|
285311
|
- |
|
xerox
|
docushare
|
Multiple cross-site scripting (XSS) vulnerabilities in Xerox DocuShare 6 and earlier allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the default URI under (1) Searc…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5225
|
2018-10-12 05:54 |
2008-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285312
|
- |
|
microsoft
|
windows_vista
|
Stack-based buffer overflow in Microsoft Device IO Control in iphlpapi.dll in Microsoft Windows Vista Gold and SP1 allows local users in the Network Configuration Operator group to gain privileges or…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5229
|
2018-10-12 05:54 |
2008-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285313
|
- |
|
xine
|
xine-lib
|
xine-lib 1.1.12, and other versions before 1.1.15, does not check for failure of malloc in circumstances including (1) the mymng_process_header function in demux_mng.c, (2) the open_mod_file function…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5233
|
2018-10-12 05:54 |
2008-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285314
|
- |
|
xine
|
xine-lib
|
Multiple heap-based buffer overflows in xine-lib 1.1.12, and other versions before 1.1.15, allow remote attackers to execute arbitrary code via vectors related to (1) a crafted metadata atom size pro…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5234
|
2018-10-12 05:54 |
2008-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285315
|
- |
|
xine
|
xine-lib
|
http://secunia.com/advisories/31502
1) Multiple integer overflows exist within the processing of ID3 tags in src/demuxers/id3.c. These can be exploited to cause heap-based buffer overflows via ove…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5234
|
2018-10-12 05:54 |
2008-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285316
|
- |
|
xine
|
xine-lib
|
http://secunia.com/advisories/31502
Solution:
Update to version 1.1.15, which fixes vulnerabilities #1-#3. (as noted above).
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5234
|
2018-10-12 05:54 |
2008-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285317
|
- |
|
xine
|
xine
|
Multiple integer overflows in xine-lib 1.1.12, and other 1.1.15 and earlier versions, allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via (1) crafted wi…
|
CWE-189
Numeric Errors
|
CVE-2008-5237
|
2018-10-12 05:54 |
2008-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285318
|
- |
|
xine
|
xine
|
Integer overflow in the real_parse_mdpr function in demux_real.c in xine-lib 1.1.12, and other versions before 1.1.15, allows remote attackers to cause a denial of service (crash) or possibly execute…
|
CWE-189
Numeric Errors
|
CVE-2008-5238
|
2018-10-12 05:54 |
2008-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285319
|
- |
|
xine
|
xine
|
Multiple heap-based buffer overflows in xine-lib 1.1.12, and other 1.1.15 and earlier versions, allow remote attackers to execute arbitrary code via vectors related to (1) a crafted EBML element leng…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5236
|
2018-10-12 05:54 |
2008-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285320
|
- |
|
xine
|
xine-lib
|
xine-lib 1.1.12, and other 1.1.15 and earlier versions, does not properly handle (a) negative and (b) zero values during unspecified read function calls in input_file.c, input_net.c, input_smb.c, and…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5239
|
2018-10-12 05:54 |
2008-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
