Lucene search
K

330 matches found

Positive Technologies
Positive Technologies
added 2018/09/16 12:0 a.m.4 views

PT-2018-13891 · Mpruett +6 · Audiofile +6

Name of the Vulnerable Software and Affected Versions: mpruett Audio File Library aka audiofile versions 0.3.0 through 0.3.6 Description: A heap-based buffer overflow issue has been found in the Expand3To4Module::run function when running sfconvert, potentially leading to exploitation...

8.8CVSS7.5AI score0.04654EPSS
Exploits4References64
Positive Technologies
Positive Technologies
added 2018/07/18 12:0 a.m.3 views

PT-2018-12476 · Mp4V2 · Mp4V2

Name of the Vulnerable Software and Affected Versions: MP4v2 version 2.0.0 Description: The issue arises from a type confusion in the MP4Atom::factory function within mp4atom.cpp, where MP4ItemAtom is used instead of the required MP4DataAtom. This confusion occurs when handling a crafted MP4 file...

8.8CVSS9.1AI score0.02179EPSS
Exploits0References14
RedhatCVE
RedhatCVE
added 2018/07/12 6:18 a.m.23 views

CVE-2018-13440

The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf file, as demonstrated by sfconvert...

6.5CVSS4.3AI score0.03113EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2018/07/11 3:23 p.m.77 views

USN-3712-2: libpng vulnerability

USN-3712-1 fixed a vulnerability in libpng. This update provides the corresponding update for Ubuntu 12.04 ESM. Original advisory details: Patrick Keshishian discovered that libpng incorrectly handled certain PNG files. An attacker could possibly use this to cause a denial of service...

7.5CVSS7.4AI score0.05517EPSS
Exploits0
Prion
Prion
added 2018/07/08 4:29 p.m.22 views

Null pointer dereference

The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf file, as demonstrated by sfconvert...

4.3CVSS6.8AI score0.03113EPSS
Exploits1References2Affected Software2
NVD
NVD
added 2018/07/08 4:29 p.m.17 views

CVE-2018-13440

The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf file, as demonstrated by sfconvert...

6.5CVSS6.9AI score0.03113EPSS
Exploits1References2
OSV
OSV
added 2018/07/08 4:29 p.m.3 views

DEBIAN-CVE-2018-13440

The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf file, as demonstrated by sfconvert...

6.5CVSS6.7AI score0.03113EPSS
Exploits1References1
AlpineLinux
AlpineLinux
added 2018/07/08 4:0 p.m.5 views

CVE-2018-13440

The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf file, as demonstrated by sfconvert...

6.5CVSS7AI score0.03113EPSS
Exploits1References2
CVE
CVE
added 2018/07/08 4:0 p.m.160 views

CVE-2018-13440

The vulnerability is in audiofile (Audio File Library) 0.3.6: a NULL pointer dereference in ModuleState::setup (modules/ModuleState.cpp) allows denial of service via a crafted caf file (CVE-2018-13440). Attacks require no authentication and can be network-agnostic; impact is denial of service. Pu...

6.5CVSS6.7AI score0.03113EPSS
Exploits1References2Affected Software1
UbuntuCve
UbuntuCve
added 2018/07/08 12:0 a.m.27 views

CVE-2018-13440

The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf file, as demonstrated by sfconvert...

6.5CVSS6.6AI score0.03113EPSS
Exploits1References3
OSV
OSV
added 2018/07/08 12:0 a.m.4 views

UBUNTU-CVE-2018-13440

The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf file, as demonstrated by sfconvert...

6.5CVSS6.5AI score0.03113EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2018/07/08 12:0 a.m.4 views

PT-2018-11825 · Audiofile +6 · Audio File Library +6

Name of the Vulnerable Software and Affected Versions: The audiofile Audio File Library version 0.3.6 Description: The issue is related to a NULL pointer dereference bug in the ModuleState::setup function, located in modules/ModuleState.cpp. This bug can be exploited by an attacker to cause a...

8.8CVSS5.6AI score0.04654EPSS
Exploits4References53
OSV
OSV
added 2018/06/19 9:29 p.m.2 views

DEBIAN-CVE-2018-11723

The libpffnametoidmapentryread function in libpffnametoidmap.c in libyal libpff through 2018-04-28 allows remote attackers to cause an information disclosure heap-based buffer over-read via a crafted pff file. NOTE: the vendor has disputed this as described in libyal/libpff issue 66 on GitHub...

5.5CVSS6.6AI score0.01184EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2018/01/12 12:0 a.m.4 views

PT-2019-8042 · None +2 · Libtiff +2

Name of the Vulnerable Software and Affected Versions: LibTIFF version 4.0.8 Description: The issue allows attackers to cause a denial of service due to memory consumption. It is demonstrated by files such as tif open.c, tif lzw.c, and tif aux.c. However, third parties were unable to reproduce th...

9.8CVSS6.8AI score0.25183EPSS
Exploits28References91
OSV
OSV
added 2017/10/23 1:29 a.m.1 views

CVE-2017-7123

An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact...

9.8CVSS7.4AI score0.01352EPSS
Exploits0References2
OSV
OSV
added 2017/10/23 1:29 a.m.0 views

CVE-2017-7126

An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact...

9.8CVSS7.4AI score0.02602EPSS
Exploits0References3
OSV
OSV
added 2017/10/23 1:29 a.m.1 views

CVE-2017-7124

An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact...

9.8CVSS7.4AI score0.01352EPSS
Exploits0References2
OSV
OSV
added 2017/09/30 1:29 a.m.4 views

UBUNTU-CVE-2017-14940

scanunitforsymbols in dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted ELF file...

5.5CVSS6.8AI score0.01938EPSS
Exploits0References4
CNVD
CNVD
added 2017/08/30 12:0 a.m.1 views

LibTIFF 'TIFFWriteDirectorySec()' Function Denial of Service Vulnerability

Silicon Graphics LibTIFF is a library for reading and writing TIFF Tagged Image File Format files from Silicon Graphics, USA. The library contains a number of command-line tools for processing TIFF files. A security vulnerability exists in the 'TIFFWriteDirectorySec' function in Silicon Graphics...

6.5CVSS7AI score0.02631EPSS
Exploits0References1
OSV
OSV
added 2017/08/28 9:29 p.m.2 views

DEBIAN-CVE-2017-13716

The C++ symbol demangler routine in cplus-dem.c in libiberty, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service excessive memory allocation and application crash via a crafted file, as demonstrated by a call from the Binary File Descriptor BFD library aka...

5.5CVSS5.8AI score0.01399EPSS
Exploits0References1
Rows per page
Query Builder