203 matches found
CVE-2017-14257
In the SDK in Bento4 1.5.0-616, AP4AtomSampleTable::GetSample in Core/Ap4AtomSampleTable.cpp contains a Read Memory Access Violation vulnerability. It is possible to exploit this vulnerability by opening a crafted .MP4 file...
CVE-2017-14261
In the SDK in Bento4 1.5.0-616, the AP4StszAtom class in Ap4StszAtom.cpp file contains a Read Memory Access Violation vulnerability. It is possible to exploit this vulnerability by opening a crafted .MP4 file...
CVE-2017-14257
In the SDK in Bento4 1.5.0-616, AP4AtomSampleTable::GetSample in Core/Ap4AtomSampleTable.cpp contains a Read Memory Access Violation vulnerability. It is possible to exploit this vulnerability by opening a crafted .MP4 file...
CVE-2017-14261
CVE-2017-14261 affects Bento4 1.5.0-616 in the SDK. The AP4_StszAtom class (Ap4StszAtom.cpp) contains a Read Memory Access Violation vulnerability that can be exploited by opening a crafted .MP4 file. The connected sources confirm the vulnerability exists in this specific component/version, with ...
Apple macOS Sierra Restricted Memory Read Vulnerability
Apple macOS is a set of operating systems that run on Apple's Macintosh line of computers. Apple macOS Sierra suffers from a restricted memory read vulnerability that can be exploited by remote attackers to build malicious applications that read arbitrary restricted memory...
CVE-2017-7742
In libsndfile before 1.0.28, an error in the "flacbuffercopy" function flac.c can be exploited to cause a segmentation violation with read memory access via a specially crafted FLAC file during a resample attempt, a similar issue to CVE-2017-7585...
The vulnerability of the Windows operating system, which allows a perpetrator to obtain confidential information
The vulnerability of the Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor, acting remotely, to obtain confidential information from the process’s memory through a specially crafted web page...
CVE-2017-0147
The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to obtain sensitive information from process memor...
Android get_user/put_user Exploit
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rex' class MetasploitModule "Android getuser/putuser Exploit", 'Description' = %q This module exploits a missing check in the getuser and...
CVE-2016-6380
The DNS forwarder in Cisco IOS 12.0 through 12.4 and 15.0 through 15.6 and IOS XE 3.1 through 3.15 allows remote attackers to obtain sensitive information from process memory or cause a denial of service data corruption or device reload via a crafted DNS response, aka Bug ID CSCup90532...
Information Disclosure Vulnerabilities in Multiple Cisco Products
Cisco IOS, etc. are operating systems developed by the U.S. company Cisco Cisco. An information disclosure vulnerability exists in the server IKEv1 implementation in several Cisco products. A remote attacker can exploit this vulnerability by sending a Security Association negotiation request to...
CVE-2016-4648
Audio in Apple OS X before 10.11.6 allows local users to obtain sensitive kernel memory-layout information or cause a denial of service out-of-bounds read via unspecified vectors...
PHP < 5.5.31, 5.6.x < 5.6.17, 7.x < 7.0.2 Out of Bounds Read Memory Corruption Vulnerability (Mar 2016) - Linux
PHP is prone to an out-of-bounds read memory corruption vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; ...
openSUSE Security Update : samba / ldb / talloc / etc (openSUSE-2015-945)
"This update for ldb, samba, talloc, tdb, tevent fixes the following issues : ldb was updated to 1.1.24. + Fix ldap \00 search expression attack dos; cve-2015-3223; bso11325 + Fix remote read memory exploit in ldb; cve-2015-5330; bso11599 + Move ldbunpackdata into ldbmodule.h for testing + Fix...
Security update for ldb, samba, talloc, tdb, tevent (important)
This update for ldb, samba, talloc, tdb, tevent fixes the following security issues and bugs: The Samba LDB was updated to version 1.1.24: - Fix ldap \00 search expression attack dos; CVE-2015-3223; bso11325 - Fix remote read memory exploit in ldb; CVE-2015-5330; bso11599 - Move ldbunpackdata int...
DEBIAN-CVE-2015-2059
The stringpreputf8toucs4 function in libin before 1.31, as used in jabberd2, allows context-dependent attackers to read system memory and possibly have other unspecified impact via invalid UTF-8 characters in a string, which triggers an out-of-bounds read...
DEBIAN-CVE-2014-3534
arch/s390/kernel/ptrace.c in the Linux kernel before 3.15.8 on the s390 platform does not properly restrict address-space control operations in PTRACEPOKEUSRAREA requests, which allows local users to obtain read and write access to kernel memory locations, and consequently gain privileges, via a...
UBUNTU-CVE-2014-3714
The ARM image loading functionality in Xen 4.4.x does not properly validate kernel length, which allows local users to read system memory or cause a denial of service crash via a crafted 32-bit ARM guest kernel in an image, which triggers a buffer overflow...
Fedora 16 : xen-4.1.3-2.fc16 (2012-13443)
a malicious 64-bit PV guest can crash the dom0 XSA-12, CVE-2012-3494 854585 a malicious crash might be able to crash the dom0 or escalate privileges XSA-13, CVE-2012-3495 854589 a malicious PV guest can crash the dom0 XSA-14, CVE-2012-3496 854590 a malicious HVM guest can crash the dom0 and might...
X.org: ProcRenderAddGlyphs input sanitization flaw
The ProcRenderAddGlyphs function in the Render extension render/render.c in X.Org xserver 1.7.7 and earlier allows local users to read arbitrary memory and possibly cause a denial of service server crash via unspecified vectors related to an "input sanitization flaw."...