Cisco Thor Stack Buffer Overflow Vulnerability

Cisco Thor decoder is a video coder/decoder from Cisco USA. A stack buffer overflow vulnerability exists in versions prior to Cisco Thor decoder commit 18de8f9f0762c3a542b1122589edb8af859d9813. A local attacker could exploit this vulnerability with a specially crafted Thor bitstream to cause a...

Stack overflow

Stack-based buffer overflow in the Cisco Thor decoder before commit 18de8f9f0762c3a542b1122589edb8af859d9813 allows local users to cause a denial of service segmentation fault and execute arbitrary code via a crafted non-conformant Thor bitstream...

CVE-2018-0429

Stack-based buffer overflow in the Cisco Thor decoder before commit 18de8f9f0762c3a542b1122589edb8af859d9813 allows local users to cause a denial of service segmentation fault and execute arbitrary code via a crafted non-conformant Thor bitstream...

CVE-2018-0429

Stack-based buffer overflow in the Cisco Thor decoder before commit 18de8f9f0762c3a542b1122589edb8af859d9813 allows local users to cause a denial of service segmentation fault and execute arbitrary code via a crafted non-conformant Thor bitstream...

CVE-2018-0280

A vulnerability in the Real-Time Transport Protocol RTP bitstream processing of the Cisco Meeting Server could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. The vulnerability is due to insufficient input validation of incoming RTP bitstreams. An attacker...

CVE-2018-0280

CVE-2018-0280 affects Cisco Meeting Server and relates to RTP bitstream processing. The issue arises from insufficient input validation of incoming RTP bitstreams, enabling an unauthenticated, remote attacker to cause media process crashes and a DoS, impacting audio and video services. Affected r...

CVE-2018-0280

A vulnerability in the Real-Time Transport Protocol RTP bitstream processing of the Cisco Meeting Server could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. The vulnerability is due to insufficient input validation of incoming RTP bitstreams. An attacker...

UBUNTU-CVE-2018-7731

An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FormatSupport/WEBPSupport.cpp does not check whether a bitstream has a NULL value, leading to a NULL pointer dereference in the WEBP::VP8XChunk class...

UBUNTU-CVE-2018-5269

In OpenCV 3.3.1, an assertion failure happens in cv::RBaseStream::setPos in modules/imgcodecs/src/bitstrm.cpp because of an incorrect integer cast...

DEBIAN-CVE-2018-5269

In OpenCV 3.3.1, an assertion failure happens in cv::RBaseStream::setPos in modules/imgcodecs/src/bitstrm.cpp because of an incorrect integer cast...

CVE-2017-16803

In Libav through 11.11 and 12.x through 12.1, the smackerdecodetree function in libavcodec/smacker.c does not properly restrict tree recursion, which allows remote attackers to cause a denial of service bitstream.c:buildtable out-of-bounds read and application crash via a crafted Smacker stream...

CVE-2017-16803

CVE-2017-16803 affects Libav up to 11.11 and 12.x up to 12.1; the smacker_decode_tree function does not properly restrict tree recursion, allowing a remote attacker to trigger a denial of service via a crafted Smacker stream, causing an out-of-bounds read in bitstream.c:build_table() and an appli...

UBUNTU-CVE-2017-14645

A heap-based buffer over-read was discovered in AP4BitStream::ReadBytes in Codecs/Ap4BitStream.cpp in Bento4 version 1.5.0-617. The vulnerability causes an application crash, which leads to remote denial of service...

Libav Denial of Service Vulnerability (CNVD-2017-26313)

Libav formerly FFmpeg is Libav team's set of cross-platform audio and video can be recorded, converted to a solution, which includes a libavcodec encoder. A security vulnerability exists in the 'buildtable' function of the libavcodec/bitstream.c file in Libav version 12.1. A remote attacker can...

UBUNTU-CVE-2016-9391

The jpcbitstreamgetbits function in jpcbs.c in JasPer before 2.0.10 allows remote attackers to cause a denial of service assertion failure via a very large integer...

RecuperaBit - A Tool For Forensic File System Reconstruction

A software which attempts to reconstruct file system structures and recover files. Currently it supports only NTFS. RecuperaBit attempts reconstruction of the directory structure regardless of: missing partition table unknown partition boundaries partially-overwritten metadata quick format You ca...

FFmpeg remote file stealing vulnerabilities – moving end of the safety analysis report-vulnerability warning-the black bar safety net

0x1 vulnerability of origin FFmpeg remote file stealing vulnerabilities original source is Foreign vulnerability of the platform,the last year has been in the CTF match is used. Official in January of this year released the fixed version and published the vulnerability number CVE-2 0 1 6-1 8 9...

The vulnerability of the Android operating system, which allows a perpetrator to obtain confidential information or bypass security mechanisms

The vulnerability of the libstagefright library in the Android operating system is related to security configuration errors. Exploiting this vulnerability can allow a malicious actor, acting remotely, to obtain confidential information or bypass security mechanisms using specially crafted Bitstre...

Android libstagefright Security Bypass Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA. libstagefright is one of the libraries that supports hardcoding. A security vulnerability exists in libstagefright's libmpeg2 in versions 6.0.1 prior to Android 2016-03-01. An...

CVE-2016-0824

libmpeg2 in libstagefright in Android 6.x before 2016-03-01 allows attackers to obtain sensitive information, and consequently bypass an unspecified protection mechanism, via crafted Bitstream data, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 25765591...