CVE-2006-0010
published 2006-01-10CVE-2006-0010: Heap-based buffer overflow in T2EMBED.DLL in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 up to SP1, Windows 98, and Windows ME allows remote…
PriorityP349critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
32.19%
98.1th percentile
Heap-based buffer overflow in T2EMBED.DLL in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 up to SP1, Windows 98, and Windows ME allows remote attackers to execute arbitrary code via an e-mail message or web page with a crafted Embedded Open Type (EOT) web font that triggers the overflow during decompression.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | windows_2003_server | — | — |
| microsoft | windows_2003_server | — | — |
| microsoft | windows_2003_server | — | — |
| microsoft | windows_2003_server | — | — |
| microsoft | windows_2003_server | — | — |
| microsoft | windows_2003_server | — | — |
| microsoft | windows_2003_server | — | — |
| microsoft | windows_nt | — | — |
| microsoft | windows_nt | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-5mgg-m9j7-h63w: win32k
ghsa_unreviewed·2022-05-02·CVSS 9.3
CVE-2009-3020 [CRITICAL] GHSA-5mgg-m9j7-h63w: win32k
win32k.sys in Microsoft Windows Server 2003 SP2 allows remote attackers to cause a denial of service (system crash) by referencing a crafted .eot file in the src descriptor of an @font-face Cascading Style Sheets (CSS) rule in an HTML document, possibly related to the Embedded OpenType (EOT) Font Engine, a different vulnerability than CVE-2006-0010, CVE-2009-0231, and CVE-2009-0232. NOTE: some of these details are obtained from third party information.
GHSA
GHSA-4373-qwqg-vgwm: Heap-based buffer overflow in T2EMBED
ghsa_unreviewed·2022-05-01
CVE-2006-0010 [HIGH] CWE-119 GHSA-4373-qwqg-vgwm: Heap-based buffer overflow in T2EMBED
Heap-based buffer overflow in T2EMBED.DLL in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 up to SP1, Windows 98, and Windows ME allows remote attackers to execute arbitrary code via an e-mail message or web page with a crafted Embedded Open Type (EOT) web font that triggers the overflow during decompression.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2007-0010 GdbPixbufLoader fails to handle invalid input from Evolution correctly
bugzilla·2006-12-10·CVSS 2.1
CVE-2007-0010 [LOW] CVE-2007-0010 GdbPixbufLoader fails to handle invalid input from Evolution correctly
CVE-2007-0010 GdbPixbufLoader fails to handle invalid input from Evolution correctly
+++ This bug was initially created as a clone of Bug #218755 +++
Description of problem:
evolution crashes on the spam mail I'll attach as mbox; the crash may well turn
out to be a security issue in itself. But just crashing is serious since the
next time evo opens it immediately goes back to the same mail and crashes again,
so a non-expert user cannot recover from this.
I suspect RHEL5 is affected too
-- Additional comment from [email protected] on 2006-12-07 06:07 EST --
Created an attachment (id=143043)
mbox with the crashing mail
-- Additional comment from [email protected] on 2006-12-08 10:08 EST --
The file "navigable.gif" is incorrectly encoded. I think evolution should not
feed underl
Bugzilla
CVE-2007-0010 GdbPixbufLoader fails to handle invalid input from Evolution correctly
bugzilla·2006-12-08·CVSS 2.1
CVE-2007-0010 [LOW] CVE-2007-0010 GdbPixbufLoader fails to handle invalid input from Evolution correctly
CVE-2007-0010 GdbPixbufLoader fails to handle invalid input from Evolution correctly
+++ This bug was initially created as a clone of Bug #218755 +++
Description of problem:
evolution crashes on the spam mail I'll attach as mbox; the crash may well turn
out to be a security issue in itself. But just crashing is serious since the
next time evo opens it immediately goes back to the same mail and crashes again,
so a non-expert user cannot recover from this.
I suspect RHEL5 is affected too
-- Additional comment from [email protected] on 2006-12-07 06:07 EST --
Created an attachment (id=143043)
mbox with the crashing mail
-- Additional comment from [email protected] on 2006-12-08 10:08 EST --
The file "navigable.gif" is incorrectly encoded. I think evolution should not
feed underl
http://seclists.org/fulldisclosure/2006/Jan/363http://secunia.com/advisories/18311http://secunia.com/advisories/18365http://secunia.com/advisories/18391http://securitytracker.com/id?1015459http://support.avaya.com/elmodocs2/security/ASA-2006-004.htmhttp://www.eeye.com/html/Research/Advisories/EEYEB20050801.htmlhttp://www.kb.cert.org/vuls/id/915930http://www.osvdb.org/18829http://www.securityfocus.com/archive/1/421885/100/0/threadedhttp://www.securityfocus.com/bid/16194http://www.us-cert.gov/cas/techalerts/TA06-010A.htmlhttp://www.vupen.com/english/advisories/2006/0118http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=375525https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-002https://exchange.xforce.ibmcloud.com/vulnerabilities/23922https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1126https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1185https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1462https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1491https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A698https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A714http://seclists.org/fulldisclosure/2006/Jan/363http://secunia.com/advisories/18311http://secunia.com/advisories/18365http://secunia.com/advisories/18391http://securitytracker.com/id?1015459http://support.avaya.com/elmodocs2/security/ASA-2006-004.htmhttp://www.eeye.com/html/Research/Advisories/EEYEB20050801.htmlhttp://www.kb.cert.org/vuls/id/915930http://www.osvdb.org/18829http://www.securityfocus.com/archive/1/421885/100/0/threadedhttp://www.securityfocus.com/bid/16194http://www.us-cert.gov/cas/techalerts/TA06-010A.htmlhttp://www.vupen.com/english/advisories/2006/0118http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=375525https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-002https://exchange.xforce.ibmcloud.com/vulnerabilities/23922https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1126https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1185https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1462https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1491https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A698https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A714
2006-01-10
Published