sizes software vulnerabilities
vulnerabilities.aspcode.net
Searching sizes software vulnerabilities
The OSS code for the Sound Blaster (sb16) drive
Blaster
|
Sound
|
code
|
OSS
|
The OSS code for the Sound Blaster (sb16) driver in Linux 2.4.x before 2.4.26, when operating in 16 bit mode, does not properly handle certain sample sizes, which allows local users to cause a denial of service (crash) via a sample with an odd number of bytes.
The XClientMessageEvent struct used in certain
XClientMessageEvent
|
components
|
certain
|
struct
|
XOrg
|
used
|
The XClientMessageEvent struct used in certain components of X.Org 6.8.2 and earlier, possibly including (1) the X server and (2) Xlib, uses a "long" specifier for elements of the l array, which results in inconsistent sizes in the struct on 32-bit versus 64-bit platforms, and might allow attackers to cause a denial of service (application crash) and possibly conduct other attacks.
chpst in runit 1.3.3-1 for Debian GNU/Linux, wh
inconsistent
|
permissions
|
GNU/Linux
|
specified
|
dietlibc
|
machines
|
properly
|
multiple
|
compiled
|
against
|
causes
|
handle
|
groups
|
assign
|
option
|
endian
|
little
|
Debian
|
gid_t
|
runit
|
group
|
chpst
|
sizes
|
which
|
133-1
|
does
|
type
|
i386
|
root
|
not
|
bit
|
due
|
chpst in runit 1.3.3-1 for Debian GNU/Linux, when compiled on little endian i386 machines against dietlibc, does not properly handle when multiple groups are specified in the -u option, which causes chpst to assign permissions for the root group due to inconsistent bit sizes for the gid_t type.
The Graphics Rendering Engine in Microsoft Wind
Microsoft
|
Rendering
|
Graphics
|
Windows
|
Engine
|
The Graphics Rendering Engine in Microsoft Windows 2000 SP4 and XP SP2 allows local users to gain privileges via "invalid application window sizes" in layered application windows, aka the "GDI Invalid Window Size Elevation of Privilege Vulnerability."
Integer overflow in ACDSee Photo Manager 9.0 al
context-dependent
|
demonstrated
|
w4intofbmp
|
w3intofbmp
|
arbitrary
|
attackers
|
overflow
|
possibly
|
execute
|
crafted
|
service
|
Integer
|
Manager
|
ACDSee
|
denial
|
allows
|
sizes
|
Photo
|
image
|
cause
|
large
|
width
|
code
|
BMP
|
via
|
Integer overflow in ACDSee Photo Manager 9.0 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via large width image sizes in a crafted BMP image, as demonstrated by w3intof.bmp and w4intof.bmp.
Dibbler 0.6.0 does not verify that certain leng
Dibbler
|
Dibbler 0.6.0 does not verify that certain length parameters are appropriate for buffer sizes, which allows remote attackers to trigger a buffer over-read and cause a denial of service (daemon crash), as demonstrated by incorrect behavior of the TSrvMsg constructor in SrvMessages/SrvMsg.cpp when (1) reading the option code and option length and (2) parsing options.
Software vulnerabilities results 1 to 7 of 7
Page:
1