portable software vulnerabilities
vulnerabilities.aspcode.net
Searching portable software vulnerabilities
OpenSSH-portable (OpenSSH) 3.6.1p1 and earlier
OpenSSH-portable
|
OpenSSH-portable (OpenSSH) 3.6.1p1 and earlier with PAM support enabled immediately sends an error message when a user does not exist, which allows remote attackers to determine valid usernames via a timing attack.
Vulnerability in the apr_psprintf function in t
Vulnerability
|
apr_psprintf
|
Portable
|
function
|
Runtime
|
Apache
|
Vulnerability in the apr_psprintf function in the Apache Portable Runtime (APR) library for Apache 2.0.37 through 2.0.45 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long strings, as demonstrated using XML objects to mod_dav, and possibly other vectors.
Symbol Access Portable Data Terminal (PDT) 8100
Portable
|
Terminal
|
Symbol
|
Access
|
Data
|
Symbol Access Portable Data Terminal (PDT) 8100 does not hide the default WEP keys if they are not changed, which could allow attackers to retrieve the keys and gain access to the wireless network.
The Portable Network Graphics library (libpng)
Graphics
|
Portable
|
library
|
Network
|
The Portable Network Graphics library (libpng) 1.0.15 and earlier allows attackers to cause a denial of service (crash) via a malformed PNG image file that triggers an error that causes an out-of-bounds read when creating the error message.
MCX Client for Apple Mac OS X 10.4.x up to 10.4
Client
|
Apple
|
104x
|
Mac
|
MCX
|
MCX Client for Apple Mac OS X 10.4.x up to 10.4.1 insecurely logs Portable Home Directory credentials, which allows local users to obtain the credentials.
The BlackBerry Attachment Service in Research i
Attachment
|
BlackBerry
|
Research
|
Service
|
Motion
|
The BlackBerry Attachment Service in Research in Motion (RIM) BlackBerry Enterprise Server (BES) 4.0 to version 4.0 Service Pack 2 allows attackers to cause a denial of service via a malformed Portable Network Graphics (PNG) file that triggers a heap-based buffer overflow.
Integer overflow in ClamAV 0.88.1 and 0.88.4, a
overflow
|
Integer
|
ClamAV
|
Integer overflow in ClamAV 0.88.1 and 0.88.4, and other versions before 0.88.5, allows remote attackers to cause a denial of service (scanning service crash) and execute arbitrary code via a crafted Portable Executable (PE) file that leads to a heap-based buffer overflow when less memory is allocated than expected.
The Netscape Portable Runtime (NSPR) API 4.6.1
Portable
|
Netscape
|
Runtime
|
The Netscape Portable Runtime (NSPR) API 4.6.1 and 4.6.2, as used in Sun Solaris 10, trusts user-specified environment variables for specifying log files even when running from setuid programs, which allows local users to create or overwrite arbitrary files.
Unspecified vulnerability in portable OpenSSH b
"authentication
|
vulnerability
|
Unspecified
|
determine
|
attackers
|
involving
|
usernames
|
platforms
|
validity
|
portable
|
vectors
|
unknown
|
OpenSSH
|
running
|
GSSAPI
|
allows
|
remote
|
abort"
|
before
|
some
|
via
|
Unspecified vulnerability in portable OpenSSH before 4.4, when running on some platforms, allows remote attackers to determine the validity of usernames via unknown vectors involving a GSSAPI "authentication abort."
OpenSSH portable 4.1 on SUSE Linux, and possibl
configurations
|
discrepancies
|
demonstrated
|
attackers
|
determine
|
responses
|
usernames
|
platforms
|
portable
|
possibly
|
versions
|
OpenSSH
|
sshtime
|
invalid
|
limited
|
timing
|
allows
|
remote
|
longer
|
under
|
which
|
Linux
|
valid
|
other
|
ones
|
SUSE
|
take
|
than
|
via
|
OpenSSH portable 4.1 on SUSE Linux, and possibly other platforms and versions, and possibly under limited configurations, allows remote attackers to determine valid usernames via timing discrepancies in which responses take longer for valid usernames than invalid ones, as demonstrated by sshtime. NOTE: as of Saturday, October 14, 2006, it appears that this issue is dependent on the use of manually-set passwords that causes delays when processing /etc/shadow due to an increased number of rounds.
Kaspersky Labs Antivirus Engine 6.0 for Windows
Antivirus
|
Kaspersky
|
Windows
|
before
|
Engine
|
Linux
|
55-10
|
Labs
|
Kaspersky Labs Antivirus Engine 6.0 for Windows and 5.5-10 for Linux before Tuesday, January 02, 2007 enter an infinite loop upon encountering an invalid NumberOfRvaAndSizes value in the Optional Windows Header of a portable executable (PE) file, which allows remote attackers to cause a denial of service (CPU consumption) by scanning a crafted PE file.
Cross-zone scripting vulnerability in Sleipnir
vulnerability
|
Cross-zone
|
scripting
|
Sleipnir
|
Cross-zone scripting vulnerability in Sleipnir 2.49 and earlier, and Portable Sleipnir 2.45 and earlier, allows remote attackers to bypass Web content zone restrictions via certain script contained in RSS data. NOTE: some of these details are obtained from third party information.
The Remote Play feature in Sony Playstation 3 (
Playstation
|
feature
|
Remote
|
Sony
|
Play
|
The Remote Play feature in Sony Playstation 3 (PS3) 1.60 and Playstation Portable (PSP) 3.10 OE-A allows remote attackers to cause a denial of service via a flood of UDP packets.
Buffer overflow in the pfs_mountd.rpc RPC daemo
pfs_mountdrpc
|
overflow
|
Portable
|
daemon
|
Buffer
|
System
|
File
|
RPC
|
Buffer overflow in the pfs_mountd.rpc RPC daemon in the Portable File System (PFS) in HP-UX B.11.00, B.11.11, and B.11.23 allows remote attackers to execute arbitrary code by sending "a call to procedure 5, followed by a crafted payload to procedure 2."
Stack-based buffer overflow in peviewer.spl in
peviewerspl
|
Stack-based
|
Executable
|
Salamander
|
Portable
|
overflow
|
Servant
|
buffer
|
Viewer
|
Altap
|
Stack-based buffer overflow in peviewer.spl in Altap Servant Salamander 2.5 with Portable Executable Viewer 2.02 (English Trial), and 2.0 with Portable Executable Viewer 1.00 (English Trial), allows remote attackers to execute arbitrary code via a long PDB debug filename in a PE file.
Software vulnerabilities results 1 to 16 of 16
Page:
1