948 matches found
Null pointer dereference
An Untrusted Pointer Dereference issue was discovered in Advantech WebAccess versions prior to 8.3. There are multiple vulnerabilities that may allow an attacker to cause the program to use an invalid memory address, resulting in a program crash...
Input validation
An Improper Input Validation issue was discovered in Advantech WebAccess versions prior to 8.3. WebAccess allows some inputs that may cause the program to crash...
CVE-2017-16728
An Untrusted Pointer Dereference issue was discovered in Advantech WebAccess versions prior to 8.3. There are multiple vulnerabilities that may allow an attacker to cause the program to use an invalid memory address, resulting in a program crash...
CVE-2017-16728
An Untrusted Pointer Dereference issue was discovered in Advantech WebAccess versions prior to 8.3. There are multiple vulnerabilities that may allow an attacker to cause the program to use an invalid memory address, resulting in a program crash...
Advantech WebAccess Input Validation Vulnerability
Advantech WebAccess is a set of HMI/SCADA software from Advantech based on browser architecture. The software supports dynamic graphic display and real-time data control, and provides remote control and management of automation equipment. An input validation vulnerability exists in versions of...
MGASA-2018-0046 Updated binutils packages fix security vulnerability
Exploitable buffer overflow CVE-2016-2226. Invalid write due to a use-after-free to array btypevec CVE-2016-4487. Invalid write due to a use-after-free to array ktypevec CVE-2016-4488. Invalid write due to integer overflow CVE-2016-4489. Write access violation CVE-2016-4490. Write access violatio...
Exim MTA BDAT Denial Of Service (CVE-2017-16944)
A denial of service vulnerability exists in Exim message transfer agent. The vulnerability is due to improper pointer resetting. A remote attacker can exploit this vulnerability by crafting a sequence of BDAT commands. Successful exploitation can lead to program crash on the effected system...
Exim 4.89 Denial Of Service
While parsing BDAT data header, exim still scans for '.' and consider it the end of mail. https://github.com/Exim/exim/blob/master/src/src/receive.cL1867 Exim goes into an incorrect state after this message is sent because the function pointer receivegetc is not reset. If the following command is...
Exim 4.89 - BDAT Denial of Service Exploit
Exploit for multiple platform in category dos / poc While parsing BDAT data header, exim still scans for '.' and consider it the end of mail. https://github.com/Exim/exim/blob/master/src/src/receive.cL1867 Exim goes into an incorrect state after this message is sent because the function pointer...
Exim 4.89 - BDAT Denial of Service
Exim 4.89 - BDAT Denial of Service While parsing BDAT data header, exim still scans for '.' and consider it the end of mail. https://github.com/Exim/exim/blob/master/src/src/receive.cL1867 Exim goes into an incorrect state after this message is sent because the function pointer receivegetc is not...
Exim 4.89 - 'BDAT' Denial of Service
While parsing BDAT data header, exim still scans for '.' and consider it the end of mail. https://github.com/Exim/exim/blob/master/src/src/receive.cL1867 Exim goes into an incorrect state after this message is sent because the function pointer receivegetc is not reset. If the following command is...
FreeRDP Denial of Service Vulnerability
FreeRDP is a free, open source implementation of the Remote Desktop Protocol RDP developed by the FreeRDP team. A denial of service vulnerability exists in the challenge packet handling process in FreeRDP version 2.0.0-beta1+android11. An attacker can exploit this vulnerability to cause a denial ...
Denial of Service Vulnerability in PhotoPad's Handling of BMP Files
PhotoPad is a photo editor. A denial of service vulnerability exists in PhotoPad's handling of BMP files. An attacker can exploit the vulnerability to construct a malformed BMP image and cause the program to crash...
Memory Corruption Vulnerability in Eggplant Beauty Photo Processing BMP Format Files
Eggflower Beauty Photo is a photo manipulation program. A memory corruption vulnerability exists in Eggflower Beauty Photo's handling of BMP format files. This allows attackers to cause the program to crash by constructing malformed BMP images...
CVE-2017-9047
CVE-2017-9047: libxml2 contains a stack-based buffer overflow in xmlSnprintfElementContent (valid.c) when dumping element content definitions; the check uses the pre-update length, allowing writes beyond the buffer and potentially crashing programs (e.g., PHP). The provided documents describe the...
Memory misreference vulnerability in multiple Mozilla products (CNVD-2017-07057)
Mozilla Firefox, Firefox ESR and Thunderbird are all developed by the Mozilla Foundation.Firefox is an open source web browser, Firefox ESR is an extended support version of Firefox.Thunderbird is a standalone email client from the Mozilla Thunderbird is a separate email client from Mozilla...
CVE-2017-8397
The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 1 and an invalid write of size 1 during processing of a corrupt binary containing relocs with negative addresses. This vulnerability causes programs that conduct an...
CVE-2017-8398
dwarf.c in GNU Binutils 2.28 is vulnerable to an invalid read of size 1 during dumping of debug information from a corrupt binary. This vulnerability causes programs that conduct an analysis of binary programs, such as objdump and readelf, to crash...
CVE-2017-8396
The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 1 because the existing reloc offset range tests didn't catch small negative offsets less than the size of the reloc field. This vulnerability causes programs that condu...
CVE-2017-8397
The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 1 and an invalid write of size 1 during processing of a corrupt binary containing relocs with negative addresses. This vulnerability causes programs that conduct an...