9 matches found
Heap overflow
In WAVM through 2018-07-26, a crafted file sent to the WebAssembly Virtual Machine may cause a denial of service application crash or possibly have unspecified other impact because of an unspecified "heap-buffer-overflow" condition in FunctionValidationContext::else...
CVE-2018-16767
CVE-2018-16767 affects WAVM (WebAssembly Virtual Machine). A crafted file sent to WAVM may trigger a heap-buffer-overflow in FunctionValidationContext::popAndValidateOperand, causing denial of service (application crash) and possibly other impact for WAVM versions up to and including 2018-07-26. ...
CVE-2018-16766
WAVM (WebAssembly Virtual Machine) is affected by CVE-2018-16766. A crafted file can trigger Errors::unreachable(), potentially causing a denial of service (application crash) or other unspecified impact. The CVSS data (3.0) indicates a network-based, low-attack-vector issue with no privileges re...
CVE-2018-16764
CVE-2018-16764 affects WAVM (WebAssembly Virtual Machine). A crafted input file can trigger a heap-based buffer over-read in IR::FunctionValidationContext::catch_all, potentially causing a denial of service via application crash and possibly other impact. Affected versions are WAVM up to 2018-07-...
CVE-2018-16764
In WAVM through 2018-07-26, a crafted file sent to the WebAssembly Virtual Machine may cause a denial of service application crash or possibly have unspecified other impact because of an IR::FunctionValidationContext::catchall heap-based buffer over-read...
CVE-2018-16765
CVE-2018-16765 affects WAVM (WebAssembly Virtual Machine); a crafted file may trigger a heap-buffer-overflow in FunctionValidationContext::else_, leading to a denial of service (application crash) and possibly unspecified impact. Affected are WAVM versions up to 2018-07-26. Documented in multiple...
WAVM Buffer Overflow Vulnerability
WAVM is the WebAssembly Virtual Machine. A buffer overflow vulnerability exists in the 'FunctionValidationContext::popAndValidateOperand' function in WAVM 2018-07-26 and earlier versions, which can be exploited by an attacker by sending a specially crafted file to WAVM This can be exploited to...
NetScanTools Basic Edition 2.5 - Hostname Denial of Service (PoC)
NetScanTools Basic Edition 2.5 - Hostname Denial of Service PoC Exploit Title: NetScanTools Basic Edition 2.5 - 'Hostname' Denial of Service PoC Discovery by: Luis Martínez Discovery Date: 2018-07-26 Vendor Homepage: https://www.netscantools.com/ Software Link :...
NetScanTools Basic Edition 2.5 - 'Hostname' Denial of Service (PoC)
Exploit Title: NetScanTools Basic Edition 2.5 - 'Hostname' Denial of Service PoC Discovery by: Luis Martínez Discovery Date: 2018-07-26 Vendor Homepage: https://www.netscantools.com/ Software Link : http://download.netscantools.com/nstb250.zip Tested Version: 2.5 Vulnerability Type: Denial of...