Heap-based buffer overflow in the demux_open_bmp function in demux_bmp.c for Unix MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a bitmap (BMP) file containing a large biClrUsed field. Date published : 2004-12-22...
Integer overflow in (1) tif_dirread.c and (2) tif_fax3.c for libtiff 3.5.7 and 3.7.0 allows remote attackers to execute arbitrary code via a TIFF file containing a TIFF_ASCII or TIFF_UNDEFINED directory entry with a -1...
Stack-based buffer overflow in the ELF header parsing code in file before 4.12 allows attackers to execute arbitrary code via a crafted ELF file. Date published : 2004-12-22 http://www.securityfocus.com/bid/11771 http://www.gentoo.org/security/en/glsa/glsa-200412-07.xml
Buffer overflow in the get function in get.c for Yanf 0.4 allows remote malicious web servers to execute arbitrary code via crafted HTTP responses. Date published : 2004-12-22 http://tigger.uic.edu/~jlongs2/holes/yanf.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/18615
The id3tag_sort function in id3tag.c for YAMT 0.5 allows remote attackers to execute arbitrary commands via an MP3 file with double quotes in the Artist tag. Date published : 2004-12-22 http://www.securityfocus.com/bid/11999 http://rpmfind.net/linux/RPM/suse/updates/8.2/i386/rpm/i586/yamt-0.5-1277.i586.html
Buffer overflow in the book_format_sql function in format.c for xlreader 0.9.0 allows remote attackers to execute arbitrary code via a crafted Excel (XLS) file. Date published : 2004-12-22 http://tigger.uic.edu/~jlongs2/holes/xlreader.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/18612
Buffer overflow in the open_aiff_file function in demux_aiff.c for xine-lib (libxine) 1-rc7 allows remote attackers to execute arbitrary code via a crafted AIFF file. Date published : 2004-12-22 http://www.mandriva.com/security/advisories?name=MDKSA-2005:011 http://tigger.uic.edu/~jlongs2/holes/xine-lib.txt
Buffer overflow in the get_attr function in html.c for vilistextum 2.6.6 allows remote attackers to execute arbitrary code via a crafted web page. Date published : 2004-12-22 http://tigger.uic.edu/~jlongs2/holes/vilistextum.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/18610
Buffer overflow in the parse function in vb2c.c for vb2c 0.02 allows remote attackers to execute arbitrary code via a crafted FRM file. Date published : 2004-12-22 http://tigger.uic.edu/~jlongs2/holes/vb2c.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/18605
Buffer overflow in the process_font_table function in convert.c for unrtf 0.19.3 allows remote attackers to execute arbitrary code via a crafted RTF file. Date published : 2004-12-22 http://tigger.uic.edu/~jlongs2/holes/unrtf.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/18566
The slip_down function in slip.c for the uml_net program in uml-utilities 20030903, when uml_net is installed setuid root, does not verify whether the calling user has sufficient permission to disable an interface, which allows...
The mget function in cmds.c for tnftp 20030825 allows remote FTP servers to overwrite arbitrary files via FTP responses containing file names with / (slash) characters. Date published : 2004-12-22 http://tigger.uic.edu/~jlongs2/holes/tnftp.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/18560
Buffer overflow in the ReadFontTbl function in reader.c for rtf2latex2e 1.0fc2 allows remote attackers to execute arbitrary code via a crafted RTF file. Date published : 2004-12-22 http://tigger.uic.edu/~jlongs2/holes/rtf2latex2e.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/18559
Buffer overflow in the parse_emelody function in parse_emelody.c for ringtonetools 2.22 allows remote attackers to execute arbitrary code via a crafted eMelody file. Date published : 2004-12-22 http://www.gentoo.org/security/en/glsa/glsa-200503-18.xml http://tigger.uic.edu/~jlongs2/holes/ringtonetools.txt