Lucene search
K

340 matches found

NVD
NVD
added 2017/08/18 6:29 p.m.18 views

CVE-2014-9411

In all Qualcomm products with Android releases from CAF using the Linux kernel, the use of an out-of-range pointer offset is potentially possible in rollback protection...

10CVSS9AI score0.00836EPSS
Exploits0References2
CVE
CVE
added 2017/08/18 6:0 p.m.52 views

CVE-2016-10344

CVE-2016-10344 affects Qualcomm components in Android CAF builds using the Linux kernel, where an out-of-range pointer offset in LTE could be exploited. The entry lists a high-severity impact (CVSS v3 base score 9.8, CRITICAL) with attack vector Network and no user interaction, but the provided d...

10CVSS7.8AI score0.00836EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/08/18 6:0 p.m.23 views

CVE-2014-9411

In all Qualcomm products with Android releases from CAF using the Linux kernel, the use of an out-of-range pointer offset is potentially possible in rollback protection...

8.5AI score0.00836EPSS
Exploits0References2
Prion
Prion
added 2017/06/06 2:29 p.m.18 views

Null pointer dereference

In WCDMA in all Android releases from CAF using the Linux kernel, a Use of Out-of-range Pointer Offset vulnerability could potentially exist...

9.3CVSS7AI score0.0046EPSS
Exploits0References2
NVD
NVD
added 2017/06/06 2:29 p.m.18 views

CVE-2014-9929

In WCDMA in all Android releases from CAF using the Linux kernel, a Use of Out-of-range Pointer Offset vulnerability could potentially exist...

9.3CVSS7.3AI score0.0046EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/06/06 2:0 p.m.22 views

CVE-2014-9929

In WCDMA in all Android releases from CAF using the Linux kernel, a Use of Out-of-range Pointer Offset vulnerability could potentially exist...

7.3AI score0.0046EPSS
Exploits0References2
CVE
CVE
added 2017/06/06 2:0 p.m.60 views

CVE-2014-9929

CVE-2014-9929 refers to a Use of Out-of-range Pointer Offset vulnerability in WCDMA for Android CAF builds using the Linux kernel. Public entries describe the root cause as an out-of-range pointer offset (with at least one linked source labeling the issue as a Null pointer dereference). The vulne...

9.3CVSS7.2AI score0.0046EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/05/16 2:0 p.m.55 views

CVE-2015-9002

This CVE concerns Google Android TrustZone, where a DRM routine in the TrustZone DRM path can suffer an out-of-range pointer offset (integer overflow) vulnerability. Connected CNVD entry explicitly states an integer overflow in the TrustZone DRM routine exists on Android, and that an attacker cou...

9.3CVSS7.4AI score0.00578EPSS
Exploits0References3Affected Software1
android
android
added 2017/05/01 12:0 a.m.32 views

CVE-2014-9929

In WCDMA in all Android releases from CAF using the Linux kernel, a Use of Out-of-range Pointer Offset vulnerability could potentially exist...

9.3CVSS8AI score0.0046EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/12/22 12:0 a.m.35 views

Adobe Shockwave Player <= 11.5.7.609 (APSB10-20) (Mac OS X)

The remote Mac OS X host contains a version of Adobe Shockwave Player that is 11.5.7.609 or earlier. It is, therefore, affected by multiple vulnerabilities : - Multiple memory corruption issues exist that allow arbitrary code execution. CVE-2010-2863, CVE-2010-2864, CVE-2010-2866, CVE-2010-2869,...

10CVSS6.2AI score0.13014EPSS
Exploits0References21
VulnCheck KEV
VulnCheck KEV
added 2012/01/01 12:0 a.m.5 views

VulnCheck KEV: CVE-2009-3129

Microsoft Office Excel allows remote attackers to execute arbitrary code via a spreadsheet with a FEATHEADER record containing an invalid cbHdrData size element that affects a pointer offset...

9.3CVSS6.4AI score0.85731EPSS
Exploits10References1
Prion
Prion
added 2011/02/10 4:0 p.m.23 views

Memory corruption

The IML32 module in Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service memory corruption via a Director movie containing a GIF image with a crafted global color table size value, which causes an out-of-range pointer offset...

9.3CVSS7.9AI score0.04122EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2011/02/10 3:0 p.m.22 views

CVE-2010-4189

The IML32 module in Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service memory corruption via a Director movie containing a GIF image with a crafted global color table size value, which causes an out-of-range pointer offset...

7.4AI score0.04122EPSS
Exploits0References6
VulnCheck KEV
VulnCheck KEV
added 2010/10/21 12:0 a.m.3 views

VulnCheck KEV: CVE-2010-3653

The Director module dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a Director movie with a crafted rcsL chunk containing a field whose value is used as a pointer offset, as exploited...

9.3CVSS6.2AI score0.74626EPSS
Exploits9References1
Exploit DB
Exploit DB
added 2010/09/25 12:0 a.m.40 views

Microsoft Excel - Malformed FEATHEADER Record (MS09-067) (Metasploit)

$Id: ms09067excelfeatheader.rb 10477 2010-09-25 11:59:02Z mc $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

7.4AI score
Exploits0
NVD
NVD
added 2010/08/26 9:0 p.m.17 views

CVE-2010-2867

DIRAPIX.dll in Adobe Shockwave Player before 11.5.8.612 does not properly handle a certain return value associated with the rcsL chunk in a Director movie, which allows remote attackers to cause a denial of service heap memory corruption or execute arbitrary code via a crafted movie, related to a...

9.3CVSS7.5AI score0.05279EPSS
Exploits0References6
Prion
Prion
added 2010/08/26 9:0 p.m.24 views

Null pointer dereference

DIRAPIX.dll in Adobe Shockwave Player before 11.5.8.612 does not properly handle a certain return value associated with the rcsL chunk in a Director movie, which allows remote attackers to cause a denial of service heap memory corruption or execute arbitrary code via a crafted movie, related to a...

9.3CVSS8.1AI score0.05279EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2010/08/25 12:0 a.m.32 views

Shockwave Player < 11.5.8.612

The remote Windows host contains a version of Adobe's Shockwave Player that is earlier than 11.5.8.612. Such versions are potentially affected by the following issues : - Multiple memory corruption issues exist that could lead to arbitrary code execution. CVE-2010-2863, CVE-2010-2864,...

10CVSS6.2AI score0.13014EPSS
Exploits0References21
Metasploit
Metasploit
added 2010/02/12 8:52 p.m.24 views

MS09-067 Microsoft Excel Malformed FEATHEADER Record Vulnerability

This module exploits a vulnerability in the handling of the FEATHEADER record by Microsoft Excel. Revisions of Office XP and later prior to the release of the MS09-067 bulletin are vulnerable. When processing a FEATHEADER Shared Feature record, Microsoft used a data structure from the file to...

7.5AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2009/11/10 12:0 a.m.36 views

Microsoft Excel Shared Feature Header Pointer Offset Memory Corruption Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Excel. User interaction is required to exploit this vulnerability in that the target must open a malicious spreadsheet. The specific flaw exists in the handling of Shared Feature...

9.3CVSS2.5AI score0.85731EPSS
Exploits10References1
Rows per page
Query Builder