Security
Headlines
HeadlinesLatestCVEs

Tag

#pdf

CVE-2007-0803: Best Open Source Mac Software 2022

Multiple buffer overflows in STLport before 5.0.3 allow remote attackers to execute arbitrary code via unspecified vectors relating to (1) "print floats" and (2) a missing null termination in the "rope constructor."

CVE
#sql#web#ios#android#mac#windows#google#microsoft#ubuntu#linux#apache#git#java#php#c++#perl#pdf#buffer_overflow#firefox#sap
CVE-2006-0963: Best Open Source Mac Software 2022

Multiple buffer overflows in STLport 5.0.2 might allow local users to execute arbitrary code via (1) long locale environment variables to a strcpy function call in c_locale_glibc2.c and (2) long arguments to unspecified functions in num_put_float.cpp.

CVE-2005-2088: Bugtraq: A new whitepaper by Watchfire

The Apache HTTP server before 1.3.34, and 2.0.x before 2.0.55, when acting as an HTTP proxy, allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes Apache to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request, aka "HTTP Request Smuggling."