Google Android asf extractor elevation of privilege vulnerability

Google Android is a Linux-based open-source operating system from the US company Google. Google Android asf extractor has an elevation of privilege vulnerability that can be exploited by attackers to escalate privileges...

Google Android asf extractor elevation of privilege vulnerability (CNVD-2021-63788)

Google Android is a Linux-based open-source operating system from the US company Google. Google Android asf extractor has an elevation of privilege vulnerability that can be exploited by attackers to escalate privileges...

Google Android 缓冲区错误漏洞

Google Android is a Linux-based open-source operating system from the US company Google. Google Android asf extractor has an elevation of privilege vulnerability that can be exploited by attackers to escalate privileges...

ASB-A-187234876

In asf extractor, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

ASB-A-187231635

In asf extractor, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2021-32794

ArchiSteamFarm is a C application with primary purpose of idling Steam cards from multiple accounts simultaneously. Due to a bug in ASF code POST /Api/ASF ASF API endpoint responsible for updating global ASF config incorrectly removed IPCPassword from the resulting config when the caller did not...

CVE-2021-32794 Accidental removal of IPCPassword (< 5.1.2.4)

ArchiSteamFarm is a C application with primary purpose of idling Steam cards from multiple accounts simultaneously. Due to a bug in ASF code POST /Api/ASF ASF API endpoint responsible for updating global ASF config incorrectly removed IPCPassword from the resulting config when the caller did not...

CVE-2021-32794

ArchiSteamFarm (ASF) is affected by a bug in the POST /Api/ASF endpoint that updates the global ASF config and incorrectly removes IPCPassword when the caller does not specify it. This can allow unauthorized IPC interface access after a config update. The issue has been fixed in ASF v5.1.2.4 and ...

Integer overflow

u'Integer overflow to buffer overflow occurs while playback of ASF clip having unexpected number of codec entries' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8009W,...

CVE-2020-11196

u'Integer overflow to buffer overflow occurs while playback of ASF clip having unexpected number of codec entries' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8009W,...

CVE-2019-16127

Atmel Advanced Software Framework ASF 4 has an Integer Overflow...

Integer overflow

Atmel Advanced Software Framework ASF 4 has an Integer Overflow...

CVE-2019-16127

CVE-2019-16127 affects Microchip’s Atmel Advanced Software Framework (ASF) v4. The connected sources describe an Integer Overflow in ASF4 (no further technical details provided in the documents). Public catalog entries (NVD, Red Hat, CNVD, etc.) concur on the vulnerability class but do not specif...

CVE-2019-16127

Atmel Advanced Software Framework ASF 4 has an Integer Overflow...

Arbitrary Code Execution

vlc is vulnerable to arbitrary code execution. A divide-by-zero error exists in the SeekIndex function of demux/asf/asf.c, resulting in a floating point exception via and allows an attacker to execute arbitrary code via a malicious WMV file...

Denial Of Service (DoS)

vlc is vulnerable to denial of service DoS. The vulnerability exists through a NULL pointer dereference at the function SeekPercent of demux/asf/asf.c...

Arbitrary Code Execution

vlc is vulnerable to arbitrary code execution. The vulnerability exists through a possible use-after-free in the Control function of demux/asf/asf.c...

VLC Media Player < 1.0.2 Stack-based Buffer Overflow

A stack-based buffer overflow condition exists in VLC media player before 1.0.2 due 1 a crafted ASF file, related to the ASFObjectDumpDebug function in modules/demux/asf/libasf.c; 2 a crafted AVI file,related to the AVIChunkDumpDebuglevel function in modules/demux/avi/libavi.c; or 3 a crafted MP4...

VLC < 2.1.3 DoS Vulnerability

An exploitable denial of service vulnerability exists in ASFReadObjectfileproperties function in modules/demux/asf/libasf.c in the ASF Demuxer in VideoLAN VLC Media Player before 2.1.3. Allows remote attackers to cause a denial of service divide-by-zero error and crash via a zero minimum and...

The vulnerability of the SeekPercent function in the VideoLAN VLC media player’s demux/asf.c file allows a hacker to cause a service failure.

The vulnerability of the SeekPercent function in the VideoLAN VLC media player’s demux/asf.c file is related to pointer arithmetic errors. Exploiting this vulnerability could allow a malicious actor to cause service failure remotely...