CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Fedora•added 2017/04/29 11:22 p.m.•34 views

[SECURITY] Fedora 25 Update: yara-3.5.0-7.fc25

YARA is a tool aimed at but not limited to helping malware researchers to identify and classify malware samples. With YARA you can create descriptions of malware families or whatever you want to describe based on textual or binary patterns. Each description, a.k.a rule, consists of a set of strin...

7.5CVSS1.3AI score0.00489EPSS

Exploits4

Cisco Threats•added 2017/03/23 4:0 p.m.•13 views

Threat Outbreak Alert RuleID28352: Email Messages Distributing Malicious Software on March 23, 2017

Medium Alert ID: 53137 First Published: 2017 March 23 16:00 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID28352 may contain the following files: Name | Si...

0.2AI score

UbuntuCve•added 2017/03/14 2:59 p.m.•22 views

CVE-2017-6335

The QuantumTransferMode function in coders/tiff.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service out-of-bounds read and application crash via a small samples per pixel value in a CMYKA TIFF file...

5.5CVSS6.9AI score0.00273EPSS

Exploits0References2

OSV•added 2017/02/09 3:59 p.m.•1 views

DEBIAN-CVE-2017-5840

The qtdemuxparsesamples function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service out-of-bounds heap read via vectors involving the current stts index...

7.5CVSS7.3AI score0.03769EPSS

OSV•added 2017/02/09 3:59 p.m.•2 views

ALPINE-CVE-2017-5840

7.5CVSS6.8AI score0.03769EPSS

OSV•added 2017/02/09 12:0 a.m.•0 views

UBUNTU-CVE-2017-5840

7.5CVSS7.2AI score0.03769EPSS

Trellix•added 2016/12/19 12:0 a.m.•15 views

‘Popcorn Time’ Ransomware Sure to Cause Indigestion

ARCHIVED STORY ‘Popcorn Time’ Ransomware Sure to Cause Indigestion By Tim Hux · December 19, 2016 In early December the new ransomware “Popcorn Time” was discovered. It gives the victim the option of paying the ransom or infecting two other individuals and getting them to pay. “Popcorn Time” is a...

0.9AI score

ThreatPost•added 2016/09/13 9:14 a.m.•11 views

Generic OS X Malware Detection Method Explained

When it comes to detecting OS X malware, the future may not be rooted in machine learning algorithms, but patterns and heatmap visualization, a researcher posits. In an academic paper published by Virus Bulletin on Monday, Vincent Van Mieghem, a former student at the Delft University of Technolog...

7.7AI score

Exploits0References16

RedHat Linux•added 2016/08/02 4:59 p.m.•2 views

libtiff: invalid assertion

tifluv.c in libtiff allows attackers to cause a denial of service out-of-bounds write via an invalid number of samples per pixel in a LogL compressed TIFF image, a different vulnerability than CVE-2015-8782...

6.5CVSS7.4AI score0.01417EPSS

RedHat Linux•added 2016/08/02 4:59 p.m.•2 views

libtiff: Out-of-bounds read in tif_getimage.c

tifgetimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service out-of-bounds read via the SamplesPerPixel tag in a TIFF image...

5.5CVSS5.9AI score0.00208EPSS

RedHat Linux•added 2016/08/02 4:39 p.m.•2 views

libtiff: invalid assertion

6.5CVSS7.4AI score0.01417EPSS

RedHat Linux•added 2016/08/02 4:39 p.m.•2 views

libtiff: Out-of-bounds read in tif_getimage.c

tifgetimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service out-of-bounds read via the SamplesPerPixel tag in a TIFF image...

5.5CVSS5.9AI score0.00208EPSS

CNVD•added 2016/06/19 12:0 a.m.•1 views

Silicon Graphics LibTiff 'extractContigSamplesBytes' Function Denial of Service Vulnerability

Silicon Graphics LibTiff is a library for reading and writing TIFF files. A security vulnerability in the 'extractContigSamplesBytes' function of Silicon Graphics LibTiff allows remote attackers to exploit the vulnerability to construct special TIFF images that can be tricked into being parsed by...

5.5CVSS7.4AI score0.0018EPSS

myhack58•added 2016/06/09 12:0 a.m.•14 views

How to analyze the Adobe Flash Player vulnerability sample-vulnerability warning-the black bar safety net

Has recently been in the analysis of the Adobe Flash vulnerability, in the analysis and debugging of the Adobe Flash vulnerabilities encountered a series of problems, so this article mainly introduces how to analyze a Flash vulnerability, as well as in the analysis of the process requires the use...

7.1AI score

Cisco Threats•added 2016/06/06 1:28 p.m.•13 views

Threat Outbreak Alert RuleID10277: Email Messages Distributing Malicious Software on July 7, 2016

Medium Alert ID: 46571 First Published: 2016 June 6 13:28 GMT Last Updated: 2016 September 7 15:54 GMT Version: 7 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID10277 and...

6.9AI score