OpenSSL Memory corruption in the ASN.1 encoder (CVE-2016-2108)

No description provided by source...

Debian DLA-456-1 : openssl security update

Several vulnerabilities were discovered in OpenSSL, a Secure Socket Layer toolkit. CVE-2016-2105 Guido Vranken discovered that an overflow can occur in the function EVPEncodeUpdate, used for Base64 encoding, if an attacker can supply a large amount of data. This could lead to a heap corruption...

[SECURITY] [DSA 3566-1] openssl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3566-1 [email protected] https://www.debian.org/security/ Alessandro Ghedini May 03, 2016 https://www.debian.org/security/faq -...

OpenSSL Patches Padding Oracle Attack Bug

The latest batch of OpenSSL security patches were released today, with a pair of high-severity flaws and four low-severity issues addressed in OpenSSL 1.0.1t and OpenSSL 1.0.2h. One of the high-severity flaws, CVE-2016-2107, opens the door to a padding oracle attack that can allow for the...

Vulnerability in OpenSSL - Memory corruption in the ASN.1 encoder

This issue affected versions of OpenSSL prior to April 2015. The bug causing the vulnerability was fixed on April 18th 2015, and released as part of the June 11th 2015 security releases. The security impact of the bug was not known at the time. In previous versions of OpenSSL, ASN.1 encoding the...

Debian Security Advisory DSA 3566-1 (openssl - security update)

Several vulnerabilities were discovered in OpenSSL, a Secure Socket Layer toolkit. CVE-2016-2105 Guido Vranken discovered that an overflow can occur in the function EVPEncodeUpdate, used for Base64 encoding, if an attacker can supply a large amount of data. This could lead to a heap corruption...

DSA-3566-1 openssl - security update

Bulletin has no description...

OpenSSL -- multiple vulnerabilities

OpenSSL reports: Memory corruption in the ASN.1 encoder Padding oracle in AES-NI CBC MAC check EVPEncodeUpdate overflow EVPEncryptUpdate overflow ASN.1 BIO excessive memory allocation EBCDIC overread OpenSSL only...

DLA-456-1 openssl - security update

Bulletin has no description...

UBUNTU-CVE-2016-3154

The encodercontexteajax function in ecrire/inc/filtres.php in SPIP 2.x before 2.1.19, 3.0.x before 3.0.22, and 3.1.x before 3.1.1 allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via a crafted serialized object...

WordPress Email Encoder Bundle 1.4.3 Cross Site Scripting

================================================================================ WordPress Email Encoder Bundle 1.4.3 - Stored Cross Site Scripting ================================================================================ Author: Ehsan Hosseini Vendor Homepage:...

UBUNTU-CVE-2016-2327

libavcodec/pngenc.c in FFmpeg before 2.8.5 uses incorrect line sizes in certain row calculations, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via a crafted .avi file, related to the apngencodeframe and encodeapng...

moxa VPort 461 Industrial Video Encoder 弱口令

No description provided by source...

Mozilla: Buffer overflow during image interactions in canvas (MFSA 2015-123)

Race condition in the JPEGEncoder function in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow via vectors involving a CANVAS element and crafted JavaScript code...

linux/x86 /bin/sh ROL/ROR Encoded Shellcode

Custom shellcode encoder/decoder that switches between byte ROR and byte ROL 1. Update eRORoROL-encoder.py with your shellcode 2. Run eRORoROL-encoder.py 3. Copy output from eRORoROL-encoder.py and update eRORoROL-decoder.nasm 4. Run eRORoROLcompile.sh -----eRORoROL-encoder.py BEGIN CODE-----...

Linux x86 - /bin/sh ROL/ROR Encoded Shellcode

Linux x86 - /bin/sh ROL/ROR Encoded Shellcode. Shellcode exploit for linx86 platform Custom shellcode encoder/decoder that switches between byte ROR and byte ROL 1. Update eRORoROL-encoder.py with your shellcode 2. Run eRORoROL-encoder.py 3. Copy output from eRORoROL-encoder.py and update...

Email Encoder Bundle <= 1.4.1 - Unauthenticated Cross-Site Scripting (XSS)

The Email Encoder – Protect Email Addresses WordPress plugin was affected by an Unauthenticated Cross-Site Scripting XSS security vulnerability...

WordPress Email Encoder Bundle Plugin <= 1.4.1 - Cross Site Scripting

Because of this vulnerability, unauthenticated users can inject HTML or JS code. Solution Update the plugin...

linux/x86 /bin/sh ROT7 Encoded Shellcode

Shellcode Title: ROT7 Date: 5 July 2015 Exploit Author: Artem Tsvetkov Software Link: https://github.com/adeptex/SLAE/tree/master/Assignment-6/rot7 Tested on: Kali GNU/Linux 1.1.0 Platform: x86 Linux This code was created as an exercise for the SecurityTube Linux Assembly Expert SLAE. The followi...

Linux x86 /bin/sh ROT7 Encoded Shellcode

Linux x86 /bin/sh ROT7 Encoded Shellcode. Shellcode exploit for linx86 platform Shellcode Title: ROT7 Date: 5 July 2015 Exploit Author: Artem Tsvetkov Software Link: https://github.com/adeptex/SLAE/tree/master/Assignment-6/rot7 Tested on: Kali GNU/Linux 1.1.0 Platform: x86 Linux This code was...