6906 matches found
CVE-2017-15396
A stack buffer overflow in NumberingSystem in International Components for Unicode ICU for C/C++ before 60.2, as used in V8 in Google Chrome prior to 62.0.3202.75 and other products, allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
CVE-2017-15406
A stack buffer overflow in V8 in Google Chrome prior to 62.0.3202.75 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...
CVE-2017-15396
A stack buffer overflow in NumberingSystem in International Components for Unicode ICU for C/C++ before 60.2, as used in V8 in Google Chrome prior to 62.0.3202.75 and other products, allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
CVE-2017-15398
A stack buffer overflow in the QUIC networking stack in Google Chrome prior to 62.0.3202.89 allowed a remote attacker to gain code execution via a malicious server...
CVE-2017-15396
A stack buffer overflow in NumberingSystem in International Components for Unicode ICU for C/C++ before 60.2, as used in V8 in Google Chrome prior to 62.0.3202.75 and other products, allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
CVE-2017-15398
A stack buffer overflow in the QUIC networking stack in Google Chrome prior to 62.0.3202.89 allowed a remote attacker to gain code execution via a malicious server...
CVE-2017-15396
CVE-2017-15396 is described in the connected IBM ICU bulletin as a stack buffer overflow in ICU’s NumberingSystem (C/C++) that could allow a remote attacker to trigger heap corruption via a crafted HTML page. The description in the initial document notes ICU for C/C++ before 60.2 (used in V8/Chro...
CVE-2017-15406
A stack buffer overflow in V8 in Google Chrome prior to 62.0.3202.75 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...
CVE-2017-15406
CVE-2017-15406 describes a stack buffer overflow in V8 used by Google Chrome prior to 62.0.3202.75, enabling a remote attacker to trigger an out-of-bounds memory read via a crafted HTML page. Affected product: Google Chrome (V8 component); the vulnerability stems from a memory-safety flaw in V8, ...
CVE-2017-15398
Chromium (Chrome) before version 62.0.3202.89 is affected by CVE-2017-15398 and CVE-2017-15399 per the connected Arch Linux advisory. The issue for CVE-2017-15398 is a stack-based buffer overflow in the QUIC component, enabling remote code execution. CVE-2017-15399 is a use-after-free in the V8 J...
CVE-2017-15406
Removed by vendor...
CVE-2017-15396
Removed by vendor...
CVE-2017-15398
Removed by vendor...
graphicsmagick/coder_MVG_fuzzer: Stack-buffer-overflow in TranslateTextEx
Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=5158172004712448 Project: graphicsmagick Fuzzer: aflgraphicsmagickcoderMVGfuzzer Fuzz target binary: coderMVGfuzzer Job Type: aflasangraphicsmagick Platform Id: linux Crash Type:...
CVE-2018-15572
An issue was found in the way modern x86 microprocessor designs have implemented speculative execution of instructions a commonly used performance optimization and prediction of return addresses via Return Stack Buffer RSB. RSB is a small on chip structure that holds list of return addresses, use...
MikroTik RouterOS Multiple Vulnerabilities (Aug 2018)
MikroTik RouterOS is prone to multiple vulnerabilitites. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:mikrotik:routeros"; if...
CVE-2018-1156
Mikrotik RouterOS before 6.42.7 and 6.40.9 is vulnerable to stack buffer overflow through the license upgrade interface. This vulnerability could theoretically allow a remote authenticated attacker execute arbitrary code on the system...
CVE-2018-1156
CVE-2018-1156 affects MikroTik RouterOS prior to 6.42.7 and 6.40.9. It is a stack buffer overflow via the license upgrade interface, potentially enabling a remote authenticated attacker to execute code on the device. The vulnerability is mitigated by MikroTik RouterOS updates released to address ...
CVE-2018-3912
On Samsung SmartThings Hub STH-ETH-250 devices with firmware version 0.20.17, the video-core process insecurely extracts the fields from the "shard" table of its SQLite database, leading to a buffer overflow on the stack. The strcpy call overflows the destination buffer, which has a size of 128...
DEBIAN-CVE-2018-15572
The spectrev2selectmitigation function in arch/x86/kernel/cpu/bugs.c in the Linux kernel before 4.18.1 does not always fill RSB upon a context switch, which makes it easier for attackers to conduct userspace-userspace spectreRSB attacks...