Searching routines software vulnerabilities

Buffer overflow in the lex routines of nslookup

arbitrary | attackers | nslookup | possibly | overflow | strings" | routines | execute | Buffer | input | "long | cause | allow | code | dump | core | AIX | lex | via | may |

Buffer overflow in the lex routines of nslookup for AIX 4.3 may allow attackers to cause a core dump and possibly execute arbitrary code via "long input strings."


Format string vulnerabilities in the logging ro

vulnerabilities | routines | dynamic | logging | Format | string | code | DNS |

Format string vulnerabilities in the logging routines for dynamic DNS code (print.c) of ISC DHCP daemon (DHCPD) 3 to 3.0.1rc8, with the NSUPDATE option enabled, allow remote malicious DNS servers to execute arbitrary code via format strings in a DNS server response.


libmysqlclient client library in MySQL 3.x to 3

libmysqlclient | library | client | MySQL |

libmysqlclient client library in MySQL 3.x to 3.23.54, and 4.x to 4.0.6, does not properly verify length fields for certain responses in the (1) read_rows or (2) read_one_row routines, which allows remote attackers to cause a denial of service and possibly execute arbitrary code.


Buffer overflow in certain RPC routines in IBM

"variable | arbitrary | attackers | routines | overflow | execute | related | certain | Buffer | type" | allow | code | data | RPC | IBM | may | AIX |

Buffer overflow in certain RPC routines in IBM AIX 4.3 may allow attackers to execute arbitrary code, related to a "variable data type."


Multiple stack-based buffer overflows in the er

stack-based | containing | capability | arbitrary | attackers | overflows | NSUPDATE | Multiple | routines | handling | hostname | 301RC10 | execute | library | through | minires | message | buffer | remote | error | DHCPD | allow | used | long | code | DHCP | ISC | via |

Multiple stack-based buffer overflows in the error handling routines of the minires library, as used in the NSUPDATE capability for ISC DHCPD 3.0 through 3.0.1RC10, allow remote attackers to execute arbitrary code via a DHCP message containing a long hostname.


Format string vulnerabilities in the logging ro

vulnerabilities | Distribution | routines | Kerberos | logging | Format | Center | string | MIT | Key |

Format string vulnerabilities in the logging routines for MIT Kerberos V5 Key Distribution Center (KDC) before 1.2.5 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in Kerberos principal names.


Real time clock (RTC) routines in Linux kernel

clock | time | Real |

Real time clock (RTC) routines in Linux kernel 2.4.23 and earlier do not properly initialize their structures, which could leak kernel data to user space.


Various routines for the ppc64 architecture on

architecture | routines | Various | kernel | prior | ppc64 | Linux |

Various routines for the ppc64 architecture on Linux kernel 2.6 prior to 2.6.2 and 2.4 prior to 2.4.24 do not use the copy_from_user function when copying data from userspace to kernelspace, which crosses security boundaries and allows local users to cause a denial of service.


Race condition in Solaris 2.6 through 9 allows

condition | through | Solaris | service | denial | allows | cause | local | users | Race |

Race condition in Solaris 2.6 through 9 allows local users to cause a denial of service (kernel panic), as demonstrated via the namefs function, pipe, and certain STREAMS routines.


The rawprint function in the ISAKMP decoding ro

routines | decoding | rawprint | function | ISAKMP |

The rawprint function in the ISAKMP decoding routines (print-isakmp.c) for tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (segmentation fault) via malformed ISAKMP packets that cause invalid "len" or "loc" values to be used in a loop, a different vulnerability than CVE-2003-0989.


The IPv6 URI parsing routines in the apr-util l

routines | apr-util | library | parsing | Apache | IPv6 | URI |

The IPv6 URI parsing routines in the apr-util library for Apache 2.0.50 and earlier allow remote attackers to cause a denial of service (child process crash) via a certain URI, as demonstrated using the Codenomicon HTTP Test Tool.


Race condition in the memory management routine

management | processor | Microsoft | condition | Internet | Explorer | routines | memory | object | DHTML | Race |

Race condition in the memory management routines in the DHTML object processor in Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers to execute arbitrary code via a malicious web page or HTML e-mail, aka "DHTML Object Memory Corruption Vulnerability".


The IAPP dissector (packet-iapp.c) for Ethereal

dissector | IAPP |

The IAPP dissector (packet-iapp.c) for Ethereal 0.9.1 to 0.10.9 does not properly use certain routines for formatting strings, which could leave it vulnerable to buffer overflows, as demonstrated using modified length values that are not properly handled by the the dissect_pdus and pduval_to_str functions.


inflate.c in the zlib routines in the Linux ker

routines | inflatec | kernel | before | Linux | zlib |

inflate.c in the zlib routines in the Linux kernel before 2.6.12.5 allows remote attackers to cause a denial of service (kernel crash) via a compressed file with "improper tables".


The huft_build function in inflate.c in the zli

huft_build | routines | inflatec | function | kernel | before | Linux | zlib |

The huft_build function in inflate.c in the zlib routines in the Linux kernel before 2.6.12.5 returns the wrong value, which allows remote attackers to cause a denial of service (kernel crash) via a certain compressed file that leads to a null pointer dereference, a different vulnerbility than CVE-2005-2458.


IBM DB2 Universal Database (UDB) 810 before ESE

Universal | Database | IBM | DB2 |

IBM DB2 Universal Database (UDB) 810 before ESE AIX 5765F4100 does not ensure that a user has execute privileges before permitting object creation based on routines, which allows remote authenticated users to gain privileges.


MySQL before 5.0.25 and 5.1 before 5.1.12 evalu

before | MySQL |

MySQL before 5.0.25 and 5.1 before 5.1.12 evaluates arguments of suid routines in the security context of the routine's definer instead of the routine's caller, which allows remote authenticated users to gain privileges through a routine that has been made available using GRANT EXECUTE.


Integer overflow in memory allocation routines

allocation | routines | overflow | Integer | before | memory | PHP |

Integer overflow in memory allocation routines in PHP before 5.1.6, when running on a 64-bit system, allows context-dependent attackers to bypass the memory_limit restriction.


PHP remote file inclusion vulnerability in rout

routines/fieldValidationphp | jssShopFileSystem | vulnerability | attackers | parameter | arbitrary | inclusion | execute | allows | remote | Server | Jshop | code | file | PHP | via | URL |

PHP remote file inclusion vulnerability in routines/fieldValidation.php in Jshop Server 1.3 allows remote attackers to execute arbitrary PHP code via a URL in the jssShopFileSystem parameter.


USB20.dll in Secustick USB flash drive decouple

authentication | VerifyPassWord | authorization | requirements | decouples | Secustick | routines | altering | USB20dll | function | bypass | allows | return | access | value | flash | drive | which | users | local | file | USB |

USB20.dll in Secustick USB flash drive decouples the authorization and file access routines, which allows local users to bypass authentication requirements by altering the return value of the VerifyPassWord function.


Software vulnerabilities results 1 to 20 of 29     
Page: 12