ASUS BMC Firmware 安全特征问题漏洞

ASUS BMC Firmware is a firmware from Asus China. A security signature issue vulnerability exists in the ASUS BMC firmware Web management page, which originates from a buffer overflow vulnerability due to a specific function not validating the length of a user-entered string. A remote attacker cou...

CVE-2020-28501 Regular Expression Denial of Service (ReDoS)

This affects the package es6-crawler-detect before 3.1.3. No limitation of user agent string length supplied to regex operators...

CVE-2020-35225

The NSDP protocol implementation on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was not properly validating the length of string parameters sent in write requests, potentially allowing denial of service attacks...

Solaris 10 1/13 (Intel) - (dtprintinfo) Local Privilege Escalation Exploit(3)

Exploit Title: Solaris 10 1/13 Intel - 'dtprintinfo' Local Privilege Escalation 3 Exploit Author: Marco Ivaldi Vendor Homepage: https://www.oracle.com/solaris/solaris10/ Version: Solaris 10 Tested on: Solaris 10 1/13 Intel / raptordtprintcheckdirintel2.c - Solaris/Intel FMT LPE Copyright c 2020...

Zetetic Sqlcipher 资源管理错误漏洞

Zetetic Sqlcipher is a SqlLite-based database from Zetetic USA. The database provides a SqlLite-like access API while adding numerous security elements. A resource management error vulnerability exists in Zetetic SQLCipher versions 4.x through 4.4.1, which stems from sqlciphercodecpragma and...

Buffer overflow

Garmin Forerunner 235 before 8.20 is affected by: Buffer Overflow. The component is: ConnectIQ TVM. The attack vector is: To exploit the vulnerability, the attacker must upload a malicious ConnectIQ application to the ConnectIQ store. The ConnectIQ program interpreter trusts the string length...

OPENSUSE-SU-2020:1270-1 Security update for gettext-runtime

This update for gettext-runtime fixes the following issues: - Fix boo941629-unnessary-rpath-on-standard-path.patch bsc941629 - Added msgfmt-double-free.patch to fix a double free error CVE-2018-18751 bsc1113719 - Add patch msgfmt-reset-msg-length-after-remove.patch which does reset the length of...

SUSE SLED15 / SLES15 Security Update : gettext-runtime (SUSE-SU-2020:2296-1)

This update for gettext-runtime fixes the following issues : Fix boo941629-unnessary-rpath-on-standard-path.patch bsc941629 Added msgfmt-double-free.patch to fix a double free error CVE-2018-18751 bsc1113719 Add patch msgfmt-reset-msg-length-after-remove.patch which does reset the length of messa...

April 7, 2020, update for OneNote 2016 (KB4475586)

April 7, 2020, update for OneNote 2016 KB4475586 This article describes update 4475586 for Microsoft OneNote 2016 that was released on April 7, 2020. Be aware that the update on the Microsoft Download Center applies to the Microsoft Installer .msi-based edition of Office 2016. It doesn't apply to...

Hashcracker - Python Hash Cracker

Supportedhashing algorithms: SHA512, SHA256, SHA384, SHA1, MD5 Features: auto detection of hashing algorithm based on length not recommended, bruteforce, password list Arguments: type: hash algorithm must be one of the supported hashing algorithms mentioned above or AUTO if you want to use...

CVE-2019-10532

Null-pointer dereference issue can occur while calculating string length when source string length is zero in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009,...

CVE-2019-10532

Null-pointer dereference issue can occur while calculating string length when source string length is zero in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009,...

The vulnerability of the MP4 demultiplexer in the VideoLAN VLC media player software allows a hacker to execute arbitrary code or trigger a service denial.

The vulnerability of the MP4 demultiplexer in the VideoLAN VLC media player software is related to errors in checking the length of string containers. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or trigger a service denial-of-service attack using a specially...

The vulnerability of the __strlen_sse2_pminub function in the infotocap utility from the ncurses-bin package allows a hacker to induce a service failure.

The vulnerability of the strlensse2pminub function located in the file sysdeps/x8664/multiarch/strlen-sse2-pminub.S:50 in the infotocap utility from the ncurses-bin package is related to errors in pointer arithmetic. Exploiting this vulnerability could allow an attacker to cause a system failure ...

CVE-2018-11790

When loading a document with Apache Open Office 4.1.5 and earlier with smaller end line termination than the operating system uses, the defect occurs. In this case OpenOffice runs into an Arithmetic Overflow at a string length calculation...

CVE-2018-11790

CVE-2018-11790 affects Apache OpenOffice 4.1.5 and earlier. The flaw is an arithmetic overflow in a string-length calculation when loading a document with an end-of-line termination smaller than the OS uses, triggered by handling virtual tables. Exploitation details are not explicitly provided in...

Denial Of Service (DoS)

openssl is vulnerable to denial of service DoS attacks. The library improperly calculates string lengths, allowing a malicious user to cause a denial of service by passing a large string to the system...

UBUNTU-CVE-2019-5718

In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the RTSE dissector and other ASN.1 dissectors could crash. This was addressed in epan/charsets.c by adding a gett61string length check...

DEBIAN-CVE-2019-5718

In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the RTSE dissector and other ASN.1 dissectors could crash. This was addressed in epan/charsets.c by adding a gett61string length check...

CVE-2018-11790

When loading a document with Apache Open Office 4.1.5 and earlier with smaller end line termination than the operating system uses, the defect occurs. In this case OpenOffice runs into an Arithmetic Overflow at a string length calculation...