1374 matches found
RDK CcspPandM module buffer overflow vulnerability (CNVD-2019-19286)
RDK is a suite of modular, portable, and customizable open source IoT software solutions from the RDK Management community. ccspPandM is one of the modules used to implement the core configuration and management functions of the device. A buffer overflow vulnerability exists in the cosadhcpv4dml....
WLAN Buffer Overflow Vulnerability in Multiple Qualcomm Products (CNVD-2019-18598)
Qualcomm MDM9206 and others are products of Qualcomm Incorporated.MDM9206 is a central processing unit CPU product.MDM9607 is a central processing unit CPU product.MDM9640 is a central processing unit CPU product.WLAN is one of the wireless LAN components. A buffer overflow vulnerability exists i...
The vulnerability of the DHCP server service for Windows Server allows a perpetrator to execute arbitrary code.
The vulnerability of the DHCP server service for Windows operating systems arises from an operation that goes beyond the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially crafted packet...
Intel AMT Subsystem Buffer Overflow Vulnerability
Intel Active Management Technology AMT is a set of hardware-based computer remote active management technology software from Intel Intel. A buffer overflow vulnerability exists in a subsystem in Intel AMT. The vulnerability arises from a networked system or product performing operations on memory...
libssh2: Integer overflow in user authenticate keyboard interactive allows out-of-bounds writes
A flaw was found in libssh2. A server could send a multiple keyboard interactive response messages, whose total length are greater than the unsigned char max characters. This value is used as an index to copy memory causing in an out of bounds memory write error. The highest threat from this...
CVE-2018-1000810
A buffer overflow vulnerability was discovered in Rust that affects the str::repeat function in the standard library. An attacker could abuse this flaw by controlling the arguments given to str::repeat and can cause a Rust program to overflow a buffer in memory, potentially leading to a crash or...
Multiple Apple Products WebKit Component Out-of-Bounds Read Vulnerability (CNVD-2019-16414)
Apple iOS is an operating system developed for mobile devices. apple tvOS is an operating system for smart TVs. apple macOS Mojave is a specialized operating system developed for Mac computers. webKit is one of the web browser WebKit is a Web browser engine component. An out-of-bounds read...
Cross-site Request Forgery (CSRF)
Samba is an open-source implementation of the Server Message Block SMB or Common Internet File System CIFS protocol, which allows PC-compatible machines to share files, printers, and other information. It was discovered that the Samba Web Administration Tool SWAT did not protect against being...
Fedora 30 : libssh2 (2019-70a9d4f970)
This update addresses various overflow conditions that could result in possible memory read/write out of bounds errors or zero byte allocations when connected to a malicious server. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update...
CVE-2019-11493
VeryPDF 4.1 has a Memory Overflow leading to Code Execution because pdfocx!CxImageTIF::operator in pdfocx.ocx used by pdfeditor.exe and pdfcmd.exe is mishandled...
CVE-2019-11493
VeryPDF 4.1 has a Memory Overflow leading to Code Execution because pdfocx!CxImageTIF::operator in pdfocx.ocx used by pdfeditor.exe and pdfcmd.exe is mishandled...
Design/Logic Flaw
VeryPDF 4.1 has a Memory Overflow leading to Code Execution because pdfocx!CxImageTIF::operator in pdfocx.ocx used by pdfeditor.exe and pdfcmd.exe is mishandled...
CVE-2019-11493
VeryPDF 4.1 has a Memory Overflow leading to Code Execution because pdfocx!CxImageTIF::operator in pdfocx.ocx used by pdfeditor.exe and pdfcmd.exe is mishandled...
CVE-2019-11493
VeryPDF 4.1 is affected by a memory overflow in pdfocx.ocx (CxImageTIF::operator) used by pdfeditor.exe and pdfcmd.exe, enabling code execution. Root cause: mishandling in pdfocx.ocx leading to overflow. Affected software/parts are confirmed by NVD entry CVE-2019-11493 and related records; exploi...
CVE-2019-9136
DaviewIndy 8.98.7 and earlier versions have a Heap-based overflow vulnerability, triggered when the user opens a malformed JPEG2000 format file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution...
The vulnerability of Samba software, related to overflow of dynamic memory buffers, allows a hacker to execute arbitrary code.
The vulnerability of Samba software is related to the overflow of dynamic memory buffers when the file name in the directory is too long. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Libmspack library and the CAB-file decompression utility SabExtract, which allows a hacker to execute arbitrary code or cause a service failure.
The vulnerability of the Libmspack library mspack/cab.h and the CAB-file decompression utilities provided by SabExtract are related to memory buffer overflow attacks. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause system failures remotely...
PT-2023-1054
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free flaw was found in the Linux kernel’s nouveau driver, related to how a user triggers a memory overflow that causes the nvkm vma tail function to fail. This issue allows a...
The vulnerability of the _bfd_generic_read_minisymbols function in the GNU Binutils set of system utilities, related to memory overflow, allows an attacker to trigger a service failure.
The vulnerability of the bfdgenericreadminisymbols function in the descriptor library BFD, which is included in the GNU Binutils package, is related to a memory leak. Exploiting this vulnerability could allow an attacker to cause a service failure using a specially crafted ELF file...
Marvell Avastar wireless SoCs have multiple vulnerabilities
Overview Some Marvell Avastar wireless system on chip SoC models have multiple vulnerabilities, including a block pool overflow during Wi-Fi network scan. Description A presentation at the ZeroNights 2018 conference describes multiple security issues with Marvell Avastar SoCs models 88W8787,...