166 matches found
CVE-2015-8789
The CVE-2015-8789 issue affects libebml (EbmlMaster::Read) prior to 1.3.3. A use-after-free condition occurs when parsing a deeply nested EBML element with infinite size, which can lead to remote code execution if a malicious document is provided. Public advisories (Debian DSA-3538-1) describe th...
CVE-2015-8789
Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" followed by another element of an upper level in an EBML document...
CVE-2015-5259
Integer overflow in the readstring function in libsvnrasvn/marshal.c in Apache Subversion 1.9.x before 1.9.3 allows remote attackers to execute arbitrary code via an svn:// protocol string, which triggers a heap-based buffer overflow and an out-of-bounds read...
CVE-2015-7698
icewind1991 SMB before 1.0.3 allows remote authenticated users to execute arbitrary SMB commands via shell metacharacters in the user argument in the 1 listShares function in Server.php or the 2 connect or 3 read function in Share.php...
Command injection
icewind1991 SMB before 1.0.3 allows remote authenticated users to execute arbitrary SMB commands via shell metacharacters in the user argument in the 1 listShares function in Server.php or the 2 connect or 3 read function in Share.php...
DEBIAN-CVE-2014-8145
Multiple heap-based buffer overflows in Sound eXchange SoX 14.4.1 and earlier allow remote attackers to have unspecified impact via a crafted WAV file to the 1 startread or 2 AdpcmReadBlock function...
Mozilla: Buffer overflow while parsing media content (MFSA 2014-88)
Stack-based buffer overflow in the mozilla::FileBlockCache::Read function in Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, Thunderbird before 31.3, and SeaMonkey before 2.31 allows remote attackers to execute arbitrary code via crafted media content...
UBUNTU-CVE-2014-1593
Stack-based buffer overflow in the mozilla::FileBlockCache::Read function in Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, Thunderbird before 31.3, and SeaMonkey before 2.31 allows remote attackers to execute arbitrary code via crafted media content...
CVE-2014-1746
The InMemoryUrlProtocol::Read function in media/filters/inmemoryurlprotocol.cc in Google Chrome before 35.0.1916.114 relies on an insufficiently large integer data type, which allows remote attackers to cause a denial of service out-of-bounds read via vectors that trigger use of a large buffer...
UBUNTU-CVE-2014-1746
The InMemoryUrlProtocol::Read function in media/filters/inmemoryurlprotocol.cc in Google Chrome before 35.0.1916.114 relies on an insufficiently large integer data type, which allows remote attackers to cause a denial of service out-of-bounds read via vectors that trigger use of a large buffer...
SCADA DNP3 read function code
...
DEBIAN-CVE-2012-3456
Heap-based buffer overflow in the read function in filters/words/msword-odf/wv2/src/styles.cpp in the Microsoft import filter in Calligra 2.4.3 and earlier allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted ODF style in an ODF...
PT-2012-4728 · Kde · Office
Name of the Vulnerable Software and Affected Versions: KOffice versions 2.3.3 and earlier Description: A heap-based buffer overflow issue exists in the read function in filters/words/msword-odf/wv2/src/styles.cpp, which is part of the Microsoft import filter in KOffice. This issue can be triggere...
CVE-2010-0663
The ParamTraits::Read function in common/commonparamtraits.cc in Google Chrome before 4.0.249.78 does not initialize the memory locations that will hold bitmap data, which might allow remote attackers to obtain potentially sensitive information from process memory by providing insufficient data,...
CVE-2010-0663
The ParamTraits::Read function in common/commonparamtraits.cc in Google Chrome before 4.0.249.78 does not initialize the memory locations that will hold bitmap data, which might allow remote attackers to obtain potentially sensitive information from process memory by providing insufficient data,...
CVE-2010-0662
The ParamTraits::Read function in common/commonparamtraits.cc in Google Chrome before 4.0.249.78 does not use the correct variables in calculations designed to prevent integer overflows, which allows attackers to leverage renderer access to cause a denial of service or possibly have unspecified...
Integer overflow
The ParamTraits::Read function in common/commonparamtraits.cc in Google Chrome before 4.0.249.78 does not use the correct variables in calculations designed to prevent integer overflows, which allows attackers to leverage renderer access to cause a denial of service or possibly have unspecified...
Design/Logic Flaw
The ParamTraits::Read function in common/commonparamtraits.cc in Google Chrome before 4.0.249.78 does not initialize the memory locations that will hold bitmap data, which might allow remote attackers to obtain potentially sensitive information from process memory by providing insufficient data,...
CVE-2010-0663
The ParamTraits::Read function in common/commonparamtraits.cc in Google Chrome before 4.0.249.78 does not initialize the memory locations that will hold bitmap data, which might allow remote attackers to obtain potentially sensitive information from process memory by providing insufficient data,...
CVE-2010-0663
Removed by vendor...