9 matches found
CVE-2020-37039
CVE-2020-37039 (Frigate 2.02) is a denial-of-service vulnerability where an attacker can crash the application by supplying oversized input to the command line interface. A payload of 8000 repeated characters pasted into the CLI triggers the crash. Public metrics show a high-severity impact (CVSS...
EUVD-2017-1522
Malware in sbrugna...
Vulnerabilities fixed in Cisco IOS and Cisco IOS XE Software
Cisco has fixed vulnerabilities in Cisco IOS and Cisco IOS XE Software. The vulnerabilities include several issues, including a buffer overflow in the command-line interface CLI that can lead to unexpected device restarts and a vulnerability in the TACACS+ protocol implementation that allows...
Important: kernel
Issue Overview: In the Linux kernel, the following vulnerability has been resolved: PCI/ASPM: Fix deadlock when enabling ASPM A last minute revert in 6.7-final introduced a potential deadlock when enabling ASPM during probe of Qualcomm PCIe controllers as reported by lockdep CVE-2024-26605 In the...
The vulnerability of the mendex application, which is part of the TeX Live computer typesetting system, allows a hacker to cause a service failure.
The vulnerability of the mendex application, which is part of the TeX Live computer typesetting system, is related to overflow errors during the processing of command lines. Exploiting this vulnerability can allow an attacker to cause a service failure by sending commands with specially crafted...
CVE-2017-1000363
Linux drivers/char/lp.c Out-of-Bounds Write. Due to a missing bounds check, and the fact that parportptr integer is static, a 'secure boot' kernel command line adversary can happen due to bootloader vulns, e.g. Google Nexus 6's CVE-2016-10277, where due to a vulnerability the adversary has partia...
Integer overflow
Linux drivers/char/lp.c Out-of-Bounds Write. Due to a missing bounds check, and the fact that parportptr integer is static, a 'secure boot' kernel command line adversary can happen due to bootloader vulns, e.g. Google Nexus 6's CVE-2016-10277, where due to a vulnerability the adversary has partia...
SUSE-SU-2015:1479-1 Security update for xen
xen was updated to fix the following security issues: CVE-2015-5165: QEMU leak of uninitialized heap memory in rtl8139 device model bsc939712, XSA-140 CVE-2015-5166: Use after free in QEMU/Xen block unplug protocol bsc939709, XSA-139 CVE-2015-2751: Certain domctl operations could have be used to...
[EXPL] Oracle Command Line Overflow (Exploit)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...