Vim has a binary vulnerability

Vim is a text editor developed from vi. A binary vulnerability exists in Vim. An attacker could exploit this vulnerability to cause the program to crash...

SAP 3D Visual Enterprise Viewer 缓冲区错误漏洞

SAP 3D Visual Enterprise Viewer is a 3D view viewer from SAP, Germany. The software supports the publishing of 2D and 3D scenes in all industry-standard desktop applications and supports separate installation as a stand-alone executable program and ActiveX space. A buffer overflow vulnerability...

UBUNTU-CVE-2020-26972

The lifecycle of IPC Actors allows managed actors to outlive their manager actors; and the former must ensure that they are not attempting to use a dead actor they have a reference to. Such a check was omitted in WebGL, resulting in a use-after-free and a potentially exploitable crash. This...

A binary vulnerability exists in da da gas pedal

DaDa Accelerator is an online game gas pedal tool developed for the majority of gamers with high quality services. A binary vulnerability exists in da da gas pedal. An attacker can exploit the constructed program to cause a computer blue screen BSOD...

Shanghai Zhanmeng Network Technology Co., Ltd.'s ABC Viewing has a Denial of Service Vulnerability

ABC Viewer is a picture viewing software that intelligently turns on hardware acceleration and supports various picture formats. There is a denial of service vulnerability in ABC Viewer, which can be exploited by attackers to cause the software to crash...

Hancom Office 2020 suffers from a memory corruption vulnerability (CNVD-2020-62407)

Hancom Office 2020 offers a feature-rich set of desktop productivity applications for performing common tasks such as word processing, spreadsheet modeling, graphical representation, and working with PDFs. A memory corruption vulnerability exists in Hancom Office 2020, which can be exploited by a...

Scintillating Light PDF Converter has an out-of-bounds writing vulnerability

Twinkle Light PDF Converter specializes in PDF conversion software, PDF file converter, including PDF to WORD, PDF to image, image to PDF, PDF to JPG, PDF merger, PDF compression and other related PDF conversion functions. Scintillate PDF Converter has an out-of-bounds write vulnerability. An...

SAP 3D Visual Enterprise Viewer Input Validation Error Vulnerability (CNVD-2020-53174)

SAP 3D Visual Enterprise Viewer is a free 3D visualization viewer for Windows. An input validation error vulnerability exists in SAP 3D Visual Enterprise Viewer 9, which can be exploited by an attacker via a specially crafted SKP file to cause the application to crash...

An allocation of memory without limits that could result in the stack clashing with another memory region was discovered in systemd-journald when many entries are sent to the journal socket. A local attacker or a remote one if systemd-journal-remote is used may use this flaw to crash systemd-journald or execute code with journald privileges. Versions through v240 are vulnerable.

...

MICROSOFT OFFICE suffers from a denial of service vulnerability (CNVD-2020-48566)

MICROSOFT OFFICE is an office software from Microsoft. A memory corruption vulnerability exists in MICROSOFT OFFICE 365, which can be exploited by attackers to cause the program to crash...

Memory Corruption Vulnerability in WPS Office 2019 for PC (CNVD-2020-41304)

WPS Office 2019 PC version is the software of Zhuhai Kingsoft Office Software Co. Ltd, which can realize the text, table, presentation and many other functions commonly used in office software. A memory corruption vulnerability exists in WPS Office 2019 PC Edition. An attacker can exploit this...

Memory Corruption Vulnerability in WPS Office for Windows (CNVD-2020-34022)

WPS Office for Windows is the software of Zhuhai Kingsoft Office Software Co., Ltd, which can realize the text, table, presentation and many other functions commonly used in office software. A memory corruption vulnerability exists in WPS Office for Windows, which can be exploited by attackers to...

UAF Vulnerability in WPS Office 2019 for PC (CNVD-2020-34099)

WPS Office 2019 PC version is the software of Zhuhai Kingsoft Office Software Co. Ltd, which can realize the text, table, presentation and many other functions commonly used in office software. WPS Office 2019 PC Edition suffers from a UAF vulnerability that can be exploited by an attacker to cau...

Mozilla: Use-after-free during worker shutdown

A flaw was found in Mozilla Firefox and Thunderbird. When running shutdown code for Web Worker, a race condition occurs leading to a use-after-free memory flaw that could lead to an exploitable crash. The highest threat from this vulnerability is to data confidentiality and integrity as well as...

Memory corruption vulnerability exists in WPS Office (CNVD-2020-26321)

WPS Office is the office software produced by Kingsoft Office Software, which can realize the text, forms, presentations and other functions commonly used in office software. WPS Office has a memory corruption vulnerability that can be exploited by attackers to cause the program to crash...

Easy RM to MP3 Converter 'Input' Local Buffer Overflow Vulnerability

Easy RM to MP3 Converter is a shareware program by Mini-stream Software that is mainly used to convert audio in RM format to MP3 format. A local buffer overflow vulnerability exists in Easy RM to MP3 Converter 'Input'. An attacker can exploit the vulnerability to cause a file to crash...

Memory Corruption Vulnerability in DCCE HMIware at Dalian Polytechnic Computer Control Engineering Co.

DCCE HMIware configuration editing software, is a special human-machine interface configuration software developed for DCCE touch screen, the software provides users with a powerful integrated development environment, the product is widely used in the field of medical, chemical, electric power,...

Mozilla: BodyStream:: OnInputStreamReady was missing protections against state confusion

The Mozilla Foundation Security Advisory describes this flaw as: By carefully crafting promise resolutions, it was possible to cause an out-of-bounds read off the end of an array resized during script execution. This could have led to memory corruption and a potentially exploitable crash...

Mozilla: Use-after-free in worker destruction

When using nested workers, a use-after-free could occur during worker destruction. This resulted in a potentially exploitable crash. This vulnerability affects Thunderbird 68.3, Firefox ESR 68.3, and Firefox 71...

Memory Corruption Vulnerability in iPubsoft PDF to Text Converter

iPubsoft PDF to Text Converter is a PDF processing tool. A memory corruption vulnerability exists in iPubsoft PDF to Text Converter, which can be exploited by attackers to crash the program by constructing malformed PDF files...