The vulnerability of the coders/psd.c component in the console-based image editing tool ImageMagick allows a hacker to exert undefined effects.

The vulnerability of the coders/psd.c component in the console-based ImageMagick graphics editor is caused by a buffer overflow in the dynamic memory. Exploiting this vulnerability allows an attacker to exert unpredictable effects remotely...

The vulnerability of the t1_decoder_parse_charstrings function in the FreeType library allows a hacker to write data beyond the buffer boundaries.

The vulnerability of the t1decoderparsecharstrings function psaux/t1decode.c in the FreeType library arises due to an overflow in the buffer of dynamic memory. Exploiting this vulnerability could allow a remote attacker to write data beyond the buffer’s capacity...

The vulnerability of the Linux operating system, which allows a perpetrator to trigger a service failure or cause other effects

The vulnerability of the MACsec module in the Linux operating system is caused by an overflow in the buffer of dynamic memory. Exploiting this vulnerability can allow a local attacker to cause service failures or other adverse effects...

The vulnerability of the console-based graphic editor ImageMagick, which allows a hacker to trigger a service failure

The vulnerability of the DrawImage function in the ImageMagick console graphic editor’s draw.c file is caused by buffer overflow in dynamic memory. Exploiting this vulnerability can allow a malicious actor to cause a service failure application termination by using a specially crafted image...

Microsoft Edge browser vulnerability, allowing a hacker to execute arbitrary code

The vulnerability of the Microsoft Edge browser’s script is due to an operation that occurs outside the buffer, in dynamic memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by renaming and executing the file...

The vulnerability of the LibTIFF library, which allows a hacker to cause an unexpected termination of the application

The vulnerability of the tifpackbits.c function in the LibTIFF library arises from an overflow in the buffer in the dynamic memory. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause an unexpected termination of the application by using a specially created BMP...

Linux/x86 - Egg-hunter Shellcode (31 bytes)

Linux/x86 - Egg-hunter Shellcode 31 bytes. Shellcode exploit for Linx86 platform / ;author: Filippo "zinzloun" Bersani ;date: 28/11/2016 ;version: 1.0 ;X86 Assembly/NASM Syntax ;tested on: Linux OpenSuse001 2.6.34-12-desktop 32bit ; Linux ubuntu 3.13.0-100-generic 147precise1-Ubuntu 32bit ; Linux...

The vulnerabilities of PDF viewer programs such as Adobe Reader and Adobe Reader Document Cloud, as well as PDF editing programs like Adobe Acrobat and Adobe Acrobat Document Cloud, allow attackers to execute arbitrary code.

The vulnerabilities of PDF viewer programs such as Adobe Reader and Adobe Reader Document Cloud, as well as PDF editing programs like Adobe Acrobat and Adobe Acrobat Document Cloud, are due to buffer overflow in the dynamic memory. Exploiting these vulnerabilities can allow a remote attacker to...

Oracle Linux 7 : systemd (ELSA-2016-2610)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2016-2610 advisory. 219-30.0.1.3 - set 'RemoveIPC=no' in logind.conf as default for OL7.2 22224874 - allow dm remove ioctl to co-operate with UEK3 Vaughan Cao Orabug: 18467469 - ad...

systemd security and bug fix update

219-30.0.1.3 - set 'RemoveIPC=no' in logind.conf as default for OL7.2 22224874 - allow dm remove ioctl to co-operate with UEK3 Vaughan Cao Orabug: 18467469 - add hv dynamic memory support Jerry Snitselaar Orabug: 18621475 - rules: load sg module 1223340 - run: drop mistakenly committed test code...

The vulnerability of the libaudiofile library, which allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the msadpcm.c file in the libaudiofile library arises due to an overflow in the buffer in the dynamic memory. Exploiting this vulnerability can allow a local attacker to cause a service failure application termination or execute arbitrary code using a specially crafted WAV fi...

The vulnerability of Google Chrome browser allows a perpetrator to trigger a service failure or cause other effects.

The vulnerability of the ByteArray::Get method in the Google Chrome browser component is due to buffer overflow in the dynamic memory. Exploiting this vulnerability can allow a remote attacker to cause service interruptions or other effects using a specially crafted SFNT font...

The vulnerabilities of PDF viewer programs such as Adobe Reader and Adobe Reader Document Cloud, as well as PDF editing programs like Adobe Acrobat and Adobe Acrobat Document Cloud, allow attackers to execute arbitrary code.

The vulnerabilities of PDF viewer programs such as Adobe Reader and Adobe Reader Document Cloud, as well as PDF editing programs like Adobe Acrobat and Adobe Acrobat Document Cloud, are due to buffer overflow in the dynamic memory. Exploiting these vulnerabilities can allow a remote attacker to...

The vulnerability of the Flash Player software, which allows a violator to execute arbitrary code

The vulnerability of the Flash Player software arises from an overflow in the buffer of dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Adobe Flash Player 22.0.0.192 - TAG Memory Corruption

Adobe Flash Player 22.0.0.192 - TAG Memory Corruption Application: Adobe Flash Player Platforms: Windows,OSX Versions: 22.0.0.192 and earlier Author: Francis Provencher of COSIG Website: https://cosig.gouv.qc.ca/avis/ Twitter: @COSIG Date: 12 juillet 2016 CVE-2016-4176 COSIG-2016-20 1 Introductio...

Adobe Acrobat Reader DC 15.016.20045 - Invalid Font '.ttf' Memory Corruption (2)

Exploit for multiple platform in category dos / poc Application: Adobe Acrobat Reader DC Platforms: Windows,OSX Versions: 15.016.20045 and earlier Author: Sébastien Morin and Pier-Luc Maltais of COSIG Website: https://cosig.gouv.qc.ca/en/advisory/ Twitter: @COSIG Date: July 12, 2016 CVE:...

Adobe Acrobat Reader DC 15.016.20045 - Invalid Font .ttf Memory Corruption (6)

Adobe Acrobat Reader DC 15.016.20045 - Invalid Font .ttf Memory Corruption 6 Application: Adobe Acrobat Reader DC Platforms: Windows,OSX Versions: 15.016.20045 and earlier Author: Sébastien Morin of COSIG Website: https://cosig.gouv.qc.ca/en/advisory/ Twitter: @COSIG Date: July 12, 2016 CVE:...

The vulnerability of the Microprogramming Software of the AirTies router allows a hacker to execute arbitrary code.

The vulnerability of the AirTies router’s microprogramming software arises from an overflow in the buffer in the dynamic memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending an incorrect parameter to the cgi-bin/login subcomponent remotely...

The vulnerability of the Flash Player software, which allows a violator to execute arbitrary code

The vulnerability of the Flash Player software arises from an overflow in the buffer of dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Adobe Bridge file manager, allowing a hacker to execute arbitrary code

The vulnerability of the Adobe Bridge file manager is related to buffer overflows in dynamic memory, caused by integer overflows. Exploiting this vulnerability allows a local attacker to execute arbitrary code...