truncation software vulnerabilities
vulnerabilities.aspcode.net
Searching truncation software vulnerabilities
The kernfs_xread function in kernfs in NetBSD 1
kernfs_xread
|
privileges
|
truncation
|
arbitrary
|
validate
|
properly
|
function
|
negative
|
against
|
offsets
|
OpenBSD
|
through
|
result
|
NetBSD
|
allows
|
kernel
|
memory
|
system
|
kernfs
|
values
|
32-bit
|
lseek
|
users
|
which
|
occur
|
local
|
does
|
call
|
file
|
gain
|
read
|
via
|
not
|
The kernfs_xread function in kernfs in NetBSD 1.6 through 2.1, and OpenBSD 3.8, does not properly validate file offsets against negative 32-bit values that occur as a result of truncation, which allows local users to read arbitrary kernel memory and gain privileges via the lseek system call.
GUI display truncation vulnerability in Mozilla
vulnerability
|
Thunderbird
|
truncation
|
Mozilla
|
display
|
GUI
|
GUI display truncation vulnerability in Mozilla Thunderbird 1.0.2, 1.0.6, and 1.0.7 allows user-assisted attackers to execute arbitrary code via an attachment with a filename containing a large number of spaces ending with a dangerous extension that is not displayed by Thunderbird, along with an inconsistent Content-Type header, which could be used to trick a user into downloading dangerous content by dragging or saving the attachment.
GUI display truncation vulnerability in ICQ Inc
vulnerability
|
truncation
|
display
|
Inc
|
ICQ
|
GUI
|
GUI display truncation vulnerability in ICQ Inc. (formerly Mirabilis) ICQ 2003a, 2003b, Lite 4.0, Lite 4.1, and possibly other Windows versions allows user-assisted remote attackers to hide malicious file extensions, bypass Windows security warnings via a filename that is all uppercase and of a specific length, which truncates the malicious extension from the display and could trick a user into executing arbitrary programs.
Mozilla Firefox 1.x before 1.5 and 1.0.x before
Firefox
|
Mozilla
|
before
|
10x
|
Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to trick users into downloading and saving an executable file via an image that is overlaid by a transparent image link that points to the executable, which causes the executable to be saved when the user clicks the "Save image as..." option. NOTE: this attack is made easier due to a GUI truncation issue that prevents the user from seeing the malicious extension when there is extra whitespace in the filename.
Visual truncation vulnerability in Microsoft In
vulnerability
|
non-breaking
|
containing
|
truncation
|
malicious
|
attackers
|
Microsoft
|
possibly
|
phishing
|
Internet
|
Explorer
|
conduct
|
attacks
|
address
|
allows
|
Visual
|
spaces
|
remote
|
spoof
|
bar
|
URL
|
via
|
Visual truncation vulnerability in Microsoft Internet Explorer 7 allows remote attackers to spoof the address bar and possibly conduct phishing attacks via a malicious URL containing non-breaking spaces (%A0), which causes the address bar to omit some characters from the URL.
Multiple integer signedness errors in the print
signedness
|
function
|
Multiple
|
integer
|
family
|
before
|
errors
|
printf
|
PHP
|
Multiple integer signedness errors in the printf function family in PHP 4 before 4.4.5 and PHP 5 before 5.2.1 on 64 bit machines allow context-dependent attackers to execute arbitrary code via (1) certain negative argument numbers that arise in the php_formatted_print function because of 64 to 32 bit truncation, and bypass a check for the maximum allowable value; and (2) a width and precision of -1, which make it possible for the php_sprintf_appendstring function to place an internal buffer at an arbitrary memory location.
Visual truncation vulnerability in Opera 9.21 a
vulnerability
|
truncation
|
Visual
|
Opera
|
Visual truncation vulnerability in Opera 9.21 allows remote attackers to spoof the address bar and possibly conduct phishing attacks via a long hostname, which is truncated after 34 characters, as demonstrated by a phishing attack using HTTP Basic Authentication.
Visual truncation vulnerability in Konqueror 3.
vulnerability
|
truncation
|
Konqueror
|
Visual
|
Visual truncation vulnerability in Konqueror 3.5.5 allows remote attackers to spoof the address bar and possibly conduct phishing attacks via a long hostname, which is truncated after a certain number of characters, as demonstrated by a phishing attack using HTTP Basic Authentication.
Visual truncation vulnerability in Mozilla 1.7.
vulnerability
|
truncation
|
Mozilla
|
Visual
|
Visual truncation vulnerability in Mozilla 1.7.12 allows remote attackers to spoof the address bar and possibly conduct phishing attacks via a long hostname, which is truncated after a certain number of characters, as demonstrated by a phishing attack using HTTP Basic Authentication.
Visual truncation vulnerability in Galeon 2.0.1
vulnerability
|
truncation
|
Galeon
|
Visual
|
Visual truncation vulnerability in Galeon 2.0.1 allows remote attackers to spoof the address bar and possibly conduct phishing attacks via a long hostname, which is truncated after a certain number of characters, as demonstrated by a phishing attack using HTTP Basic Authentication.
Visual truncation vulnerability in Windows Priv
vulnerability
|
truncation
|
Privacy
|
Windows
|
Visual
|
Tray
|
Visual truncation vulnerability in Windows Privacy Tray (WinPT) 1.2.0 allows user-assisted remote attackers to install a key listed under the wrong user ID, and possibly cause the user to encrypt a victim's correspondence with this attacker-supplied key, via a key ID composed of the attacker's user ID, space characters, an invalid WinPT message, additional space characters, and the victim's user ID.
The password reset feature in the Spam Quaranti
MailMarshal
|
Quarantine
|
interface
|
password
|
feature
|
before
|
reset
|
620x
|
SMTP
|
Spam
|
HTTP
|
The password reset feature in the Spam Quarantine HTTP interface for MailMarshal SMTP 6.2.0.x before 6.2.1 allows remote attackers to modify arbitrary account information via a UserId variable with a large amount of trailing whitespace followed by a malicious value, which triggers SQL buffer truncation due to length inconsistencies between variables.
Visual truncation vulnerability in KDE Konquero
vulnerability
|
truncation
|
Konqueror
|
Visual
|
KDE
|
Visual truncation vulnerability in KDE Konqueror 3.5.7 allows remote attackers to spoof the URL address bar via an http URI with a large amount of whitespace in the user/password portion.
Visual truncation vulnerability in WinImage 8.1
vulnerability
|
truncation
|
WinImage
|
Visual
|
Visual truncation vulnerability in WinImage 8.10 and earlier allows remote attackers to spoof a destination filename via a long sequence of space characters in a filename within a (1) .IMG or (2) .ISO file. NOTE: this can be leveraged with a separate directory traversal vulnerability to trick a careful user into overwriting arbitrary files.
Visual truncation vulnerability in the Java Run
untrusted-code
|
vulnerability
|
Environment
|
workstation
|
circumvent
|
truncation
|
attackers
|
creating
|
warning
|
earlier
|
Runtime
|
display
|
larger
|
screen
|
banner
|
window
|
142_15
|
Update
|
Visual
|
allows
|
remote
|
131_20
|
than
|
Java
|
Sun
|
SDK
|
JRE
|
JDK
|
Visual truncation vulnerability in the Java Runtime Environment in Sun JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, SDK and JRE 1.4.2_15 and earlier, and SDK and JRE 1.3.1_20 and earlier allows remote attackers to circumvent display of the untrusted-code warning banner by creating a window larger than the workstation screen.
Software vulnerabilities results 1 to 16 of 16
Page:
1