Security Hero » Buffer Overflow http://sechero.com If it's about security, you heard it here first Mon, 12 Jul 2010 23:27:38 +0000 en hourly 1 Mozilla Firefox and Seamonkey Regular Expression Parsing Heap Buffer Overflow Vulnerability http://sechero.com/mozilla-firefox-and-seamonkey-regular-expression-parsing-heap-buffer-overflow-vulnerability/ http://sechero.com/mozilla-firefox-and-seamonkey-regular-expression-parsing-heap-buffer-overflow-vulnerability/#comments Tue, 13 Oct 2009 06:57:00 +0000 invalid string http://sechero.com/?p=20963 Vuln: Mozilla Firefox and Seamonkey Regular Expression Parsing Heap Buffer Overflow Vulnerability

Mozilla Firefox and Seamonkey Regular Expression Parsing Heap Buffer Overflow Vulnerability

URL: http://www.securityfocus.com/bid/35891

]]> http://sechero.com/mozilla-firefox-and-seamonkey-regular-expression-parsing-heap-buffer-overflow-vulnerability/feed/ 0 Need information, for MPlayer demux_open_vqf TwinVQ File Handling Buffer Overflow CVE-2008-5616 http://sechero.com/need-information-for-mplayer-demux_open_vqf-twinvq-file-handling-buffer-overflow-cve-2008-5616/ http://sechero.com/need-information-for-mplayer-demux_open_vqf-twinvq-file-handling-buffer-overflow-cve-2008-5616/#comments Wed, 22 Jul 2009 16:48:02 +0000 invalid string http://sechero.com/?p=20866 Bugtraq: Need information, for MPlayer demux_open_vqf TwinVQ File Handling Buffer Overflow CVE-2008-5616

Need information, for MPlayer demux_open_vqf TwinVQ File Handling Buffer Overflow CVE-2008-5616

URL: http://www.securityfocus.com/archive/1/505165

]]> http://sechero.com/need-information-for-mplayer-demux_open_vqf-twinvq-file-handling-buffer-overflow-cve-2008-5616/feed/ 0 NASA Common Data Format remote buffer overflow(s) http://sechero.com/nasa-common-data-format-remote-buffer-overflows/ http://sechero.com/nasa-common-data-format-remote-buffer-overflows/#comments Tue, 21 Jul 2009 09:47:47 +0000 invalid string http://sechero.com/?p=20843 [INFIGO-2009-07-09]: NASA Common Data Format remote buffer overflow(s)

Posted by infocus on Jul 21

===================================================================

 ’Celebrating 40 years of Apollo and 20 years of buffer overflows’

===================================================================

        INFIGO IS Security Advisory…

URL: http://seclists.org/fulldisclosure/2009/Jul/0298.html

]]> http://sechero.com/nasa-common-data-format-remote-buffer-overflows/feed/ 0 DBD::Pg ‘pg_getline()’ and ‘getline()’ Heap Buffer Overflow Vulnerabilities http://sechero.com/dbdpg-pg_getline-and-getline-heap-buffer-overflow-vulnerabilities/ http://sechero.com/dbdpg-pg_getline-and-getline-heap-buffer-overflow-vulnerabilities/#comments Tue, 26 May 2009 00:00:00 +0000 invalid string

Vuln: DBD::Pg ‘pg_getline()’ and ‘getline()’ Heap Buffer Overflow Vulnerabilities

DBD::Pg ‘pg_getline()’ and ‘getline()’ Heap Buffer Overflow Vulnerabilities

URL: http://www.securityfocus.com/bid/34755

]]> http://sechero.com/dbdpg-pg_getline-and-getline-heap-buffer-overflow-vulnerabilities/feed/ 0 CastRipper ‘.m3u’ File Remote Stack Buffer Overflow Vulnerability http://sechero.com/castripper-m3u-file-remote-stack-buffer-overflow-vulnerability/ http://sechero.com/castripper-m3u-file-remote-stack-buffer-overflow-vulnerability/#comments Mon, 25 May 2009 00:00:00 +0000 invalid string

Vuln: CastRipper ‘.m3u’ File Remote Stack Buffer Overflow Vulnerability

CastRipper ‘.m3u’ File Remote Stack Buffer Overflow Vulnerability

URL: http://www.securityfocus.com/bid/34915

]]> http://sechero.com/castripper-m3u-file-remote-stack-buffer-overflow-vulnerability/feed/ 0 Sun Solstice AdminSuite ‘sadmind’ ‘adm_build_path()’ Remote Stack Buffer Overflow Vulnerability http://sechero.com/sun-solstice-adminsuite-sadmind-adm_build_path-remote-stack-buffer-overflow-vulnerability/ http://sechero.com/sun-solstice-adminsuite-sadmind-adm_build_path-remote-stack-buffer-overflow-vulnerability/#comments Sun, 24 May 2009 00:00:00 +0000 invalid string

Vuln: Sun Solstice AdminSuite ‘sadmind’ ‘adm_build_path()’ Remote Stack Buffer Overflow Vulnerability

Sun Solstice AdminSuite ‘sadmind’ ‘adm_build_path()’ Remote Stack Buffer Overflow Vulnerability

URL: http://www.securityfocus.com/bid/31751

]]> http://sechero.com/sun-solstice-adminsuite-sadmind-adm_build_path-remote-stack-buffer-overflow-vulnerability/feed/ 0 Sun Solaris quotsadmindquot Buffer Overflow Vulnerability http://sechero.com/sun-solaris-quotsadmindquot-buffer-overflow-vulnerability/ http://sechero.com/sun-solaris-quotsadmindquot-buffer-overflow-vulnerability/#comments Sat, 23 May 2009 07:35:48 +0000 invalid string

Secunia Research: Sun Solaris quotsadmindquot Buffer Overflow Vulnerability

Posted by Secunia Research on May 23

======================================================================

                     Secunia Research 23/05/2009

       - Sun Solaris…

URL: http://seclists.org/fulldisclosure/2009/May/0198.html

]]> http://sechero.com/sun-solaris-quotsadmindquot-buffer-overflow-vulnerability/feed/ 0 1759 (dtorrent, ctorrent) http://sechero.com/1759-dtorrent-ctorrent/ http://sechero.com/1759-dtorrent-ctorrent/#comments Fri, 22 May 2009 00:00:00 +0000 invalid string http://sechero.com/1759-dtorrent-ctorrent/

CVE-2009-1759 (dtorrent, ctorrent)

Stack-based buffer overflow in the btFiles::BuildFromMI function (trunk/btfiles.cpp) in Enhanced CTorrent (aka dTorrent) 3.3.2 and probably earlier, and CTorrent 1.3.4, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Torrent file containing a long path.

URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1759

]]> http://sechero.com/1759-dtorrent-ctorrent/feed/ 0 Pidgin Multiple Buffer Overflow Vulnerabilities http://sechero.com/pidgin-multiple-buffer-overflow-vulnerabilities/ http://sechero.com/pidgin-multiple-buffer-overflow-vulnerabilities/#comments Fri, 22 May 2009 00:00:00 +0000 invalid string

Vuln: Pidgin Multiple Buffer Overflow Vulnerabilities

Pidgin Multiple Buffer Overflow Vulnerabilities

URL: http://www.securityfocus.com/bid/35067

]]> http://sechero.com/pidgin-multiple-buffer-overflow-vulnerabilities/feed/ 0 Novell GroupWise Internet Agent SMTP Request Processing Buffer Overflow Vulnerability http://sechero.com/novell-groupwise-internet-agent-smtp-request-processing-buffer-overflow-vulnerability/ http://sechero.com/novell-groupwise-internet-agent-smtp-request-processing-buffer-overflow-vulnerability/#comments Fri, 22 May 2009 00:00:00 +0000 invalid string

Vuln: Novell GroupWise Internet Agent SMTP Request Processing Buffer Overflow Vulnerability

Novell GroupWise Internet Agent SMTP Request Processing Buffer Overflow Vulnerability

URL: http://www.securityfocus.com/bid/35065

]]> http://sechero.com/novell-groupwise-internet-agent-smtp-request-processing-buffer-overflow-vulnerability/feed/ 0 Novell GroupWise Internet Agent Email Address Processing Buffer Overflow Vulnerability http://sechero.com/novell-groupwise-internet-agent-email-address-processing-buffer-overflow-vulnerability/ http://sechero.com/novell-groupwise-internet-agent-email-address-processing-buffer-overflow-vulnerability/#comments Fri, 22 May 2009 00:00:00 +0000 invalid string

Vuln: Novell GroupWise Internet Agent Email Address Processing Buffer Overflow Vulnerability

Novell GroupWise Internet Agent Email Address Processing Buffer Overflow Vulnerability

URL: http://www.securityfocus.com/bid/35064

]]> http://sechero.com/novell-groupwise-internet-agent-email-address-processing-buffer-overflow-vulnerability/feed/ 0 Nullsoft Winamp ‘gen_ff.dll’ Buffer Overflow Vulnerability http://sechero.com/nullsoft-winamp-gen_ffdll-buffer-overflow-vulnerability/ http://sechero.com/nullsoft-winamp-gen_ffdll-buffer-overflow-vulnerability/#comments Thu, 21 May 2009 00:00:00 +0000 invalid string

Vuln: Nullsoft Winamp ‘gen_ff.dll’ Buffer Overflow Vulnerability

Nullsoft Winamp ‘gen_ff.dll’ Buffer Overflow Vulnerability

URL: http://www.securityfocus.com/bid/35052

]]> http://sechero.com/nullsoft-winamp-gen_ffdll-buffer-overflow-vulnerability/feed/ 0 New DNS Bug and Fix Announced http://sechero.com/new-dns-bug-and-fix-announced/ http://sechero.com/new-dns-bug-and-fix-announced/#comments Wed, 20 May 2009 02:14:00 +0000 invalid string http://sechero.com/new-dns-bug-and-fix-announced/

New DNS Bug and Fix Announced

Domain name registries are scrambling to patch a newly discovered bug in popular open source DNS software that could be exploited for denial-of-service attacks.

The bug and a corresponding fix were announced Monday by NLnet Labs, a research group that provides authoritative domain name server software called NSD to domain name registrars.

The bug allows for an attack on an NSD server that would cause it to stop responding to queries. The bug affects all versions of NSD 2.0.0 to 3.2.1, NLnet Labs said calling the bugfix “critical.” The bug is a “one-byte buffer overflow that allows a carefully crafted exploit to take down your name server,” NLnet Labs said.

URL: http://www.hackinthebox.org/index.php?name=News&file=article&sid=31366

]]> http://sechero.com/new-dns-bug-and-fix-announced/feed/ 0 NSD ‘packet.c’ Off-By-One Buffer Overflow Vulnerability http://sechero.com/nsd-packetc-off-by-one-buffer-overflow-vulnerability/ http://sechero.com/nsd-packetc-off-by-one-buffer-overflow-vulnerability/#comments Wed, 20 May 2009 00:00:00 +0000 invalid string

Vuln: NSD ‘packet.c’ Off-By-One Buffer Overflow Vulnerability

NSD ‘packet.c’ Off-By-One Buffer Overflow Vulnerability

URL: http://www.securityfocus.com/bid/35029

]]> http://sechero.com/nsd-packetc-off-by-one-buffer-overflow-vulnerability/feed/ 0 libsndfile/Winamp VOC Processing Heap Buffer Overflow http://sechero.com/libsndfilewinamp-voc-processing-heap-buffer-overflow/ http://sechero.com/libsndfilewinamp-voc-processing-heap-buffer-overflow/#comments Tue, 19 May 2009 21:50:01 +0000 invalid string

[TKADV2009-006] libsndfile/Winamp VOC Processing Heap Buffer Overflow

<!– Envelope-to: email@address Delivery-date: Tue, 19 May 2009 22:45:39 +0100 Received: from outgoing.securityfocus.com ([205.206.231.27] helo=outgoing3.securityfocus.com) by lt.network5.net with esmtp (Exim 4.43) id 1M6X7z-0002Ls-MA for email@address; Tue, 19 May 2009 22:45:39 +0100 Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20]) by outgoing3.securityfocus.com (Postfix) with QMQP id F14AD2377E8; Tue, 19 May 2009 12:04:20 -0600 (MDT) Mailing-List: contact bugtraq-help@securityfocus.com; run by ezmlm Precedence: bulk List-Id: <bugtraq.list-id.securityfocus.com> List-Post: <mailto:bugtraq@securityfocus.com> List-Help: <mailto:bugtraq-help@securityfocus.com> List-Unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com> List-Subscribe: <mailto:bugtraq-subscribe@securityfocus.com> Delivered-To: mailing list bugtraq@securityfocus.com Delivered-To: moderator for bugtraq@securityfocus.com Received: (qmail 13577 invoked from network); 16 May 2009 08:22:17 -0000 DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; t=1242462134; l=5686; s=domk; d=trapkit.de; h=Content-Type:Subject:To:MIME-Version:From:Date:X-RZG-CLASS-ID: X-RZG-AUTH; bh=0bnuDmtOartTeOl1wt3wJ7bagf8=; b=ju7yVQs2i2JF7L5aazidnjVDdGbBE/UCLrVOZ2UY54Zr4+j6GXyJIqpZOlh5i1VS1ka e0NISF7Rz/7OegEFl37bWr3GgmUv3eRW8xXi3Fi/FgZXcCAEwzPOY4k7qdg5Qe20+/gUv DlQBr4q+tLRcmZVIN2ppVzPvQYzhAToXZjc= X-RZG-AUTH: :OGckYVKpa/RorD1n4vbkpyN1OrydUB3M3D078vRVBTvDAWjAyJ2Lqy4= X-RZG-CLASS-ID: mo00 Message-ID: <4A0E7787.2020602@trapkit.de> User-Agent: Mutt/1.5.19 MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="————070107060709010308060402" X-IMAPbase: 1176125385 9121 Status: O X-UID: 9121 Content-Length: 5890 X-Keywords:

]]> http://sechero.com/libsndfilewinamp-voc-processing-heap-buffer-overflow/feed/ 0