FreeBSD -- Missing message validation in libradius(3)

Problem Description: libradius did not perform sufficient validation of received messages. radgetattr3 did not verify that the attribute length is valid before subtracting the length of the Type and Length fields. As a result, it could return success while also providing a bogus length of SIZETMA...

FreeBSD : FreeBSD -- Missing message validation in libradius(3) (107c7a76-beaa-11eb-b87a-901b0ef719ab)

libradius did not perform sufficient validation of received messages. radgetattr3 did not verify that the attribute length is valid before subtracting the length of the Type and Length fields. As a result, it could return success while also providing a bogus length of SIZETMAX - 2 for the Value...

yubihsm-shell 输入验证错误漏洞

yubihsm-shell is a component for individual developers to interact with YubiHSM 2. The component is mostly found in applications that interact with YubiHSM 2 and is geared towards user and program level interaction. A security vulnerability exists in yubihsm-shell version 2.0.3. The vulnerability...

GO-2021-0075 Panic due to improper validation of RPC messages in github.com/ethereum/go-ethereum

Due to improper argument validation in RPC messages, a maliciously crafted message can cause a panic, leading to denial of service...

CVE-2020-24388

An issue was discovered in the sendsecuremsg function of yubihsm-shell through 2.0.2. The function does not validate the embedded length field of a message received from the device. This could lead to an oversized memcpy call that will crash the running process. This could be used by an attacker ...

CVE-2020-26868

ARC Informatique PcVue prior to version 12.0.17 is vulnerable to a denial-of-service attack due to the ability of an unauthorized user to modify information used to validate messages sent by legitimate web clients. This issue also affects third-party systems based on the Web Services Toolkit...

Out-of-bounds

HUAWEI P30 Pro versions earlier than 10.1.0.160C00E160R2P8 have an out-of-bounds read and write vulnerability. An unauthenticated attacker crafts malformed message with specific parameter and sends the message to the affected products. Due to insufficient validation of message, which may be...

CVE-2020-3495

A vulnerability in Cisco Jabber for Windows could allow an authenticated, remote attacker to execute arbitrary code. The vulnerability is due to improper validation of message contents. An attacker could exploit this vulnerability by sending specially crafted Extensible Messaging and Presence...

CVE-2020-3537

A vulnerability in Cisco Jabber for Windows software could allow an authenticated, remote attacker to gain access to sensitive information. The vulnerability is due to improper validation of message contents. An attacker could exploit this vulnerability by sending specially crafted messages that...

Input validation

A vulnerability in Cisco Jabber software could allow an authenticated, remote attacker to gain access to sensitive information. The vulnerability is due to improper validation of message contents. An attacker could exploit this vulnerability by sending specially crafted messages to a targeted...

Cisco Jabber Bug Could Let Hackers Target Windows Systems Remotely

Networking equipment maker Cisco has released a new version of its Jabber video conferencing and messaging app for Windows that includes patches for multiple vulnerabilities—which, if exploited, could allow an authenticated, remote attacker to execute arbitrary code. The flaws, which were uncover...

PT-2020-3138 · Linux +6 · Linux Kernel +6

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.7 Description: A flaw in the Linux kernel's SELinux LSM hook implementation allows for insufficient authentication of data. This issue arises because the hook incorrectly assumes that a socket buffer skb...

The vulnerability of the message validation function in symfony/framework-bundle of the Symfony software development and web application management platform lies in the lack of measures to protect website structures, allowing attackers to carry out XSS attacks.

The vulnerability of the message validation function in symfony/framework-bundle of the Symfony software development and web application management platform is related to the lack of measures to protect website structures. Exploiting this vulnerability could allow a malicious actor to execute XSS...

Improper access control

Out of bound access can occur while processing firmware event due to lack of validation of WMI message received from firmware in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure a...

CVE-2019-10601

Out of bound access can occur while processing firmware event due to lack of validation of WMI message received from firmware in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure a...

Out-of-bounds read vulnerability in multiple Huawei products (CNVD-2020-36735)

Huawei AP2000 and others are products of Huawei, China.Huawei AP2000 is a wireless access point device.Huawei IPS Module is an intrusion prevention system IPS module.NGFW Module is a next-generation firewall NGFW module. An out-of-bounds read vulnerability exists in multiple Huawei products. The...

CVE-2018-18505

An earlier fix for an Inter-process Communication IPC vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. This authentication is insufficient for channels created after the IPC process is started, leading to the...

Privilege Escalation

Firefox and Firefox ESR are vulnerable to privilege escalation attacks. This is because the authentication is insufficient for channels created after the IPC process is started which allow for a sandbox escape through IPC channels due to lack of message validation in the listener process, result ...

CVE-2018-18505

An earlier fix for an Inter-process Communication IPC vulnerability, CVE-2011-3079, added authentication to communication between IPC endpoints and server parents during IPC process creation. This authentication is insufficient for channels created after the IPC process is started, leading to the...

CVE-2018-18505

CVE-2018-18505 concerns an IPC privilege-escalation in Mozilla products where an authentication added during IPC process creation is not applied to channels created later, enabling potential sandbox escape through IPC channels. Public advisories tie this to Thunderbird and Firefox releases prior ...