Searching parser software vulnerabilities

Buffer overflow in the HTTP protocol parser for

Microsoft | protocol | overflow | Network | Monitor | Buffer | parser | HTTP |

Buffer overflow in the HTTP protocol parser for Microsoft Network Monitor (Netmon) allows remote attackers to execute arbitrary commands via malformed data, aka the "Netmon Protocol Parsing" vulnerability.


MSHTML.DLL HTML parser in Internet Explorer 4.0

attackers | MSHTMLDLL | Explorer | versions | Internet | service | remote | denial | parser | allows | other | cause | HTML |

MSHTML.DLL HTML parser in Internet Explorer 4.0, and other versions, allows remote attackers to cause a denial of service (application crash) via a script that creates and deletes an object that is associated with the browser window object.


Vulnerability in RFC822 address parser in mutt

Vulnerability | address | before | parser | RFC822 | mutt |

Vulnerability in RFC822 address parser in mutt before 1.2.5.1 and mutt 1.3.x before 1.3.25 allows remote attackers to execute arbitrary commands via an improperly terminated comment or phrase in the address list.


The ASN.1 parser in Ethereal 0.9.2 and earlier

Ethereal | parser | ASN1 |

The ASN.1 parser in Ethereal 0.9.2 and earlier allows remote attackers to cause a denial of service (crash) via a certain malformed packet, which causes Ethereal to allocate memory incorrectly, possibly due to zero-length fields.


Buffer overflow in the date parser for PostgreS

PostgreSQL | overflow | parser | Buffer | before | date |

Buffer overflow in the date parser for PostgreSQL before 7.2.2 allows attackers to cause a denial of service and possibly execute arbitrary code via a long date string, aka a vulnerability "in handling long datetime input."


Unknown vulnerability in the directory parser f

vulnerability | directory | Connect | Unknown | Direct | parser | Linux |

Unknown vulnerability in the directory parser for Direct Connect 4 Linux (dcgui) before 0.2.2 allows remote attackers to read files outside the sharelist.


Buffer overflow in the RTSP protocol parser for

protocol | overflow | plug-in | Source | parser | Buffer | RTSP | View |

Buffer overflow in the RTSP protocol parser for the View Source plug-in (vsrcplin.so or vsrcplin3260.dll) for RealNetworks Helix Universal Server 9 and RealSystem Server 8, 7 and RealServer G2 allows remote attackers to execute arbitrary code.


Buffer overflow in the HTTP parser for MPlayer

overflow | MPlayer | earlier | 10pre3 | Buffer | parser | HTTP |

Buffer overflow in the HTTP parser for MPlayer 1.0pre3 and earlier, 0.90, and 0.91 allows remote attackers to execute arbitrary code via a long Location header.


Heap-based buffer overflow in the BMP image for

Heap-based | overflow | library | format | parser | buffer | image | BMP |

Heap-based buffer overflow in the BMP image format parser for the QT library (qt3) before 3.3.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code.


The XPM parser in the QT library (qt3) before 3

library | parser | XPM |

The XPM parser in the QT library (qt3) before 3.3.3 allows remote attackers to cause a denial of service (application crash) via a malformed image file that triggers a null dereference, a different vulnerability than CVE-2004-0693.


The GIF parser in the QT library (qt3) before 3

library | parser | GIF |

The GIF parser in the QT library (qt3) before 3.3.3 allows remote attackers to cause a denial of service (application crash) via a malformed image file that triggers a null dereference, a different vulnerability than CVE-2004-0692.


Cross-site scripting vulnerability in the parse

vulnerability | Cross-site | Gadu-Gadu | arbitrary | scripting | attackers | inject | script | parser | allows | remote | HTML | via | web |

Cross-site scripting vulnerability in the parser for Gadu-Gadu allows remote attackers to inject arbitrary web script or HTML via (1) http:// or (2) news:// URLs, a different vulnerability than CVE-2004-1410.


The XML parser in Xerces-C++ 2.5.0 allows remot

Xerces-C++ | parser | XML |

The XML parser in Xerces-C++ 2.5.0 allows remote attackers to cause a denial of service (CPU consumption) via XML attributes in a crafted XML document.


Buffer overflow in the gopherToHTML function in

gopherToHTML | 25STABLE7 | malicious | overflow | function | earlier | service | servers | Buffer | denial | Gopher | remote | parser | allows | Squid | reply | cause |

Buffer overflow in the gopherToHTML function in the Gopher reply parser for Squid 2.5.STABLE7 and earlier allows remote malicious Gopher servers to cause a denial of service (crash) via crafted responses.


Multiple memory leaks in the MQL parser in Emdr

Multiple | before | parser | memory | Emdros | leaks | MQL |

Multiple memory leaks in the MQL parser in Emdros before 1.1.22 allow remote attackers to cause a denial of service (memory consumption) via malformed MQL statements.


Heap-based buffer overflow in the SGI parser in

ImageMagick | Heap-based | attackers | arbitrary | overflow | crafted | execute | remote | parser | buffer | allows | before | image | file | code | SGI | via |

Heap-based buffer overflow in the SGI parser in ImageMagick before 6.0 allows remote attackers to execute arbitrary code via a crafted SGI image file.


IceCast 2.20 allows remote attackers to bypass

IceCast |

IceCast 2.20 allows remote attackers to bypass the XSL parser and obtain the source for XSL files via a request for a .xsl file with a trailing . (dot).


Integer overflow in the ELF parser in HT Editor

overflow | Integer | Editor | parser | before | ELF |

Integer overflow in the ELF parser in HT Editor before 0.8.0 allows remote attackers to execute arbitrary code via a crafted ELF file, which leads to a heap-based buffer overflow.


Buffer overflow in the PE parser in HT Editor b

overflow | Editor | before | Buffer | parser |

Buffer overflow in the PE parser in HT Editor before 0.8.0 allows remote attackers to execute arbitrary code via a crafted PE file.


Multiple PHP remote file inclusion vulnerabilit

PHPCMS_INCLUDEPATH | vulnerabilities | parser/include/ | attackers | arbitrary | parameter | including | inclusion | Multiple | execute | 121pl2 | remote | phpCMS | allow | files | file | code | PHP | via | URL |

Multiple PHP remote file inclusion vulnerabilities in phpCMS 1.2.1pl2 allow remote attackers to execute arbitrary PHP code via a URL in the PHPCMS_INCLUDEPATH parameter to files in parser/include/ including (1) class.parser_phpcms.php, (2) class.session_phpcms.php, (3) class.edit_phpcms.php, (4) class.http_indexer_phpcms.php, (5) class.cache_phpcms.php, (6) class.search_phpcms.php, (7) class.lib_indexer_universal_phpcms.php, and (8) class.layout_phpcms.php, (9) parser/plugs/counter.php, and (10) parser/parser.php. NOTE: the class.cache_phpcms.php vector was also reported to affect 1.1.7.


Software vulnerabilities results 1 to 20 of 59     
Page: 123