CVE-2016-4352

Integer overflow in the demuxer function in libmpdemux/demuxgif.c in Mplayer allows remote attackers to cause a denial of service crash via large dimensions in a gif file...

The vulnerability of the Android operating system, which allows a hacker to gain unauthorized access to the device

The vulnerability in the silk/NLSFstabilize.c function of the libopus media server in the Android operating system arises from an operation that goes beyond the buffer boundaries on the stack. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized acce...

CVE-2016-6671

The rawdecode function in libavcodec/rawdec.c in FFmpeg before 3.1.2 allows remote attackers to cause a denial of service memory corruption or execute arbitrary code via a crafted SWF file...

Microsoft Office Memory Corruption Vulnerability (CNVD-2016-12454)

Microsoft Office is an office software suite of products developed by the U.S. company Microsoft Microsoft. Commonly used components are Word, Excel, Access, Powerpoint, FrontPage and so on. Microsoft Office suffers from a memory corruption vulnerability due to the program's failure to properly...

CVE-2016-9888

An error within the "tardirectoryforfile" function gsf-infile-tar.c in GNOME Structured File Library before 1.14.41 can be exploited to trigger a Null pointer dereference and subsequently cause a crash via a crafted TAR file...

Vulnerability of the Windows operating system, allowing a perpetrator to execute arbitrary code

The vulnerability of the Microsoft Video Control component of the Windows operating system is related to access control deficiencies. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted file...

BlueZ Out-of-Bounds Read Vulnerability

BlueZ is an official Bluetooth stack for Linux. A security vulnerability exists in the 'l2cappacket' function in the monitor/packet.c source file of BlueZ version 5.42. An attacker can exploit this vulnerability by running a compromised file to cause btmon to crash read across boundaries...

Apache OpenOffice Unreferenced Windows Search Path Vulnerability

Apache OpenOffice OOo is an open source office software suite from the U.S. Apache Apache Software Foundation. The suite contains text documents, spreadsheets, presentations, drawings, databases and so on. A non-referenced Windows search path vulnerability exists in Apache OOo 4.1.2 and earlier...

CVE-2016-9186

Unrestricted file upload vulnerability in the "legacy course files" and "file manager" modules in Moodle 3.1.2 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, and then accessing it via unspecified vectors...

CVE-2016-7424

The putnorndpixels8xy2mmx function in x86/rndtemplate.c in libav 11.7 and earlier allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted MP3 file...

CVE-2015-8927

The tradencdecryptupdate function in archivereadsupportformatzip.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service out-of-bounds heap read and crash via a crafted zip file, related to reading the password...

The vulnerability of Microsoft Word text editors, which allows a hacker to execute arbitrary code.

The vulnerability of Microsoft Word stems from buffer overflow attacks. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted file...

The vulnerability of the LibreOffice office software package allows a hacker to execute arbitrary code.

The vulnerability of the LibreOffice office software package relates to the use of memory after it is freed. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely, using a specially created RTF file...

MGASA-2016-0186 Updated icu packages fix security vulnerability

It was discovered that ICU Layout Engine was missing multiple boundary and error return checks. These could lead to buffer overflows and memory corruption. A specially crafted font file could cause an application using ICU to parse untrusted fonts to crash and, possibly, execute arbitrary code...

CVE-2016-0775

Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service crash via a crafted FLI file...

Exploit for Integer Overflow or Wraparound in Python

CVE-2016-5636 PoC for CVE-2016-5636https://bugs.python.o...

PT-2016-4911 · FFmpeg +1 · Ffmpeg +1

Name of the Vulnerable Software and Affected Versions: FFmpeg versions 2.x Description: The issue allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the subfile protocol in an HTTP Live Streaming HLS M3U8 file. This leads to an external HTTP request in which...

CVE-2015-6609

libutils in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted audio file, aka internal bug 22953624...

CVE-2015-7645

Adobe Flash Player 18.x through 18.0.0.252 and 19.x through 19.0.0.207 on Windows and OS X and 11.x through 11.2.202.535 on Linux allows remote attackers to execute arbitrary code via a crafted SWF file, as exploited in the wild in October 2015...

Konica Minolta FTP Utility 1.0 - Directory Traversal

Konica Minolta FTP Utility 1.0 - Directory Traversal / --------------------------------------------------------------------- Konica Minolta FTP Utility directory traversal vulnerability Url: http://download.konicaminolta.hk/bt/driver/mfpu/ftpu/ftpu10.zip Author: shinnai mail:...