Lucene search
+L

92 matches found

Fedora
Fedora
added 2018/04/11 7:8 p.m.32 views

[SECURITY] Fedora 26 Update: libofx-0.9.10-5.fc26

This is the LibOFX library. It is a API designed to allow applications to very easily support OFX command responses, usually provided by financial institutions. See http://www.ofx.net/ofx/default.asp for details and specification...

8.8CVSS1AI score0.02393EPSS
Exploits4
Fedora
Fedora
added 2018/04/11 4:32 p.m.35 views

[SECURITY] Fedora 27 Update: libofx-0.9.10-5.fc27

This is the LibOFX library. It is a API designed to allow applications to very easily support OFX command responses, usually provided by financial institutions. See http://www.ofx.net/ofx/default.asp for details and specification...

8.8CVSS1AI score0.02393EPSS
Exploits4
Fedora
Fedora
added 2018/04/07 10:16 p.m.30 views

[SECURITY] Fedora 28 Update: libofx-0.9.10-6.fc28

This is the LibOFX library. It is a API designed to allow applications to very easily support OFX command responses, usually provided by financial institutions. See http://www.ofx.net/ofx/default.asp for details and specification...

8.8CVSS1AI score0.02393EPSS
Exploits4
ArchLinux
ArchLinux
added 2017/12/02 12:0 a.m.26 views

[ASA-201712-3] libofx: arbitrary code execution

Arch Linux Security Advisory ASA-201712-3 ========================================= Severity: Medium Date : 2017-12-02 CVE-ID : CVE-2017-2816 Package : libofx Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-534 Summary ======= The package libofx before versi...

8.8CVSS1.6AI score0.02393EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2017/11/27 12:0 a.m.40 views

Debian DLA-1192-1 : libofx security update

CVE-2017-2816 An exploitable buffer overflow vulnerability exists in the tag parsing functionality of LibOFX 0.9.11. A specially crafted OFX file can cause a write out of bounds resulting in a buffer overflow on the stack. An attacker can construct a malicious OFX file to trigger this...

8.8CVSS7.4AI score0.02393EPSS
Exploits2References4
Debian
Debian
added 2017/11/26 3:58 p.m.43 views

[SECURITY] [DLA 1192-1] libofx security update

Package : libofx Version : 1:0.9.4-2.1+deb7u1 CVE ID : CVE-2017-2816 CVE-2017-14731 CVE-2017-2816 An exploitable buffer overflow vulnerability exists in the tag parsing functionality of LibOFX 0.9.11. A specially crafted OFX file can cause a write out of bounds resulting in a buffer overflow on t...

8.8CVSS8.1AI score0.02393EPSS
Exploits2
OSV
OSV
added 2017/11/26 12:0 a.m.15 views

DLA-1192-1 libofx - security update

Bulletin has no description...

8.8CVSS7.3AI score0.02393EPSS
Exploits2
seebug.org
seebug.org
added 2017/09/28 12:0 a.m.27 views

LibOFX Tag Parsing Code Execution Vulnerability

Summary An exploitable buffer overflow vulnerability exists in the tag parsing functionality of LibOFX 0.9.11. A specially crafted OFX file can cause a write out of bounds resulting in a buffer overflow on the stack. An attacker can construct a malicious OFX file to trigger this vulnerability...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/09/28 12:0 a.m.30 views

FreeBSD : libofx -- exploitable buffer overflow (58fafead-cd13-472f-a9bd-d0173ba1b04c)

Talos developers report : An exploitable buffer overflow vulnerability exists in the tag parsing functionality of LibOFX 0.9.11. A specially crafted OFX file can cause a write out of bounds resulting in a buffer overflow on the stack. An attacker can construct a malicious OFX file to trigger this...

8.8CVSS7.5AI score0.02393EPSS
Exploits1References4
CNVD
CNVD
added 2017/09/26 12:0 a.m.4 views

LibOFX Denial of Service Vulnerability

LibOFX is a library that allows programs to support OFX financial data bi-directional exchange command responses. A security vulnerability exists in the ofxprocfile of the ofxpreproc.cpp file in LibOFX version 0.9.12. A remote attacker can exploit this vulnerability with the help of a specially...

6.5CVSS7AI score0.01264EPSS
Exploits1References1
NVD
NVD
added 2017/09/25 9:29 p.m.13 views

CVE-2017-14731

ofxprocfile in ofxpreproc.cpp in LibOFX 0.9.12 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted file, as demonstrated by an ofxdump call...

6.5CVSS6.5AI score0.01264EPSS
Exploits1References3
OSV
OSV
added 2017/09/25 9:29 p.m.14 views

CVE-2017-14731

ofxprocfile in ofxpreproc.cpp in LibOFX 0.9.12 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted file, as demonstrated by an ofxdump call...

6.5CVSS7.2AI score
Exploits0References3
OSV
OSV
added 2017/09/25 9:29 p.m.2 views

DEBIAN-CVE-2017-14731

ofxprocfile in ofxpreproc.cpp in LibOFX 0.9.12 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted file, as demonstrated by an ofxdump call...

6.5CVSS6.9AI score0.01264EPSS
Exploits1References1
Prion
Prion
added 2017/09/25 9:29 p.m.14 views

Heap overflow

ofxprocfile in ofxpreproc.cpp in LibOFX 0.9.12 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted file, as demonstrated by an ofxdump call...

4.3CVSS6.3AI score0.01264EPSS
Exploits1References3Affected Software1
UbuntuCve
UbuntuCve
added 2017/09/25 9:29 p.m.20 views

CVE-2017-14731

ofxprocfile in ofxpreproc.cpp in LibOFX 0.9.12 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted file, as demonstrated by an ofxdump call...

6.5CVSS7.1AI score0.01264EPSS
Exploits1References2
Cvelist
Cvelist
added 2017/09/25 9:0 p.m.45 views

CVE-2017-14731

ofxprocfile in ofxpreproc.cpp in LibOFX 0.9.12 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted file, as demonstrated by an ofxdump call...

7AI score0.01264EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2017/09/25 9:0 p.m.35 views

CVE-2017-14731

ofxprocfile in ofxpreproc.cpp in LibOFX 0.9.12 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted file, as demonstrated by an ofxdump call...

6.5CVSS7.2AI score0.01264EPSS
Exploits1
CVE
CVE
added 2017/09/25 9:0 p.m.68 views

CVE-2017-14731

CVE-2017-14731 affects LibOFX up to 0.9.12, where ofx_proc_file in ofx_preproc.cpp can be exploited by a crafted OFX file to cause a denial of service via a heap-based buffer over-read and application crash. Public advisories (Arch Linux ASA-201805-19, Gentoo GLSA-201908-26, SUSE/Fedora updates) ...

6.5CVSS6.8AI score0.01264EPSS
Exploits1References3Affected Software1
CNVD
CNVD
added 2017/09/14 12:0 a.m.6 views

LibOFX Buffer Overflow Vulnerability

LibOFX is a library that allows programs to support OFX financial data bi-directional exchange command responses. A buffer overflow vulnerability exists in the label parsing feature in LibOFX version 0.9.11. An attacker can exploit this vulnerability to execute code or cause a denial of service...

8.8CVSS7.7AI score0.02393EPSS
Exploits1References1
Prion
Prion
added 2017/09/13 6:29 p.m.18 views

Buffer overflow

An exploitable buffer overflow vulnerability exists in the tag parsing functionality of LibOFX 0.9.11. A specially crafted OFX file can cause a write out of bounds resulting in a buffer overflow on the stack. An attacker can construct a malicious OFX file to trigger this vulnerability...

6.8CVSS8.2AI score0.02393EPSS
Exploits1References4Affected Software2
Rows per page
Query Builder