8491 matches found
CVE-2021-30145
CVE-2021-30145 describes a format string vulnerability in mpv up to version 0.33.0 that could enable code execution when a user opens a crafted m3u playlist file. Multiple sources (including NVD/NVD list and Gentoo/OpenSUSE advisories) corroborate the impact and advise upgrading mpv to a fixed re...
PT-2021-6514 · Tcl +3 · Tcl +3
Name of the Vulnerable Software and Affected Versions: Tcl version 8.6.11 Description: A format string vulnerability in the nmakehlp.c component of the Tcl programming language may allow code execution via a crafted file. This issue is related to insufficient processing of format strings, which...
Mozilla Rust Formatting String Error Vulnerability
Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A format string error vulnerability exists in the standard library in versions of Rust prior to 1.52.0, which stems from the fact that if the length of a borrowed string is changed after checking it, it could...
libpano13 -- arbitrary memory access through format string vulnerability
libpano13 developers reports: Fix crash and security issue caused by malformed filename prefix...
Denial Of Service (DoS)
mpv is vulnerable to denial of service. An attacker is able to crash the application through a buffer overflow by specifying a printf format string which is not verified...
Security Bulletin: wscanhw and wscansw vulnerabilities in scanner component of IBM License Metric Tool v9, v7.5, 7.2.2, IBM Endpoint Manger for Software Use Analysis v9 and IBM Tivoli Asset Discovery for Distributed v7.5, v7.2.2
Summary CIT scanner component contains format string vulnerability in wscanhw executable and stack overflow vulnerability in wscansw executable. Successful exploitation of the vulnerabilities allows for scanner process manipulation, and possibly crashing the process. Vulnerability Details CVEID:...
Fedora 33 : libpano13 (2021-67cbea4608)
The remote Fedora 33 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-67cbea4608 advisory. - Format string vulnerability in panoFileOutputNamesCreate in libpano13 2.9.20rc2+dfsg-3 and earlier can lead to read and write arbitrary memory...
CTF-All-In-One
This is a comprehensive guide to CTF Capture The Flag competitions, specifically focusing on the Pwn binary exploitation aspect. The book is written by Yang Chao, a member of L-Team, and is intended for beginners. It covers the basics of binary exploitation, including memory management, buffer...
Debian DLA-2624-1 : libpano13 security update
Format string vulnerability in panoFileOutputNamesCreate in libpano13 2.9.20rc2+dfsg-3 and earlier can lead to read and write arbitrary memory values. For Debian 9 stretch, this problem has been fixed in version 2.9.19+dfsg-2+deb9u1. We recommend that you upgrade your libpano13 packages. For the...
Rust 格式化字符串错误漏洞
Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A format string error vulnerability exists in the standard library in versions of Rust prior to 1.52.0, which stems from the fact that if the length of a borrowed string is changed after checking it, it could...
Debian: Security Advisory (DLA-2624-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2624-1] libpano13 security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2624-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta April 12, 2021 https://wiki.debian.org/LTS -...
CVE-2021-20307
Format string vulnerability in panoFileOutputNamesCreate in libpano13 2.9.20rc2+dfsg-3 and earlier can lead to read and write arbitrary memory values...
DEBIAN-CVE-2021-20307
Format string vulnerability in panoFileOutputNamesCreate in libpano13 2.9.20rc2+dfsg-3 and earlier can lead to read and write arbitrary memory values...
UBUNTU-CVE-2021-20307
Format string vulnerability in panoFileOutputNamesCreate in libpano13 2.9.20rc2+dfsg-3 and earlier can lead to read and write arbitrary memory values...
Format string
Format string vulnerability in panoFileOutputNamesCreate in libpano13 2.9.20rc2+dfsg-3 and earlier can lead to read and write arbitrary memory values...
CVE-2021-20307
CVE-2021-20307 affects libpano13, specifically the panoFileOutputNamesCreate() formatter path in versions up to 2.9.20 (rc2 and earlier). The vulnerability is a format string issue that can lead to reading and writing arbitrary memory values, with potential for remote memory disclosure and, per t...
CVE-2021-20307
Format string vulnerability in panoFileOutputNamesCreate in libpano13 2.9.20rc2+dfsg-3 and earlier can lead to read and write arbitrary memory values...
lianhaidong libpano13 格式化字符串错误漏洞
lianhaidong libpano13 is a lianhaidong open source application. A pano13 library that is part of Helmut's Panorama tool. libpano13 2.9.20rc2+dfsg-3 and earlier A format string error vulnerability exists, which results in reading or writing arbitrary memory values...
Zeratool
This is an offensive tool for CTF Capture The Flag problems. It is designed to automatically generate exploits and remotely capture flags for exploitable CTF problems. The tool, called Zeratool, uses the angr binary analysis framework to concolically analyze binaries by hooking printf and looking...