.:[ packet storm ]:.
                           
trust nothing
trust nothing

 ///  File Name:MDVSA-2009-121.txt
Description:
Mandriva Linux Security Advisory 2009-121 - Multiple security vulnerabilities has been identified and fixed in Little CMS. A memory leak flaw allows remote attackers to cause a denial of service (memory consumption and application crash) via a crafted image file. Multiple integer overflows allow remote attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow. Multiple stack-based buffer overflows allow remote attackers to execute arbitrary code via a crafted image file associated with a large integer value for the (1) input or (2) output channel. A flaw in the transformations of monochrome profiles allows remote attackers to cause denial of service triggered by a NULL pointer dereference via a crafted image file. This update provides fixes for these issues.
Homepage:http://www.mandriva.com/security/
File Size:6914
Related CVE(s):CVE-2009-0581, CVE-2009-0723, CVE-2009-0733, CVE-2009-0793
Last Modified:May 21 19:47:59 2009
MD5 Checksum:9aaa6e5338f13acaf3205e37a5a22ca6

 .:. Back
 

 ///  Last 10 Files
  1. :· flashquiz-sql.txt
  2. :· groupwise-xss.txt
  3. :· zaocms-disclose.txt
  4. :· zaocms-insecure.txt
  5. :· articledir-blindsql.txt
  6. :· MDVSA-2009-121.txt
  7. :· MDVSA-2009-120.txt
  8. :· articledirectory-sql.txt
  9. :· jobscript-upload.txt
  10. :· Reverse_Engineering.pdf
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· MDVSA-2009-121.txt
  2. :· MDVSA-2009-120.txt
  3. :· DDIVRT-2009-25.txt
  4. :· 05.19.09-1.txt
  5. :· cisco-sa-20090520-cw.txt
  6. :· dsa-1804-1.txt
  7. :· dsa-1803-1.txt
  8. :· macosxjava-poc.txt
  9. :· USN-777-1.txt
  10. :· ZDI-09-023.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· flashquiz-sql.txt
  2. :· groupwise-xss.txt
  3. :· zaocms-disclose.txt
  4. :· zaocms-insecure.txt
  5. :· articledir-blindsql.txt
  6. :· articledirectory-sql.txt
  7. :· jobscript-upload.txt
  8. :· aspinlinecc-sqlxss.txt
  9. :· vicidial-sql.txt
  10. :· chinagames-exec.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· pdfresurrect-v0_5.tar.gz
  2. :· ProxyHarvest.txt
  3. :· mandos_1.0.10.orig.tar.gz
  4. :· darkTouch.txt
  5. :· rsbac-common-2.6-1.4.2.tar.bz2
  6. :· draugr.tar.gz
  7. :· httpsScanner-1.1.tgz
  8. :· ratproxy-1.58.tar.gz
  9. :· truecrypt-6.2-source.tar.gz
  10. :· fwknop-1.9.11.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· Reverse_Engineering.pdf
  2. :· AppsecEU09_CarettoniDiPaola_v0.8.pdf
  3. :· pbania-spiderpig2008.pdf
  4. :· md5db11.txt
  5. :· linuxbind-shellcode.txt
  6. :· freebsdx86-shellcode.txt
  7. :· xcon2009-cfp.txt
  8. :· ie8-utf7.txt
  9. :· native_thread_injection.pdf
  10. :· libntlm-1.1.tar.gz
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice