3164 matches found
IPTV encoder devices contain multiple vulnerabilities
Overview Multiple vulnerabilities exist in various Video Over IP Internet Protocol encoder devices, also known as IPTV/H.264/H.265 video encoders. These vulnerabilities allow an unauthenticated remote attacker to execute arbitrary code and perform other unauthorized actions on a vulnerable system...
astc-encoder:astc_encode_decode_ise_fuzzer: Index-out-of-bounds in encode_ise
Project: https://github.com/ARM-software/astc-encoder.git Detailed Report: https://oss-fuzz.com/testcase?key=6292768555794432 Project: astc-encoder Fuzzing Engine: libFuzzer Fuzz Target: astcencodedecodeisefuzzer Job Type: libfuzzerubsanastc-encoder Platform Id: linux Crash Type:...
astc-encoder:astc_encode_decode_ise_fuzzer: Heap-buffer-overflow in read_bits
Project: https://github.com/ARM-software/astc-encoder.git Detailed Report: https://oss-fuzz.com/testcase?key=5682067692847104 Project: astc-encoder Fuzzing Engine: libFuzzer Fuzz Target: astcencodedecodeisefuzzer Job Type: libfuzzerasanastc-encoder Platform Id: linux Crash Type:...
Critical Adobe Flaws Allow Attackers to Run JavaScript in Browsers
UPDATE Adobe has released fixes addressing five critical flaws in its popular Experience Manager content-management solution for building websites, mobile apps and forms. The cross-site scripting XSS flaws could allow attackers to execute JavaScript in targets’ browsers. Including Adobe Experienc...
Hack-Tools - The All-In-One Red Team Extension For Web Pentester
The all-in-oneRed Team browser extension for Web Pentesters HackTools, is a web extension facilitating your web application penetration tests , it includes cheat sheets as well as all the tools used during a test such as XSS payloads, Reverse shells and much more. With the extension you no longer...
Mozilla: Integer overflow in nsJPEGEncoder::emptyOutputBuffer
In non-standard configurations, a JPEG image created by JavaScript could have caused an internal variable to overflow, resulting in an out of bounds write, memory corruption, and a potentially exploitable crash. This vulnerability affects Firefox 78...
Mozilla: Integer overflow in nsJPEGEncoder::emptyOutputBuffer
In non-standard configurations, a JPEG image created by JavaScript could have caused an internal variable to overflow, resulting in an out of bounds write, memory corruption, and a potentially exploitable crash. This vulnerability affects Firefox 78...
Mozilla: Integer overflow in nsJPEGEncoder::emptyOutputBuffer
In non-standard configurations, a JPEG image created by JavaScript could have caused an internal variable to overflow, resulting in an out of bounds write, memory corruption, and a potentially exploitable crash. This vulnerability affects Firefox 78...
CVE-2020-14937
Memory access out of buffer boundaries issues was discovered in Contiki-NG 4.4 through 4.5, in the SNMP BER encoder/decoder. The length of provided input/output buffers is insufficiently verified during the encoding and decoding of data. This may lead to out-of-bounds buffer read or write access ...
CVE-2020-14937
The CVE-2020-14937 entry concerns Contiki-NG versions 4.4–4.5 where the SNMP BER encoder/decoder mishandles input/output buffer lengths, causing out-of-bounds reads/writes during BER encoding/decoding. Affected component: Contiki-NG SNMP BER encoder/decoder; root cause: insufficient verification ...
OSV-2020-1570 Heap-buffer-overflow in x265::PicYuv::copyFromPicture
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24590 Crash type: Heap-buffer-overflow READ Crash state: x265::PicYuv::copyFromPicture x265::Encoder::encode x265encoderencode...
libheif:encoder-fuzzer: Heap-buffer-overflow in x265::PicYuv::copyFromPicture
Project: https://github.com/strukturag/libheif.git Detailed Report: https://oss-fuzz.com/testcase?key=5148929759641600 Project: libheif Fuzzing Engine: libFuzzer Fuzz Target: encoder-fuzzer Job Type: libfuzzerasanlibheif Platform Id: linux Crash Type: Heap-buffer-overflow READ Crash Address:...
Adobe Media Encoder Security Update (APSB20-36) - Windows
Adobe Media Encoder is prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...
Apple tvOS, iOS and iPadOS AVEVideoEncoder Component Arbitrary Code Execution Vulnerability
Apple iOS is an operating system developed for mobile devices. apple tvOS is an operating system for smart TVs. apple iPadOS is an operating system for iPad tablets. avevideoEncoder is one of the avevideo encoder components. AVEVideoEncoder is one of the AVE video encoder components. A security...
Adobe Media Encoder MP4 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Media Encoder. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing...
Adobe Media Encoder 3GP File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Media Encoder. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing...
Adobe Media Encoder MP4 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Media Encoder. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing...
CVE-2020-9650
Adobe Media Encoder versions 14.2 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution...
CVE-2020-9649
Adobe Media Encoder versions 14.2 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure...
CVE-2020-9649
Adobe Media Encoder versions 14.2 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure...