file security and bug fix update

5.11-31 - fix 1255396 - Make the build ID output consistent with other tools 5.11-30 - fix CVE-2014-8116 - bump the acceptable ELF program headers count to 2048 5.11-29 - fix 839229 - fix detection of version of XML files 5.11-28 - fix 839229 - fix detection of version of XML files 5.11-27 - fix...

Kaspersky AntiVirus - .DEX File Format Memory Corruption

Kaspersky AntiVirus - .DEX File Format Memory Corruption Source: https://code.google.com/p/google-security-research/issues/detail?id=529 The attached testcase was found by fuzzing DEX files, and results in a heap overflow with a wild memcpy. Note that Kaspersky catch exceptions and continue...

Kaspersky AntiVirus - '.DEX' File Format Memory Corruption

Source: https://code.google.com/p/google-security-research/issues/detail?id=529 The attached testcase was found by fuzzing DEX files, and results in a heap overflow with a wild memcpy. Note that Kaspersky catch exceptions and continue execution, so running into unmapped pages doesn't terminate th...

Talking about the zip format, the processing logic vulnerability-vulnerability warning-the black bar safety net

Preface: the zip compression format is widely used, various platforms are used, the Windows platform used to compress the file, the Android platform as apk file format. Since the zip file format is more complex, in the parsing of the zip file format, if handled improperly, could lead to some...

VLC Media Player 3GP File Denial of Service Vulnerability (Oct 2015) - Linux

VLC media player is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Watermark Master Buffer Overflow (SEH) Exploit

This Metasploit module exploits a stack based buffer overflow in Watermark Master 2.2.23 when processing a specially crafted .WCF file. This vulnerability could be exploited by a remote attacker to execute arbitrary code on the target machine by enticing a user of Watermark Master to open a...

Cross site request forgery (csrf)

Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 do not properly restrict the SWF file format, which allows remote...

CVE-2015-5571

CVE-2015-5571 affects Adobe Flash Player and AIR products. It arises from incomplete SWF format restrictions, enabling CSRF against JSONP endpoints via a crafted OBJECT element containing SWF content that meets the callback API’s character-set requirements. Affected: Flash Player on Windows/OS X ...

Kaspersky AntiVirus - '.DEX' File Format Parsing Memory Corruption

Source: https://code.google.com/p/google-security-research/issues/detail?id=519 Fuzzing the DEX file format found a crash that loads a function pointer from an attacker controlled pointer, on Windows this results in a call to an unmapped address. This is obviously exploitable for remote,...

Kaspersky AntiVirus - .DEX File Format Parsing Memory Corruption

Kaspersky AntiVirus - .DEX File Format Parsing Memory Corruption Source: https://code.google.com/p/google-security-research/issues/detail?id=519 Fuzzing the DEX file format found a crash that loads a function pointer from an attacker controlled pointer, on Windows this results in a call to an...

Unable to add/install an SSL certificate-key Pair to the CloudBridge: “Error detecting a valid private key file format”

When configuring an SSL Profile the backend server’s ssl certificate/key pair must be uploaded. The following error message is displayed when trying to upload the private key file regardless of the extension i.e .key or .txt Please correct any problems and resubmit your request Execution error...

UBUNTU-CVE-2015-6749

Buffer overflow in the aiffopen function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to cause a denial of service crash via a crafted AIFF file...

[oCERT-2015-009] VLC arbitrary pointer dereference

2015-009 VLC arbitrary pointer dereference Description: The VLC media player is an open source media player and streaming media server. The stable VLC version suffers from an arbitrary pointer dereference vulnerability. The vulnerability affects the 3GP file format parser, insufficient restrictio...

Pupils with EasyFuzzer 1.0 mining software vulnerabilities-vulnerability warning-the black bar safety net

EasyFuzzer is a new fuzzing tool. Currently only supports the file format of the fuzzy test. Features: easy, streamlined, efficient, and intelligent. Easy: very easy to use, does not need any configuration. With his elementary students can also dig vulnerability, don't worry there is no 0day...

Heroes of Might and Magic III - Map Parsing Arbitrary Code Execution

Heroes of Might and Magic III - Map Parsing Arbitrary Code Execution / Exploit Title : Heroes of Might and Magic III - Map Parsing Arbitrary Code Execution Date : 2015-07-29 Exploit Author : John AAkerblom, Pierre Lindblad Website: http://h3minternals.net Vendor Homepage : 3do.com defunct,...

Ghisler Total Commander FileInfo plugin Denial of Service Vulnerability

Ghisler Total Commander formerly Windows Commander is a suite of disk file management software from the Swiss company Ghisler that replaces Explorer.File Info is one of the file information plug-ins. A security vulnerability exists in the Ghisler Total Commander File Info plug-in. A remote attack...

Apple iOS .tiff File Handling Memory Corruption Vulnerability

Apple iOS is the latest operating system that runs on Apple's iPhone and iPod touch devices. Apple iOS suffers from a security vulnerability in the handling of .tiff files that allows an attacker to construct malicious .tiff files and trick apps into parsing them, which can crash the app or execu...

php: Free called on unitialized pointer in exif.c

An uninitialized pointer use flaw was found in PHP's Exif extension. A specially crafted JPEG or TIFF file could cause a PHP application using the exifreaddata function to crash or, possibly, execute arbitrary code with the privileges of the user running that PHP application...

Adobe Flash Player: Multiple vulnerabilities

Background The Adobe Flash Player is a renderer for the SWF file format, which is commonly used to provide interactive websites. Description Multiple vulnerabilities have been discovered in Adobe Flash Player. Please review the CVE identifiers referenced below for details. Impact A remote attacke...

Microsoft Excel Malformed Chart Sheet Substream Memory Corruption (MS10-038) - Ver2 (CVE-2010-0823)

Microsoft Excel is a spreadsheet application released by the Microsoft Corporation. Its native file format is the Binary Interchange File Format BIFF, which is available is several versions. An Excel file contains information about the various spreadsheets that form an Excel workbook, the data an...