tcpdump 缓冲区错误漏洞

tcpdump is a set of sniffing tools from Tcpdump team running under command line. The tool is mainly used for packet analysis and network traffic capturing, among others. A security vulnerability exists in tcpdump version 4.99.3, which stems from an SMB protocol decoder that can perform...

The vulnerability of the zgfx_decompress_segment() function in the ZGFX decoder of the FreeRDP remote desktop protocol allows a hacker to trigger a service failure.

The vulnerability of the zgfxdecompresssegment function in the ZGFX decoder of the FreeRDP remote desktop protocol lies in the fact that the operation for checking the length of input data occurs outside the buffer. Exploiting this vulnerability could allow a malicious actor to cause service...

Denial of Service (DoS)

Overview vapor/vapor is an a server-side Swift HTTP web framework. Affected versions of this package are vulnerable to Denial of Service DoS via URLEncodedFormDecoder. When using automatic content decoding, an attacker can craft a request body that can make the server crash. Details Denial of...

Tencent WeChat WXAM Decoder Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Tencent WeChat. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the WXAM...

The vulnerability of the decoder in the MPEG-4 multimedia platform GPAC’s function decoding process allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the MPEG-4 multimedia platform GPAC decoder’s decoding function is related to incorrect checking of the result of an arithmetic operation. Exploiting this vulnerability allows a remote attacker to access confidential data, compromise its integrity, and cause service failures...

The vulnerability of the RTP decoder, a component for decoding MPEG-4 multimedia platforms like GPAC, allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the RTP decoder used for decoding MPEG-4 multimedia platform GPAC is related to the lack of verification for the result of the addition arithmetic operation. Exploiting this vulnerability allows a remote attacker to gain access to confidential data, compromise its integrity,...

The vulnerability of the decoder in the MPEG-4 multimedia platform GPAC’s functional decoding process allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the decoder in the MPEG-4 multimedia platform GPAC function decoder relates to the lack of verification for the result of arithmetic operations. Exploiting this vulnerability allows a remote attacker to gain access to confidential data, compromise its integrity, and cause...

The vulnerability of the decoder in the MPEG-4 multimedia platform GPAC’s decoding function allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the decoder in the MPEG-4 multimedia platform GPAC’s decoding function is related to the lack of a mechanism for converting data types. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

The vulnerability of the decoder for MPEG-4 multimedia platform GPAC allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the SVHD decoder, a component of the MPEG-4 multimedia platform GPAC, lies in the lack of verification for the result of the addition arithmetic operation. Exploiting this vulnerability allows an attacker operating remotely to gain access to confidential data, compromise its...

The vulnerability of the decoder in the MPEG-4 multimedia platform GPAC’s functional decoding process allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the CTS decoder used in MPEG-4 multimedia platform GPAC is related to incorrect checking of the result of an arithmetic operation. Exploiting this vulnerability allows a remote attacker to gain access to confidential data, compromise its integrity, and cause service failures...

The vulnerability of the decoder in the MPEG-4 multimedia platform GPAC function decoder allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the SAIO decoder in the MPEG-4 multimedia platform GPAC relates to incorrect checking of the result of an arithmetic operation. Exploiting this vulnerability allows a remote attacker to gain access to confidential data, compromise its integrity, and cause service failures...

The vulnerability of the decoder in the MPEG-4 multimedia platform GPAC function decoding process allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the STTS decoder for MPEG-4 multimedia platform GPAC is related to incorrect checking of the result of an arithmetic operation. Exploiting this vulnerability allows a remote attacker to gain access to confidential data, compromise its integrity, and cause service failures...

The vulnerability of the decoder in the SIX functional decoding system for MPEG-4 multimedia platform GPAC allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the SSIX decoder for MPEG-4 multimedia platform GPAC is related to incorrect checking of the result of an arithmetic operation. Exploiting this vulnerability allows a remote attacker to gain access to confidential data, compromise its integrity, and cause service failures...

The vulnerability of the decoder for the MPEG-4 multimedia platform GPAC’s decoding function allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the CSGP decoder for MPEG-4 multimedia platform GPAC is related to the lack of verification for the result of arithmetic operations. Exploiting this vulnerability allows a remote attacker to gain access to confidential data, compromise its integrity, and cause service failure...

The vulnerability of the decoder in the MPEG-4 multimedia platform GPAC function decoder allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the CO64 decoder for the MPEG-4 multimedia platform GPAC is related to incorrect checking of the result of an arithmetic operation. Exploiting this vulnerability allows a remote attacker to gain access to confidential data, compromise its integrity, and cause service failures...

CVE-2021-27095

Windows Media Video Decoder Remote Code Execution Vulnerability...

Accusoft ImageGear GIF LZW decoder heap overflow vulnerability

Summary A heap overflow vulnerability exists in the way the GIF parser decodes LZW compressed streams in Accusoft ImageGear 19.8. A specially crafted malformed file can trigger a heap overflow, which can result in arbitrary code execution. An attacker can provide a malicious file to trigger this...

Sean Barrett stb_vorbis code issue vulnerability

Sean Barrett stbvorbis is an open source audio codec for decoding ogg vorbis files. Sean Barrett stbvorbis A code issue vulnerability exists in the 'getwindow' function in versions 2019-03-04 and earlier. The vulnerability stems from an improperly designed or implemented code development process...

OFFIS.de DCMTK Buffer Overflow Vulnerability

OFFIS.de DCMTK is a toolkit that implements the DICOM standard to inspect, build and convert DICOM image files, send and receive images over a network connection. A buffer overflow vulnerability exists in DcmRLEDecoder::decompress in OFFIS.de DCMTK 3.6.3 and earlier versions. The vulnerability...

PT-2019-11520 · Dcmtk +3 · Dcmtk +3

Name of the Vulnerable Software and Affected Versions: DCMTK versions 3.6.3 and below Description: The issue affects the DcmRLEDecoder component, specifically the decompress function in the dcrledec.h file. It can lead to a buffer overflow, resulting in possible code execution and confirmed Denia...