Lucene search
K

79 matches found

Prion
Prion
added 2019/06/19 12:15 a.m.31 views

Code injection

When using the gdImageCreateFromXbm function in the GD Graphics Library aka LibGD 2.2.5, as used in the PHP GD extension in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6, it is possible to supply data that will cause the function to use the value of uninitialized...

5CVSS5.4AI score0.04332EPSS
Exploits1References18Affected Software13
OSV
OSV
added 2019/06/19 12:15 a.m.2 views

UBUNTU-CVE-2019-11038

When using the gdImageCreateFromXbm function in the GD Graphics Library aka LibGD 2.2.5, as used in the PHP GD extension in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6, it is possible to supply data that will cause the function to use the value of uninitialized...

5.3CVSS6.1AI score0.04332EPSS
Exploits1References4
Cvelist
Cvelist
added 2019/06/18 11:28 p.m.43 views

CVE-2019-11038 Uninitialized read in gdImageCreateFromXbm

When using the gdImageCreateFromXbm function in the GD Graphics Library aka LibGD 2.2.5, as used in the PHP GD extension in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6, it is possible to supply data that will cause the function to use the value of uninitialized...

3.1CVSS6.2AI score0.04332EPSS
Exploits1References18
0day.today
0day.today
added 2019/01/30 12:0 a.m.39 views

iOS / macOS 10.13.6 - if_ports_used_update_wakeuuid() 16-byte Uninitialized Kernel Stack Disclosure

/ macOS 10.13.4 introduced the file bsd/net/ifportsused.c, which defines sysctls for inspecting ports, and added the function IOPMCopySleepWakeUUIDKey to the file iokit/Kernel/IOPMrootDomain.cpp. Here's the code of the latter function: extern "C" bool IOPMCopySleepWakeUUIDKeychar buffer, sizet...

5.5CVSS0.2AI score0.03694EPSS
Exploits2
Exploit DB
Exploit DB
added 2019/01/30 12:0 a.m.52 views

iOS/macOS 10.13.6 - 'if_ports_used_update_wakeuuid()' 16-byte Uninitialized Kernel Stack Disclosure

/ macOS 10.13.4 introduced the file bsd/net/ifportsused.c, which defines sysctls for inspecting ports, and added the function IOPMCopySleepWakeUUIDKey to the file iokit/Kernel/IOPMrootDomain.cpp. Here's the code of the latter function: extern "C" bool IOPMCopySleepWakeUUIDKeychar buffer, sizet...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2019/01/30 12:0 a.m.26 views

iOSmacOS 10.13.6 - if_ports_used_update_wakeuuid() 16-byte Uninitialized Kernel Stack Disclosure

iOSmacOS 10.13.6 - ifportsusedupdatewakeuuid 16-byte Uninitialized Kernel Stack Disclosure / macOS 10.13.4 introduced the file bsd/net/ifportsused.c, which defines sysctls for inspecting ports, and added the function IOPMCopySleepWakeUUIDKey to the file iokit/Kernel/IOPMrootDomain.cpp. Here's the...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2018/01/23 12:0 a.m.31 views

RAVPower 2.000.056 - Memory Disclosure

""" Exploit Title: RAVPower - remote stack disclosure Date: 22/01/2018 Exploit Author: Daniele Linguaglossa Vendor Homepage: https://www.ravpower.com/ Software Link: https://www.ravpower.com/ Version: 2.000.056 Tested on: OSX CVE : CVE-2018-5319 """ import socket import sys import re author =...

7.5CVSS7.8AI score0.1259EPSS
Exploits4
0day.today
0day.today
added 2018/01/23 12:0 a.m.30 views

RAVPower 2.000.056 - Memory Disclosure Exploit

Exploit for hardware platform in category dos / poc """ Exploit Title: RAVPower - remote stack disclosure Date: 22/01/2018 Exploit Author: Daniele Linguaglossa Vendor Homepage: https://www.ravpower.com/ Software Link: https://www.ravpower.com/ Version: 2.000.056 Tested on: OSX CVE : CVE-2018-5319...

7.5AI score0.1259EPSS
Exploits4
exploitpack
exploitpack
added 2018/01/23 12:0 a.m.16 views

RAVPower 2.000.056 - Memory Disclosure

RAVPower 2.000.056 - Memory Disclosure """ Exploit Title: RAVPower - remote stack disclosure Date: 22/01/2018 Exploit Author: Daniele Linguaglossa Vendor Homepage: https://www.ravpower.com/ Software Link: https://www.ravpower.com/ Version: 2.000.056 Tested on: OSX CVE : CVE-2018-5319 """ import...

5CVSS7.6AI score0.1259EPSS
Exploits4
Prion
Prion
added 2017/08/02 7:29 p.m.20 views

Information disclosure

The GIF decoding function gdImageCreateFromGifCtx in gdgifin.c in the GD Graphics Library aka libgd, as used in PHP before 5.6.31 and 7.x before 7.1.7, does not zero colorMap arrays before use. A specially crafted GIF image could use the uninitialized tables to read 700 bytes from the top of the...

4.3CVSS6.3AI score0.03418EPSS
Exploits0References10Affected Software1
0day.today
0day.today
added 2017/06/28 12:0 a.m.81 views

Microsoft Windows - nt!NtQueryInformationWorkerFactory (WorkerFactoryBasicInformation) Kernel Stack

Exploit for windows platform in category dos / poc / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1214&desc=2 We have discovered that the nt!NtQueryInformationWorkerFactory system call called with the WorkerFactoryBasicInformation 7 information class discloses portions of...

1.9CVSS6.1AI score0.04961EPSS
Exploits2
exploitpack
exploitpack
added 2017/06/22 12:0 a.m.35 views

Microsoft Windows - nt!NtQueryInformationJobObject (BasicLimitInformation_ ExtendedLimitInformation) Kernel Stack Memory Disclosure

Microsoft Windows - nt!NtQueryInformationJobObject BasicLimitInformation ExtendedLimitInformation Kernel Stack Memory Disclosure / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1189&desc=2 We have discovered that the nt!NtQueryInformationJobObject system call corresponding to...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2017/06/22 12:0 a.m.20 views

Microsoft Windows - win32k!NtGdiGetTextMetricsW Kernel Stack Memory Disclosure

Microsoft Windows - win32k!NtGdiGetTextMetricsW Kernel Stack Memory Disclosure / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1180 We have discovered that it is possible to disclose portions of uninitialized kernel stack memory to user-mode applications in Windows 7 other...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/08/12 12:0 a.m.18 views

FreeBSD : FreeBSD -- Kernel stack disclosure in 4.3BSD compatibility layer (7cad4795-600a-11e6-a6c3-14dae9d210b8)

The implementation of historic stat2 system call does not clear the output struct before copying it out to userland. Impact : An unprivileged user can read a portion of uninitialised kernel stack data, which may contain sensitive information, such as the stack guard, portions of the file cache or...

5.4AI score
Exploits0References1
FreeBSD
FreeBSD
added 2016/05/31 12:0 a.m.15 views

FreeBSD -- Kernel stack disclosure in 4.3BSD compatibility layer

Problem Description: The implementation of historic stat2 system call does not clear the output struct before copying it out to userland. Impact: An unprivileged user can read a portion of uninitialised kernel stack data, which may contain sensitive information, such as the stack guard, portions ...

1.6AI score
Exploits0
FreeBSD Advisory
FreeBSD Advisory
added 2016/05/31 12:0 a.m.5 views

FreeBSD-SA-16:20.linux

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-16:20.linux Security Advisory The FreeBSD Project Topic: Kernel stack disclosure in Linux compatibility layer Category: core Module: linux4 Announced: 2016-05-3...

5.9AI score
Exploits0
securityvulns
securityvulns
added 2014/11/10 12:0 a.m.74 views

FreeBSD Security Advisory FreeBSD-SA-14:25.setlogin

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-14:25.setlogin Security Advisory The FreeBSD Project Topic: Kernel stack disclosure in setlogin2 / getlogin2 Category: core Module: kernel Announced: 2014-11-04...

2.1CVSS6.3AI score0.00392EPSS
Exploits0
OSV
OSV
added 2014/11/07 12:0 a.m.21 views

DSA-3070-1 kfreebsd-9 - security update

Bulletin has no description...

5CVSS6AI score0.0157EPSS
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.18 views

Linux Kernel <= 2.6.31-rc7 AF_LLC getsockname 5-Byte Stack Disclosure

No description provided by source. / llc-getsockname-leak.c Linux Kernel = 2.6.31-rc7 AFLLC getsockname 5-Byte Stack Disclosure Jon Oberheide [email protected] http://jon.oberheide.org Information: http://git.kernel.org/linus/28e9fc592cb8c7a43e4d3147b38be6032a0e81bc sllcarphrd member of sockaddrl...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.57 views

Linux Kernel < 2.6.31-rc7 - AF_IRDA 29-Byte Stack Disclosure Exploit

No description provided by source. / cve-2009-3002.c Linux Kernel 2.6.31-rc7 AFIRDA getsockname 29-Byte Stack Disclosure Jon Oberheide [email protected] http://jon.oberheide.org Information: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3002 The Linux kernel before 2.6.31-rc7 does not...

4.9CVSS7.3AI score0.01029EPSS
Exploits7
Rows per page
Query Builder