294 matches found
PT-2026-4911
A low privileged remote attacker may be able to disclose confidential information from the memory of a privileged process by sending specially crafted calls to the Device Manager web service that cause an out-of-bounds read operation under certain circumstances due to ASLR and thereby potentially...
CVE-2026-23763
VB-Audio Matrix and Matrix Coconut versions ending in 1.0.2.2 and 2.0.2.2 and earlier, respectively, contain a local privilege escalation vulnerability in the VBMatrix VAIO virtual audio driver vbmatrixvaio64win10.sys. The driver allocates a 128-byte non-paged pool buffer and, upon receiving IOCT...
CVE-2026-23763 VB-Audio Matrix Drivers Local Privilege Escalation via Kernel Memory Exposure
VB-Audio Matrix and Matrix Coconut versions ending in 1.0.2.2 and 2.0.2.2 and earlier, respectively, contain a local privilege escalation vulnerability in the VBMatrix VAIO virtual audio driver vbmatrixvaio64win10.sys. The driver allocates a 128-byte non-paged pool buffer and, upon receiving IOCT...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000809)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000809 advisory. The archpickmmaplayout function in arch/x86/mm/mmap.c in the Linux kernel through 4.5.2 does not properly randomize the legacy base address, which makes it easier fo...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000898)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000898 advisory. The Linux kernel version 3.3-rc1 and later is affected by a vulnerability lies in the processing of incoming L2CAP commands - ConfigRequest, and ConfigResponse...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003532)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003532 advisory. An issue was discovered in the fdlockedioctl function in drivers/block/floppy.c in the Linux kernel through 4.15.7. The floppy driver will copy a kernel pointer to...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002847)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002847 advisory. The acpinsterminate function in drivers/acpi/acpica/nsutils.c in the Linux kernel before 4.12 does not flush the operand cache and causes a kernel stack dump, which...
ASLR-bypass-simulation
ASLR Bypass Simulator An interactive educational web applicat...
Mozilla Firefox < 51.0
The version of Firefox installed on the remote Windows host is prior to 51.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2017-01 advisory. - A use-after-free vulnerability in the Media Decoder when working with media files when some events are fired after the...
CVE-2025-43205
CVE-2025-43205 describes an out-of-bounds access issue with improved bounds checking, fixed in watchOS 11.4, tvOS 18.4, visionOS 2.4, iOS 18.4 and iPadOS 18.4. The vulnerability may allow an attacker to bypass ASLR, with the Apple documentation indicating the issue affects Apple platforms and ver...
EUVD-2011-5254
Malware in sbrugna...
ASLRay
This repository contains a Linux ELF x32/x64 ASLR DEP/NX bypass exploit with stack-spraying. The exploit targets the test binary, which is a simple program that takes a string argument and prints it. The exploit works by spraying the stack with a large amount of data, which increases the chances ...
Buffer_Overflow
Buffer Overflow May 2024 Linux Distribution: Ubuntu 8.10...
Linux Distros Unpatched Vulnerability : CVE-2019-1010025
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNU Libc current is affected by: Mitigation bypass. The impact is: Attacker may guess the heap addresses of pthreadcreated thread. The component is: glibc. NOTE...
CVE-2011-10024
MJM Core Player likely now referred to as MJM Player 2011 is vulnerable to a stack-based buffer overflow when parsing specially crafted .s3m music files. The vulnerability arises from improper bounds checking in the file parser, allowing an attacker to overwrite memory on the stack and execute...
CVE-2011-10023
MJM QuickPlayer also known as MJM Player version 2010 contains a stack-based buffer overflow vulnerability triggered by opening a malicious .s3m music file. The flaw occurs due to improper bounds checking in the file parser, allowing an attacker to overwrite memory and execute arbitrary code...
CVE-2011-10023
CVE-2011-10023 affects MJM QuickPlayer/Player (≈2010) with a stack-based buffer overflow in the .s3m file parser. The flaw stems from improper bounds checking, enabling memory overwrite and arbitrary code execution. Exploitation described uses a crafted payload that bypasses DEP/ASLR via ROP and ...
CVE-2011-10024 MJM Core Player 2011 .s3m File Stack-Based Buffer Overflow
MJM Core Player likely now referred to as MJM Player 2011 is vulnerable to a stack-based buffer overflow when parsing specially crafted .s3m music files. The vulnerability arises from improper bounds checking in the file parser, allowing an attacker to overwrite memory on the stack and execute...
Linux Distros Unpatched Vulnerability : CVE-2014-7825
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - kernel/trace/tracesyscalls.c in the Linux kernel through 3.17.2 does not properly handle private syscall numbers during use of the perf subsystem, which allows...
Linux Distros Unpatched Vulnerability : CVE-2019-11190
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Linux kernel before 4.8 allows local users to bypass ASLR on setuid programs such as /bin/su because installexeccreds is called too late in loadelfbinary in...