Lucene search
+L

477 matches found

Packet Storm
Packet Storm
added 2025/02/14 12:0 a.m.355 views

Using Valgrind on Chrome

Brief script that demonstrates running valgrind and afl-fuzz on Google Chrome. This favorite code for security auditing and memory leak detection with Valgrind runs the Valgrind tool and several other tools to check for memory leaks, which can lead to resource buffer overflows and more. Exploit /...

7.3AI score
Exploits0
OSV
OSV
added 2025/02/11 5:15 p.m.4 views

CVE-2025-21124

InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...

5.5CVSS5.8AI score0.00288EPSS
Exploits0References1
OSV
OSV
added 2025/01/17 11:15 p.m.8 views

CVE-2018-9434

In multiple functions of Parcel.cpp, there is a possible way to bypass address space layout randomization. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS5.9AI score0.00096EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/01/17 11:11 p.m.13 views

CVE-2018-9434

In multiple functions of Parcel.cpp, there is a possible way to bypass address space layout randomization. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00096EPSS
Exploits1References1
SUSE Linux
SUSE Linux
added 2025/01/17 11:59 a.m.3 views

Security update for rsync

This update for rsync fixes the following issues: CVE-2024-12085: leak of uninitialized stack data on the server leading to possible ASLR bypass. bsc1234101 CVE-2024-12086: leak of a client machine's file contents through the processing of checksum data. bsc1234102 CVE-2024-12087: arbitrary file...

8.8CVSS7.4AI score0.08655EPSS
Exploits4References22
Positive Technologies
Positive Technologies
added 2025/01/17 12:0 a.m.7 views

PT-2025-1343 · Google · Android

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to multiple functions in Parcel.cpp, where it is possible to bypass address space layout randomization. This could lead to a local...

7.8CVSS7.5AI score0.00096EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2024/12/27 12:0 a.m.12 views

The vulnerability of Adobe InDesign’s computer layout automation tool, related to memory-walking attacks, allows attackers to bypass ASLR protection and disclose the protected information.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to memory-walking attacks. Exploiting this vulnerability can allow an attacker to bypass ASLR protection and disclose the protected information...

5.5CVSS5.4AI score0.00322EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/27 12:0 a.m.10 views

The vulnerability of Adobe InDesign’s computer layout automation tool, related to the execution of operations beyond the buffer in memory, allows attackers to bypass the ASLR protection mechanism and expose the protected information.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to bypass the ASLR protection mechanism and disclose the protected information...

5.5CVSS5.8AI score0.00322EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/12/11 12:0 a.m.7 views

PT-2024-36384 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 15.2 Description: The issue was addressed with improved memory handling. An app may be able to bypass kASLR. Recommendations: For versions prior to 15.2, update to macOS Sequoia 15.2 to resolve the issue...

5.5CVSS6.2AI score0.00218EPSS
Exploits0References14
OSV
OSV
added 2024/12/10 10:15 p.m.5 views

CVE-2024-53005

Substance3D - Modeler versions 1.14.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a...

5.5CVSS5.8AI score0.00407EPSS
Exploits0References1
OSV
OSV
added 2024/12/10 9:15 p.m.3 views

CVE-2024-49546

InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...

5.5CVSS5.6AI score
Exploits0References1
OSV
OSV
added 2024/12/10 9:15 p.m.6 views

CVE-2024-49541

Illustrator versions 29.0.0, 28.7.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a...

5.5CVSS5.8AI score0.00322EPSS
Exploits0References1
OSV
OSV
added 2024/12/10 8:15 p.m.4 views

CVE-2024-49534

Acrobat Reader versions 24.005.20307, 24.001.30213, 24.001.30193, 20.005.30730, 20.005.30710 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR...

5.5CVSS5.8AI score0.00525EPSS
Exploits0References2
OSV
OSV
added 2024/11/12 7:15 p.m.5 views

CVE-2024-45147

Bridge versions 13.0.9, 14.1.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim...

5.5CVSS5.8AI score0.00258EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/12 12:0 a.m.4 views

PT-2024-8193 · Adobe · Illustrator

Name of the Vulnerable Software and Affected Versions: Adobe Illustrator versions 28.7.1 and earlier Description: The issue is related to an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such...

5.5CVSS6.2AI score0.0022EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/10/16 12:0 a.m.3 views

PT-2024-33547 · Adobe · Acrobat Reader

Name of the Vulnerable Software and Affected Versions: Acrobat Reader versions 24.005.20307, 24.001.30213, 24.001.30193, 20.005.30730, 20.005.30710 and earlier Description: The issue is an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could levera...

5.5CVSS6AI score0.00525EPSS
Exploits0References10
OSV
OSV
added 2024/10/09 10:15 a.m.6 views

CVE-2024-47420

Animate versions 23.0.7, 24.0.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victi...

5.5CVSS5.6AI score0.00268EPSS
Exploits0References1
OSV
OSV
added 2024/10/09 10:15 a.m.4 views

CVE-2024-45145

Lightroom Desktop versions 7.4.1, 13.5, 12.5.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction ...

5.5CVSS5.8AI score0.00228EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/09/20 12:0 a.m.7 views

The vulnerability in the Adobe Media Encoder application relates to the execution of operations beyond the buffer boundaries in memory, allowing an attacker to circumvent the ASLR protection mechanism.

The vulnerability of the Adobe Media Encoder application relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to bypass the ASLR protection mechanism by using a specially created malicious file...

5.5CVSS5.8AI score0.00268EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/09/13 9:15 a.m.6 views

CVE-2024-45111

Illustrator versions 28.6, 27.9.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a...

5.5CVSS5.8AI score0.00275EPSS
Exploits0References1
Rows per page
Query Builder