The vulnerability of the FFmpeg multimedia library’s component allows a hacker to execute arbitrary code.

The vulnerability of the FFmpeg multimedia library’s component is caused by an overflow in the buffer in the dynamic memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using data with incorrect size in the HTTP response...

The vulnerability of the FFmpeg multimedia library, which allows a hacker to perform recording beyond the memory limit

The vulnerability of the FFmpeg multimedia library arises from an overflow in the buffer in the dynamic memory. Exploiting this vulnerability allows a malicious actor to perform write operations beyond the memory boundaries, related to the decodeframecommon function in libavcodec/pngdec.c...

The vulnerability of the FFmpeg multimedia library, which allows a hacker to perform recording beyond the memory limit

The vulnerability of the FFmpeg multimedia library arises from an overflow in the buffer in the dynamic memory. Exploiting this vulnerability allows a malicious actor to perform write operations beyond the memory boundaries, related to the function ipvideodecodeblockopcode0xA in...

The vulnerability of the coders/psd.c component in the console-based image editing tool ImageMagick allows a hacker to exert undefined effects.

The vulnerability of the coders/psd.c component in the console-based ImageMagick graphics editor is caused by a buffer overflow in the dynamic memory. Exploiting this vulnerability allows an attacker to exert unpredictable effects remotely...

The vulnerability of the t1_decoder_parse_charstrings function in the FreeType library allows a hacker to write data beyond the buffer boundaries.

The vulnerability of the t1decoderparsecharstrings function psaux/t1decode.c in the FreeType library arises due to an overflow in the buffer of dynamic memory. Exploiting this vulnerability could allow a remote attacker to write data beyond the buffer’s capacity...

The vulnerability of the Linux operating system, which allows a perpetrator to trigger a service failure or cause other effects

The vulnerability of the MACsec module in the Linux operating system is caused by an overflow in the buffer of dynamic memory. Exploiting this vulnerability can allow a local attacker to cause service failures or other adverse effects...

The vulnerability of the console-based graphic editor ImageMagick, which allows a hacker to trigger a service failure

The vulnerability of the DrawImage function in the ImageMagick console graphic editor’s draw.c file is caused by buffer overflow in dynamic memory. Exploiting this vulnerability can allow a malicious actor to cause a service failure application termination by using a specially crafted image...

Microsoft Edge browser vulnerability, allowing a hacker to execute arbitrary code

The vulnerability of the Microsoft Edge browser’s script is due to an operation that occurs outside the buffer, in dynamic memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by renaming and executing the file...

The vulnerability of the LibTIFF library, which allows a hacker to cause an unexpected termination of the application

The vulnerability of the tifpackbits.c function in the LibTIFF library arises from an overflow in the buffer in the dynamic memory. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause an unexpected termination of the application by using a specially created BMP...

Linux/x86 - Egg-hunter Shellcode (31 bytes)

Linux/x86 - Egg-hunter Shellcode 31 bytes. Shellcode exploit for Linx86 platform / ;author: Filippo "zinzloun" Bersani ;date: 28/11/2016 ;version: 1.0 ;X86 Assembly/NASM Syntax ;tested on: Linux OpenSuse001 2.6.34-12-desktop 32bit ; Linux ubuntu 3.13.0-100-generic 147precise1-Ubuntu 32bit ; Linux...

The vulnerabilities of PDF viewer programs such as Adobe Reader and Adobe Reader Document Cloud, as well as PDF editing programs like Adobe Acrobat and Adobe Acrobat Document Cloud, allow attackers to execute arbitrary code.

The vulnerabilities of PDF viewer programs such as Adobe Reader and Adobe Reader Document Cloud, as well as PDF editing programs like Adobe Acrobat and Adobe Acrobat Document Cloud, are due to buffer overflow in the dynamic memory. Exploiting these vulnerabilities can allow a remote attacker to...

Oracle Linux 7 : systemd (ELSA-2016-2610)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2016-2610 advisory. 219-30.0.1.3 - set 'RemoveIPC=no' in logind.conf as default for OL7.2 22224874 - allow dm remove ioctl to co-operate with UEK3 Vaughan Cao Orabug: 18467469 - ad...

systemd security and bug fix update

219-30.0.1.3 - set 'RemoveIPC=no' in logind.conf as default for OL7.2 22224874 - allow dm remove ioctl to co-operate with UEK3 Vaughan Cao Orabug: 18467469 - add hv dynamic memory support Jerry Snitselaar Orabug: 18621475 - rules: load sg module 1223340 - run: drop mistakenly committed test code...

The vulnerability of the libaudiofile library, which allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the msadpcm.c file in the libaudiofile library arises due to an overflow in the buffer in the dynamic memory. Exploiting this vulnerability can allow a local attacker to cause a service failure application termination or execute arbitrary code using a specially crafted WAV fi...

The vulnerability of Google Chrome browser allows a perpetrator to trigger a service failure or cause other effects.

The vulnerability of the ByteArray::Get method in the Google Chrome browser component is due to buffer overflow in the dynamic memory. Exploiting this vulnerability can allow a remote attacker to cause service interruptions or other effects using a specially crafted SFNT font...

The vulnerabilities of PDF viewer programs such as Adobe Reader and Adobe Reader Document Cloud, as well as PDF editing programs like Adobe Acrobat and Adobe Acrobat Document Cloud, allow attackers to execute arbitrary code.

The vulnerabilities of PDF viewer programs such as Adobe Reader and Adobe Reader Document Cloud, as well as PDF editing programs like Adobe Acrobat and Adobe Acrobat Document Cloud, are due to buffer overflow in the dynamic memory. Exploiting these vulnerabilities can allow a remote attacker to...

The vulnerability of the Flash Player software, which allows a violator to execute arbitrary code

The vulnerability of the Flash Player software arises from an overflow in the buffer of dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Adobe Acrobat Reader DC 15.016.20045 - Invalid Font '.ttf' Memory Corruption (2)

Exploit for multiple platform in category dos / poc Application: Adobe Acrobat Reader DC Platforms: Windows,OSX Versions: 15.016.20045 and earlier Author: Sébastien Morin and Pier-Luc Maltais of COSIG Website: https://cosig.gouv.qc.ca/en/advisory/ Twitter: @COSIG Date: July 12, 2016 CVE:...

Adobe Flash Player 22.0.0.192 - TAG Memory Corruption

Adobe Flash Player 22.0.0.192 - TAG Memory Corruption Application: Adobe Flash Player Platforms: Windows,OSX Versions: 22.0.0.192 and earlier Author: Francis Provencher of COSIG Website: https://cosig.gouv.qc.ca/avis/ Twitter: @COSIG Date: 12 juillet 2016 CVE-2016-4176 COSIG-2016-20 1 Introductio...

Adobe Acrobat Reader DC 15.016.20045 - Invalid Font .ttf Memory Corruption (6)

Adobe Acrobat Reader DC 15.016.20045 - Invalid Font .ttf Memory Corruption 6 Application: Adobe Acrobat Reader DC Platforms: Windows,OSX Versions: 15.016.20045 and earlier Author: Sébastien Morin of COSIG Website: https://cosig.gouv.qc.ca/en/advisory/ Twitter: @COSIG Date: July 12, 2016 CVE:...