Sir Mordred

**Name of the Vulnerable Software and Affected Versions** Apple QuickTime/Darwin Streaming Server version 4.1.3 **Description** The issue is related to an integer overflow in MP3Broadcaster, which can be triggered by remote attackers sending malformed ID3 tags in MP3 files. This can cause a denial of service (crash) and potentially allow the execution of arbitrary code. **Recommendations** For Apple QuickTime/Darwin Streaming Server version 4.1.3, consider updating to a newer version that addresses this issue, as no specific workaround is provided for this version.

Name of the Vulnerable Software and Affected Versions: Nessus versions prior to 2.0.6 Description: A signed integer issue in libnasl allows local users with plugin upload privileges to cause a denial of service and possibly execute arbitrary code by providing a negative argument to the `insstr` function in a NASL script. Recommendations: For versions prior to 2.0.6, update to version 2.0.6 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Nessus versions prior to 2.0.6 Description: The issue is related to multiple buffer overflows in the libnasl component. These overflows can be triggered by local users with plugin upload privileges, potentially leading to a denial of service (core dump) and possibly the execution of arbitrary code. This can occur through various means, including a long `proto` argument to the `scanner add port` function, a long `user` argument to the `ftp log in` function, or a long `pass` argument to the `ftp log in` function. Recommendations: For Nessus versions prior to 2.0.6, update to version 2.0.6 or later to resolve the issue.

Multiple unknown vulnerabilities in Nessus before 2.0.6, in libnessus and possibly libnasl, a different set of vulnerabilities than those identified by CVE-2003-0372 and CVE-2003-0373, aka "similar issues in other nasl functions as well as in libnessus."

Name of the Vulnerable Software and Affected Versions: PHP version 4.3.1 Description: The issue is related to a buffer overflow in the `openlog` function, which fails to perform proper bounds checking, resulting in a buffer overflow. This could allow remote attackers to cause a crash and possibly execute arbitrary code via a long filename argument. The flaw may lead to a loss of integrity, although its existence is disputed by some. Recommendations: For PHP version 4.3.1, consider applying configuration changes to restrict the length of filename arguments to prevent exploitation until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.