CVE-2017-7742

In libsndfile before 1.0.28, an error in the "flacbuffercopy" function flac.c can be exploited to cause a segmentation violation with read memory access via a specially crafted FLAC file during a resample attempt, a similar issue to CVE-2017-7585...

The vulnerability of the Windows operating system, which allows a perpetrator to obtain confidential information

The vulnerability of the Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor, acting remotely, to obtain confidential information from the process’s memory through a specially crafted web page...

CVE-2017-0147

The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to obtain sensitive information from process memor...

Android get_user/put_user Exploit

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rex' class MetasploitModule "Android getuser/putuser Exploit", 'Description' = %q This module exploits a missing check in the getuser and...

CVE-2016-6380

The DNS forwarder in Cisco IOS 12.0 through 12.4 and 15.0 through 15.6 and IOS XE 3.1 through 3.15 allows remote attackers to obtain sensitive information from process memory or cause a denial of service data corruption or device reload via a crafted DNS response, aka Bug ID CSCup90532...

Information Disclosure Vulnerabilities in Multiple Cisco Products

Cisco IOS, etc. are operating systems developed by the U.S. company Cisco Cisco. An information disclosure vulnerability exists in the server IKEv1 implementation in several Cisco products. A remote attacker can exploit this vulnerability by sending a Security Association negotiation request to...

CVE-2016-4648

Audio in Apple OS X before 10.11.6 allows local users to obtain sensitive kernel memory-layout information or cause a denial of service out-of-bounds read via unspecified vectors...

PHP < 5.5.31, 5.6.x < 5.6.17, 7.x < 7.0.2 Out of Bounds Read Memory Corruption Vulnerability (Mar 2016) - Linux

PHP is prone to an out-of-bounds read memory corruption vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; ...

openSUSE Security Update : samba / ldb / talloc / etc (openSUSE-2015-945)

"This update for ldb, samba, talloc, tdb, tevent fixes the following issues : ldb was updated to 1.1.24. + Fix ldap \00 search expression attack dos; cve-2015-3223; bso11325 + Fix remote read memory exploit in ldb; cve-2015-5330; bso11599 + Move ldbunpackdata into ldbmodule.h for testing + Fix...

Security update for ldb, samba, talloc, tdb, tevent (important)

This update for ldb, samba, talloc, tdb, tevent fixes the following security issues and bugs: The Samba LDB was updated to version 1.1.24: - Fix ldap \00 search expression attack dos; CVE-2015-3223; bso11325 - Fix remote read memory exploit in ldb; CVE-2015-5330; bso11599 - Move ldbunpackdata int...

DEBIAN-CVE-2015-2059

The stringpreputf8toucs4 function in libin before 1.31, as used in jabberd2, allows context-dependent attackers to read system memory and possibly have other unspecified impact via invalid UTF-8 characters in a string, which triggers an out-of-bounds read...

DEBIAN-CVE-2014-3534

arch/s390/kernel/ptrace.c in the Linux kernel before 3.15.8 on the s390 platform does not properly restrict address-space control operations in PTRACEPOKEUSRAREA requests, which allows local users to obtain read and write access to kernel memory locations, and consequently gain privileges, via a...

UBUNTU-CVE-2014-3714

The ARM image loading functionality in Xen 4.4.x does not properly validate kernel length, which allows local users to read system memory or cause a denial of service crash via a crafted 32-bit ARM guest kernel in an image, which triggers a buffer overflow...

Fedora 16 : xen-4.1.3-2.fc16 (2012-13443)

a malicious 64-bit PV guest can crash the dom0 XSA-12, CVE-2012-3494 854585 a malicious crash might be able to crash the dom0 or escalate privileges XSA-13, CVE-2012-3495 854589 a malicious PV guest can crash the dom0 XSA-14, CVE-2012-3496 854590 a malicious HVM guest can crash the dom0 and might...

X.org: ProcRenderAddGlyphs input sanitization flaw

The ProcRenderAddGlyphs function in the Render extension render/render.c in X.Org xserver 1.7.7 and earlier allows local users to read arbitrary memory and possibly cause a denial of service server crash via unspecified vectors related to an "input sanitization flaw."...

PT-2007-5083 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.22 Description: The issue concerns the eHCA driver in the Linux kernel, specifically when running on PowerPC. It does not properly map userspace resources, allowing local users to read portions of physical...

DEBIAN-CVE-2004-2680

modpython libapache2-mod-python 3.1.4 and earlier does not properly handle when output filters process more than 16384 bytes, which can cause filter.read to return portions of previously freed memory...

Mollensoft ftp Server ver 3.6 Buffer overflow

Mollensoft ftp Server ver 3.6 Buffer overflow ----------------------------------------------------- EOS Advisory - http://www.eos-india.net ----------------------------------------------------- Vendor : http://www.mollensoft.com Version : 3.6 latest Vulnerability : Buffer Overflow About Product...