Vulnerability & Exploit Database

Displaying entries 1 - 10 of 13 in total

Results for: CVE-2009-1440 Back to search

USN-937-1: TeX Live vulnerabilities Vulnerability

  • Severity: 7
  • Published: May 07, 2010

Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a special command in a DVI file, related to the (1) predospecial and (2) bbdospecial functions, a different vulnerability than CV...

SUSE Linux Security Vulnerability: CVE-2010-1440 Vulnerability

  • Severity: 7
  • Published: May 07, 2010

Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a special command in a DVI file, related to the (1) predospecial and (2) bbdospecial functions, a different vulnerability than CV...

RHSA-2010:0401: tetex security update Vulnerability

  • Severity: 7
  • Published: May 07, 2010

Updated tetex packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from th...

Gentoo Linux: CVE-2010-1440: TeX Live: Multiple vulnerabilities Vulnerability

  • Severity: 7
  • Published: May 07, 2010

Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a special command in a DVI file, related to the (1) predospecial and (2) bbdospecial functions, a different vulnerability than CV...

Cent OS: CVE-2010-1440: CESA-2010:0400 (tetex) Vulnerability

  • Severity: 7
  • Published: May 07, 2010

Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a special command in a DVI file, related to the (1) predospecial and (2) bbdospecial functions, a different vulnerability than CV...

SUSE Linux Security Advisory: SUSE-SR:2010:013 Vulnerability

  • Severity: 10
  • Published: April 05, 2010

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.0.19, 3.5.x before 3.5.9, and 3.6.x before 3.6.2; Thunderbird before 3.0.4; and SeaMonkey before 2.0.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors....

SUSE Linux Security Advisory: SUSE-SR:2010:012 Vulnerability

  • Severity: 8
  • Published: March 03, 2010

The png_decompress_chunk function in pngrutil.c in libpng 1.0.x before 1.0.53, 1.2.x before 1.2.43, and 1.4.x before 1.4.1 does not properly handle compressed ancillary-chunk data that has a disproportionately large uncompressed representation, which allows remote attackers to cause a denial of service (memory and CPU consumption, and ap...

RHSA-2010:0400: tetex security update Vulnerability

  • Severity: 9
  • Published: October 21, 2009

teTeX is an implementation of TeX. TeX takes a text file and a set offormatting commands as input, and creates a typesetter-independent DeViceIndependent (DVI) file as output.Multiple integer overflow flaws were found in the way teTeX processedspecial commands when converting DVI files into PostScript. An attackercould create a malicious...

Gentoo Linux: CVE-2009-1440: aMule: Parameter injection Vulnerability

  • Severity: 7
  • Published: April 27, 2009

Incomplete blacklist vulnerability in DownloadListCtrl.cpp in amule 2.2.4 allows remote attackers to conduct argument injection attacks into a command for mplayer via a crafted filename.

RHSA-2010:0399: tetex security update Vulnerability

  • Severity: 8
  • Published: April 23, 2009

teTeX is an implementation of TeX. TeX takes a text file and a set offormatting commands as input, and creates a typesetter-independent DeViceIndependent (DVI) file as output.A buffer overflow flaw was found in the way teTeX processed virtual fontfiles when converting DVI files into PostScript. An attacker could create amalicious DVI fil...