containing XML script, aka the "XML External Entity vulnerability."
Buffer overflow in the mutt_decode_xbit functio
mutt_decode_xbit
|
function
|
Handlerc
|
overflow
|
Buffer
|
Mutt
|
Buffer overflow in the mutt_decode_xbit function in Handler.c for Mutt 1.5.10 allows remote attackers to execute arbitrary code, possibly due to interactions with libiconv or gettext.
Eval injection vulnerability in the decode func
rpc_decoderphp
|
vulnerability
|
attackers
|
arbitrary
|
injection
|
possibly
|
programs
|
function
|
execute
|
earlier
|
allows
|
remote
|
base64
|
decode
|
exoops
|
runcms
|
phpRPC
|
other
|
code
|
used
|
Eval
|
tag
|
PHP
|
via
|
Eval injection vulnerability in the decode function in rpc_decoder.php for phpRPC 0.7 and earlier, as used by runcms, exoops, and possibly other programs, allows remote attackers to execute arbitrary PHP code via the base64 tag.
The snmp_trap_decode function in the SNMP NAT h
snmp_trap_decode
|
function
|
helper
|
kernel
|
before
|
Linux
|
SNMP
|
NAT
|
The snmp_trap_decode function in the SNMP NAT helper for Linux kernel before 2.6.16.18 allows remote attackers to cause a denial of service (crash) via unspecified remote attack vectors that cause failures in snmp_trap_decode that trigger (1) frees of random memory or (2) frees of previously-freed memory (double-free) by snmp_trap_decode as well as its calling function, as demonstrated via certain test cases of the PROTOS SNMP test suite.
Multiple SQL injection vulnerabilities in Open
vulnerabilities
|
Management
|
injection
|
Business
|
Multiple
|
Open
|
SQL
|
Multiple SQL injection vulnerabilities in Open Business Management (OBM) 1.0.3 pl1 allow remote attackers to execute arbitrary SQL commands via the (1) new_order and (2) order_dir parameters to (a) index.php, (b) group/group_index.php, (c) user/user_index.php, (d) list/list_index.php, and (e) company/company_index.php, and the (3) entity and (4) tf_dateafter parameter to company/company_index.php.
The decode_stringmap function in server_transpo
server_transportcpp
|
decode_stringmap
|
function
|
UFO2000
|
svn
|
The decode_stringmap function in server_transport.cpp for UFO2000 svn 1057 allows remote attackers to cause a denial of service (daemon termination) via a keysize or valsize that is inconsistent with the packet size, which leads to a buffer over-read.
SQL injection vulnerability in the decode_cooki
vulnerability
|
decode_cookie
|
threadphp
|
injection
|
function
|
Burning
|
Woltlab
|
Board
|
Lite
|
SQL
|
SQL injection vulnerability in the decode_cookie function in thread.php in Woltlab Burning Board Lite 1.0.2 allows remote attackers to execute arbitrary SQL commands via the threadvisit Cookie parameter.
Stack-based buffer overflow in the dns_decode_r
dns_decode_reverse_name
|
CVE-2007-1465
|
dproxy-nexgen
|
dns_decodec
|
Stack-based
|
attackers
|
arbitrary
|
different
|
function
|
overflow
|
crafted
|
sending
|
execute
|
53/udp
|
allows
|
packet
|
buffer
|
remote
|
issue
|
than
|
code
|
port
|
Stack-based buffer overflow in the dns_decode_reverse_name function in dns_decode.c in dproxy-nexgen allows remote attackers to execute arbitrary code by sending a crafted packet to port 53/udp, a different issue than CVE-2007-1465.
Buffer overflow in the sqlite_decode_binary fun
sqlite_decode_binary
|
function
|
overflow
|
library
|
bundled
|
before
|
Buffer
|
sqlite
|
PHP
|
Buffer overflow in the sqlite_decode_binary function in the bundled sqlite library in PHP 4 before 4.4.5 and PHP 5 before 5.2.1 allows context-dependent attackers to execute arbitrary code via an empty value of the in parameter, as demonstrated by calling the sqlite_udf_decode_binary function with a 0x01 character.
Buffer overflow in the sqlite_decode_binary fun
sqlite_decode_binary
|
context-dependent
|
applications
|
src/encodec
|
arbitrary
|
attackers
|
parameter
|
function
|
overflow
|
execute
|
through
|
Buffer
|
SQLite
|
allows
|
empty
|
value
|
other
|
used
|
code
|
PHP
|
via
|
Buffer overflow in the sqlite_decode_binary function in src/encode.c in SQLite 2, as used by PHP 4.x through 5.x and other applications, allows context-dependent attackers to execute arbitrary code via an empty value of the in parameter. NOTE: some PHP installations use a bundled version of sqlite without this vulnerability. The SQLite developer has argued that this issue could be due to a misuse of the sqlite_decode_binary() API.
PHP 5.2.4 and earlier allows context-dependent
PHP
|
PHP 5.2.4 and earlier allows context-dependent attackers to cause a denial of service (application crash) via (1) a long string in the out_charset parameter to the iconv function; or a long string in the charset parameter to the (2) iconv_mime_decode_headers, (3) iconv_mime_decode, or (4) iconv_strlen function. NOTE: this might not be a vulnerability in most web server environments that support multiple threads, unless these issues can be demonstrated for code execution.
Software vulnerabilities results 1 to 20 of 3264
Page:
1
2
3
4
5
...
164
►