CVE-2020-6076

An exploitable out-of-bounds write vulnerability exists in the igcore19d.dll ICO icoread parser of the Accusoft ImageGear 19.5.0 library. A specially crafted ICO file can cause an out-of-bounds write, resulting in a remote code execution. An attacker needs to provide a malformed file to the victi...

Arbitrary Code Execution

freetype is vulnerable to arbitrary code execution. The vulnerability exists as multiple flaws were discovered in FreeType's Printer Font Binary PFB font-file format parser. If a user loaded a carefully crafted font-file with a program linked against FreeType, it could cause the application to...

CVE-2019-10895

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash. This was addressed in wiretap/netscaler.c by improving data validation...

Security update for wireshark (moderate)

openSUSE Security Update: Security update for wireshark Announcement ID: openSUSE-SU-2019:1390-1 Rating: moderate References: 1127367 1127369 1127370 1131945 Cross-References: CVE-2019-10894 CVE-2019-10895 CVE-2019-10896 CVE-2019-10899 CVE-2019-10901 CVE-2019-10903 CVE-2019-9208 CVE-2019-9209...

Fedora Update for mingw-libconfuse FEDORA-2019-9ccbbfeae1

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security fix for the ALT Linux 9 package wireshark version 3.0.1-alt1

April 10, 2019 Anton Farygin 3.0.1-alt1 - 3.0.1 - fixes: NetScaler file parser crash. CVE-2019-10895 SRVLOC dissector crash. CVE-2019-10899 IEEE 802.11 dissector infinite loop. CVE-2019-10897 GSUP dissector infinite loop. CVE-2019-10898 Rbm dissector infinite loop. CVE-2019-10900 GSS-API dissecto...

CVE-2019-10895

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash. This was addressed in wiretap/netscaler.c by improving data validation...

Input validation

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash. This was addressed in wiretap/netscaler.c by improving data validation...

CVE-2019-10895

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash. This was addressed in wiretap/netscaler.c by improving data validation...

CVE-2019-10895

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash. This was addressed in wiretap/netscaler.c by improving data validation...

UBUNTU-CVE-2019-10895

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash. This was addressed in wiretap/netscaler.c by improving data validation...

Wireshark Denial of Service Vulnerability (CNVD-2019-12177)

Wireshark formerly known as Ethereal is a suite of network packet analysis software from the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis.NetScaler file parser is one of the NetScaler file parsers. A denial of service...

CVE-2018-19008

The TextEditor 2.0 in ABB CP400 Panel Builder versions 2.0.7.05 and earlier contain a vulnerability in the file parser of the Text Editor wherein the application doesn't properly prevent the insertion of specially crafted files which could allow arbitrary code execution...

Code injection

The TextEditor 2.0 in ABB CP400 Panel Builder versions 2.0.7.05 and earlier contain a vulnerability in the file parser of the Text Editor wherein the application doesn't properly prevent the insertion of specially crafted files which could allow arbitrary code execution...

CVE-2018-19008

The TextEditor 2.0 in ABB CP400 Panel Builder versions 2.0.7.05 and earlier contain a vulnerability in the file parser of the Text Editor wherein the application doesn't properly prevent the insertion of specially crafted files which could allow arbitrary code execution...

CVE-2018-19008

The TextEditor 2.0 in ABB CP400 Panel Builder versions 2.0.7.05 and earlier contain a vulnerability in the file parser of the Text Editor wherein the application doesn't properly prevent the insertion of specially crafted files which could allow arbitrary code execution...

CVE-2018-19008

The CVE-2018-19008 issue affects ABB CP400 Panel Builder TextEditor 2.0, specifically versions 2.0.7.05 and earlier. The vulnerability lies in the TextEditor’s file parser, which fails to properly prevent insertion of specially crafted files, enabling arbitrary code execution. Impact: high for lo...

[SECURITY] Fedora 29 Update: mingw-libconfuse-3.2.2-1.fc29

libConfuse is a configuration file parser library, licensed under the terms of the ISC license, and written in C. It supports sections and lists of values strings, integers, floats, booleans or other sections, as well as some other features such as single/double-quoted strings, environment variab...

[SECURITY] Fedora 28 Update: mingw-libconfuse-3.2.2-1.fc28

libConfuse is a configuration file parser library, licensed under the terms of the ISC license, and written in C. It supports sections and lists of values strings, integers, floats, booleans or other sections, as well as some other features such as single/double-quoted strings, environment variab...

ABB CP400PB TextEditor Input Validation Vulnerability

ABB CP400PB is a set of HMI programming software from ABB Switzerland.TextEditor is one of the text editors. An input validation vulnerability exists in the file parser of TextEditor version 2.0 in ABB CP400PB 2.0.7.05 and earlier versions, which stems from the program failing to prevent the...