Lucene search
K

203 matches found

OSV
OSV
added 2017/09/11 9:29 a.m.13 views

CVE-2017-14257

In the SDK in Bento4 1.5.0-616, AP4AtomSampleTable::GetSample in Core/Ap4AtomSampleTable.cpp contains a Read Memory Access Violation vulnerability. It is possible to exploit this vulnerability by opening a crafted .MP4 file...

7.8CVSS6.6AI score
Exploits0References1
OSV
OSV
added 2017/09/11 9:29 a.m.12 views

CVE-2017-14261

In the SDK in Bento4 1.5.0-616, the AP4StszAtom class in Ap4StszAtom.cpp file contains a Read Memory Access Violation vulnerability. It is possible to exploit this vulnerability by opening a crafted .MP4 file...

7.8CVSS6.6AI score
Exploits0References1
Cvelist
Cvelist
added 2017/09/11 9:0 a.m.22 views

CVE-2017-14257

In the SDK in Bento4 1.5.0-616, AP4AtomSampleTable::GetSample in Core/Ap4AtomSampleTable.cpp contains a Read Memory Access Violation vulnerability. It is possible to exploit this vulnerability by opening a crafted .MP4 file...

7.4AI score0.00875EPSS
Exploits1References1
CVE
CVE
added 2017/09/11 9:0 a.m.46 views

CVE-2017-14261

CVE-2017-14261 affects Bento4 1.5.0-616 in the SDK. The AP4_StszAtom class (Ap4StszAtom.cpp) contains a Read Memory Access Violation vulnerability that can be exploited by opening a crafted .MP4 file. The connected sources confirm the vulnerability exists in this specific component/version, with ...

7.8CVSS7.4AI score0.00875EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2017/05/23 12:0 a.m.11 views

Apple macOS Sierra Restricted Memory Read Vulnerability

Apple macOS is a set of operating systems that run on Apple's Macintosh line of computers. Apple macOS Sierra suffers from a restricted memory read vulnerability that can be exploited by remote attackers to build malicious applications that read arbitrary restricted memory...

5.5CVSS6.7AI score0.02321EPSS
Exploits2References1
Cvelist
Cvelist
added 2017/04/12 6:0 p.m.29 views

CVE-2017-7742

In libsndfile before 1.0.28, an error in the "flacbuffercopy" function flac.c can be exploited to cause a segmentation violation with read memory access via a specially crafted FLAC file during a resample attempt, a similar issue to CVE-2017-7585...

5.6AI score0.01388EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2017/03/31 12:0 a.m.4 views

The vulnerability of the Windows operating system, which allows a perpetrator to obtain confidential information

The vulnerability of the Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor, acting remotely, to obtain confidential information from the process’s memory through a specially crafted web page...

4.3CVSS5.8AI score0.22471EPSS
Exploits1References3
OSV
OSV
added 2017/03/17 12:59 a.m.1 views

CVE-2017-0147

The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to obtain sensitive information from process memor...

7.5CVSS7.4AI score0.99693EPSS
Exploits22References12
Packet Storm
Packet Storm
added 2016/12/26 12:0 a.m.150 views

Android get_user/put_user Exploit

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rex' class MetasploitModule "Android getuser/putuser Exploit", 'Description' = %q This module exploits a missing check in the getuser and...

7.2CVSS0.1AI score0.39711EPSS
Exploits9
OSV
OSV
added 2016/10/05 8:59 p.m.3 views

CVE-2016-6380

The DNS forwarder in Cisco IOS 12.0 through 12.4 and 15.0 through 15.6 and IOS XE 3.1 through 3.15 allows remote attackers to obtain sensitive information from process memory or cause a denial of service data corruption or device reload via a crafted DNS response, aka Bug ID CSCup90532...

8.1CVSS5.8AI score0.03011EPSS
Exploits0References4
CNVD
CNVD
added 2016/09/19 12:0 a.m.3 views

Information Disclosure Vulnerabilities in Multiple Cisco Products

Cisco IOS, etc. are operating systems developed by the U.S. company Cisco Cisco. An information disclosure vulnerability exists in the server IKEv1 implementation in several Cisco products. A remote attacker can exploit this vulnerability by sending a Security Association negotiation request to...

7.5CVSS6.2AI score0.87687EPSS
Exploits7References1
OSV
OSV
added 2016/07/22 3:0 a.m.2 views

CVE-2016-4648

Audio in Apple OS X before 10.11.6 allows local users to obtain sensitive kernel memory-layout information or cause a denial of service out-of-bounds read via unspecified vectors...

5.5CVSS7.3AI score0.0044EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2016/03/01 12:0 a.m.46 views

PHP < 5.5.31, 5.6.x < 5.6.17, 7.x < 7.0.2 Out of Bounds Read Memory Corruption Vulnerability (Mar 2016) - Linux

PHP is prone to an out-of-bounds read memory corruption vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; ...

9.1CVSS8.5AI score0.07806EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2015/12/29 12:0 a.m.43 views

openSUSE Security Update : samba / ldb / talloc / etc (openSUSE-2015-945)

"This update for ldb, samba, talloc, tdb, tevent fixes the following issues : ldb was updated to 1.1.24. + Fix ldap \00 search expression attack dos; cve-2015-3223; bso11325 + Fix remote read memory exploit in ldb; cve-2015-5330; bso11599 + Move ldbunpackdata into ldbmodule.h for testing + Fix...

7.5CVSS6.6AI score0.13584EPSS
Exploits1References20
OPENSUSE Linux
OPENSUSE Linux
added 2015/12/24 3:10 a.m.53 views

Security update for ldb, samba, talloc, tdb, tevent (important)

This update for ldb, samba, talloc, tdb, tevent fixes the following security issues and bugs: The Samba LDB was updated to version 1.1.24: - Fix ldap \00 search expression attack dos; CVE-2015-3223; bso11325 - Fix remote read memory exploit in ldb; CVE-2015-5330; bso11599 - Move ldbunpackdata int...

6CVSS7.4AI score0.13584EPSS
Exploits1References9
OSV
OSV
added 2015/08/12 2:59 p.m.1 views

DEBIAN-CVE-2015-2059

The stringpreputf8toucs4 function in libin before 1.31, as used in jabberd2, allows context-dependent attackers to read system memory and possibly have other unspecified impact via invalid UTF-8 characters in a string, which triggers an out-of-bounds read...

7.5CVSS9.3AI score0.03185EPSS
Exploits0References1
OSV
OSV
added 2014/08/01 11:13 a.m.2 views

DEBIAN-CVE-2014-3534

arch/s390/kernel/ptrace.c in the Linux kernel before 3.15.8 on the s390 platform does not properly restrict address-space control operations in PTRACEPOKEUSRAREA requests, which allows local users to obtain read and write access to kernel memory locations, and consequently gain privileges, via a...

7.2CVSS5.7AI score0.00469EPSS
Exploits0References1
OSV
OSV
added 2014/05/19 2:55 p.m.4 views

UBUNTU-CVE-2014-3714

The ARM image loading functionality in Xen 4.4.x does not properly validate kernel length, which allows local users to read system memory or cause a denial of service crash via a crafted 32-bit ARM guest kernel in an image, which triggers a buffer overflow...

3.3CVSS6.2AI score0.00411EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2012/09/18 12:0 a.m.54 views

Fedora 16 : xen-4.1.3-2.fc16 (2012-13443)

a malicious 64-bit PV guest can crash the dom0 XSA-12, CVE-2012-3494 854585 a malicious crash might be able to crash the dom0 or escalate privileges XSA-13, CVE-2012-3495 854589 a malicious PV guest can crash the dom0 XSA-14, CVE-2012-3496 854590 a malicious HVM guest can crash the dom0 and might...

7.2CVSS7.5AI score0.00528EPSS
Exploits1References13
RedHat Linux
RedHat Linux
added 2011/10/06 5:39 p.m.6 views

X.org: ProcRenderAddGlyphs input sanitization flaw

The ProcRenderAddGlyphs function in the Render extension render/render.c in X.Org xserver 1.7.7 and earlier allows local users to read arbitrary memory and possibly cause a denial of service server crash via unspecified vectors related to an "input sanitization flaw."...

3.6CVSS5.9AI score0.0034EPSS
Exploits0References4
Rows per page
Query Builder