6902 matches found
Out-of-Bounds Write
cairo is vulnerable to out-of-bound write. An attacker may exploit a malicious input file to cairo's image-compositor to cause a stack buffer overflow leading to an out-of-bounds write...
D-Link DIR-878 Stack Buffer Overflow Vulnerability
The D-Link DIR-878 is a wireless router from AUO D-Link of Taiwan, China. A stack buffer overflow vulnerability exists in prog.cgi in the D-Link DIR-878 version 1.30B08. An attacker can exploit this vulnerability without authentication based on a stack buffer overflow...
OSV-2021-597 Stack-buffer-overflow in read_mft_common
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=32837 Crash type: Stack-buffer-overflow WRITE 1 Crash state: readmftcommon bool readtagmft1 readb2a...
D-Link DIR-878 缓冲区错误漏洞
The D-Link DIR-878 is a wireless router from AUO D-Link of Taiwan, China. A stack buffer overflow vulnerability exists in prog.cgi in the D-Link DIR-878 version 1.30B08. An attacker can exploit this vulnerability without authentication based on a stack buffer overflow...
CVE-2021-20294
A flaw was found in binutils' readelf program. An attacker who is able to convince a victim using readelf to read a crafted file, could trigger a stack buffer overflow, out-of-bounds write of arbitrary data supplied by the attacker. The highest impact of this flaw is to confidentiality, integrity...
Security update for grub2 (important)
openSUSE Security Update: Security update for grub2 Announcement ID: openSUSE-SU-2021:0462-1 Rating: important References: 1175970 1176711 1177883 1179264 1179265 1182057 1182262 1182263 1183073 Cross-References: CVE-2020-14372 CVE-2020-25632 CVE-2020-25647 CVE-2020-27749 CVE-2020-27779...
CVE-2020-35492
A flaw was found in cairo's image-compositor.c in all versions prior to 1.17.4. This flaw allows an attacker who can provide a crafted input file to cairo's image-compositor for example, by convincing a user to open a file in an application using cairo, or if an application uses cairo on untruste...
CVE-2020-35492
A flaw was found in cairo's image-compositor.c in all versions prior to 1.17.4. This flaw allows an attacker who can provide a crafted input file to cairo's image-compositor for example, by convincing a user to open a file in an application using cairo, or if an application uses cairo on untruste...
CVE-2020-35492
CVE-2020-35492 affects cairo’s image-compositor.c in all versions before 1.17.4. A crafted input file can cause a stack buffer overflow (out-of-bounds write), with impact on confidentiality, integrity, and availability. Root cause: unchecked memory/write in image-compositor when processing untrus...
CVE-2020-35492
A flaw was found in cairo's image-compositor.c in all versions prior to 1.17.4. This flaw allows an attacker who can provide a crafted input file to cairo's image-compositor for example, by convincing a user to open a file in an application using cairo, or if an application uses cairo on untruste...
CVE-2020-35492
A flaw was found in cairo's image-compositor.c in all versions prior to 1.17.4. This flaw allows an attacker who can provide a crafted input file to cairo's image-compositor for example, by convincing a user to open a file in an application using cairo, or if an application uses cairo on untruste...
Stack-based Buffer Overflow
A flaw was found in cairo's image-compositor.c in all This flaw allows an attacker who can provide a crafted input file to cairo's image-compositor for example, by convincing a user to open a file in an application using cairo, or if an application uses cairo on untrusted input to cause a stack...
Trojan-Proxy.Win32.Wimain Buffer Overflow
Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/8936c97e99799809812fa740076a2d7f.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan-Proxy.Win32.Wimain Vulnerability: Remote Stack Buffer Overflow Description: Win32.Wimain troj...
NewStart CGSL CORE 5.04 / MAIN 5.04 : tigervnc Multiple Vulnerabilities (NS-SA-2021-0035)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has tigervnc packages installed that are affected by multiple vulnerabilities: - TigerVNC version prior to 1.10.1 is vulnerable to stack use-after-return, which occurs due to incorrect usage of stack memory in ZRLEDecoder. If...
Stack Buffer Overflow Vulnerability in XnView
XnView as an image viewer with image browsing, screen capture, slideshow, batch conversion and more. XnView suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to cause a denial of service...
Oracle Linux 8 : grub2 (ELSA-2021-0696)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-0696 advisory. - Add CVE-2020-15706, CVE-2020-15707 to the list Orabug: 31225072 Tenable has extracted the preceding description block directly from the Oracle Linux...
CVE-2020-27749
A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that...
CVE-2020-27749
A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that...
DEBIAN-CVE-2020-27749
A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that...
Design/Logic Flaw
A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that...