Lucene search
K

149 matches found

OSV
OSV
added 2021/08/08 12:15 a.m.10 views

UBUNTU-CVE-2021-38185

GNU cpio through 2.13 allows attackers to execute arbitrary code via a crafted pattern file, because of a dstring.c dsfgetstr integer overflow that triggers an out-of-bounds heap write. NOTE: it is unclear whether there are common cases where the pattern file, associated with the -E option, is...

7.8CVSS7.2AI score0.0415EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2020/04/06 8:22 a.m.5 views

ICU: Integer overflow in UnicodeString::doAppend()

An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend function in common/unistr.cpp...

8.8CVSS7.5AI score0.02669EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/03/09 8:24 a.m.8 views

ICU: Integer overflow in UnicodeString::doAppend()

An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend function in common/unistr.cpp...

8.8CVSS7.5AI score0.02669EPSS
Exploits0References5
OSV
OSV
added 2020/01/23 10:15 p.m.5 views

CVE-2020-6007

Philips Hue Bridge model 2.X prior to and including version 1935144020 contains a Heap-based Buffer Overflow when handling a long ZCL string during the commissioning phase, resulting in a remote code execution...

7.9CVSS7.7AI score0.02114EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2019/10/05 12:0 a.m.16 views

PT-2019-5838 · Imagemagick +5 · Imagemagick +5

Name of the Vulnerable Software and Affected Versions: ImageMagick versions prior to 7.0.8-68 Description: The issue is related to a missing check for a 0 value of replace extent in the SubstituteString function, which can cause an offset p to overflow. This could be triggered by a crafted input...

9.8CVSS6.7AI score0.89855EPSS
Exploits78References375
OSV
OSV
added 2019/01/31 4:29 p.m.1 views

DEBIAN-CVE-2018-11790

When loading a document with Apache Open Office 4.1.5 and earlier with smaller end line termination than the operating system uses, the defect occurs. In this case OpenOffice runs into an Arithmetic Overflow at a string length calculation...

7.8CVSS7.7AI score0.01025EPSS
Exploits0References1
OSV
OSV
added 2018/01/06 12:0 a.m.11 views

UBUNTU-CVE-2018-5207

When using an incomplete variable argument, Irssi before 1.0.6 may access data beyond the end of the string...

7.5CVSS7.1AI score0.01914EPSS
Exploits0References5
Hacker One
Hacker One
added 2016/11/07 1:47 a.m.26 views

Internet Bug Bounty: Memory corruption in _php_math_number_format_ex()

The fix of this bug has been committed: https://bugs.php.net/bug.php?id=73336 Description: -------------- I have found some vulnerable code at phpmathnumberformatex function. phpmathnumberformatex function is an internal function which is called from numberformat function. numberformat function...

7.2AI score
Exploits0
CNVD
CNVD
added 2016/03/02 12:0 a.m.5 views

OpenSSL BIO_printf Function Heap Memory Corruption Vulnerability

OpenSSL is a general-purpose open source cryptographic library that implements Secure Sockets Layer and Secure Transport Layer protocols and can support a variety of cryptographic algorithms, including symmetric ciphers, hashing algorithms, secure hashing algorithms, and so on. The BIOprintf...

10CVSS8.8AI score0.32414EPSS
Exploits1References1
CNVD
CNVD
added 2016/01/12 12:0 a.m.7 views

Apache Subversion Integer Overflow Vulnerability

Apache Subversion is the United States Apache Apache Software Foundation, a set of open source version control system , the system can be compatible with concurrent versioning system CVS. An integer overflow vulnerability exists in the 'readstring' function in the libsvnrasvn/marshal.c file in...

9CVSS9.2AI score0.57037EPSS
Exploits0References1
OSV
OSV
added 2016/01/08 7:59 p.m.4 views

DEBIAN-CVE-2015-5259

Integer overflow in the readstring function in libsvnrasvn/marshal.c in Apache Subversion 1.9.x before 1.9.3 allows remote attackers to execute arbitrary code via an svn:// protocol string, which triggers a heap-based buffer overflow and an out-of-bounds read...

8.6CVSS8.4AI score0.57037EPSS
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.21 views

SHOUTcast DNAS/win32 1.9.4 File Request Format String Overflow

No description provided by source. $Id: shoutcastformat.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

SonicWALL E-Class SSL-VPN ActiveX Control Format String Overflow

No description provided by source...

7.1AI score
Exploits0
OSV
OSV
added 2013/10/09 2:54 p.m.4 views

UBUNTU-CVE-2013-4385

Buffer overflow in the "read-string!" procedure in the "extras" unit in CHICKEN stable before 4.8.0.5 and development snapshots before 4.8.3 allows remote attackers to cause a denial of service memory corruption and application crash and possibly execute arbitrary code via a "f" value in the NUM...

7.5CVSS7.6AI score0.03388EPSS
Exploits0References5
securityvulns
securityvulns
added 2012/06/17 12:0 a.m.41 views

ComSndFTP Server Remote Format String Overflow Vulnerability

Title: ComSndFTP Server Remote Format String Overflow Vulnerability Software : ComSndFTP FTP Server Software Version : ComSndFTP 1.3.7 Beta Vendor: http://ftp.comsnd.com/ Vulnerability Published : 2012-06-07 Vulnerability Update Time : Status : Impact : MediumCVSS2 Base : 5.0,...

0.6AI score
Exploits0
exploitpack
exploitpack
added 2012/06/08 12:0 a.m.15 views

ComSndFTP Server 1.3.7 Beta - Remote Format String Overflow

ComSndFTP Server 1.3.7 Beta - Remote Format String Overflow Title: ComSndFTP Server Remote Format String Overflow Vulnerability Software : ComSndFTP FTP Server Software Version : ComSndFTP 1.3.7 Beta Vendor: http://ftp.comsnd.com/ Vulnerability Published : 2012-06-07 Vulnerability Update Time :...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2012/06/08 12:0 a.m.21 views

ComSndFTP 1.3.7 Beta Format String Overflow

Title: ComSndFTP Server Remote Format String Overflow Vulnerability Software : ComSndFTP FTP Server Software Version : ComSndFTP 1.3.7 Beta Vendor: http://ftp.comsnd.com/ Vulnerability Published : 2012-06-07 Vulnerability Update Time : Status : Impact : MediumCVSS2 Base : 5.0,...

Exploits0
securityvulns
securityvulns
added 2010/08/20 12:0 a.m.81 views

NSOADV-2010-005: SonicWALL E-Class SSL-VPN ActiveX Control format string overflow

-------------------------- NSOADV-2010-005 --------------------------- SonicWALL E-Class SSL-VPN ActiveX Control format string overflow 111101111 11111 00110 00110001111 111111 01 01 1 11111011111111 11111 0 11 01 0 11 1 1 111011001 11111111101 1 11 0110111 1 1111101111 1001 0 1 10 11 0 10 11...

8.2AI score
Exploits0
Packet Storm
Packet Storm
added 2010/08/20 12:0 a.m.49 views

SonicWALL E-Class SSL-VPN ActiveX Control Format String Overflow

-------------------------- NSOADV-2010-005 --------------------------- SonicWALL E-Class SSL-VPN ActiveX Control format string overflow 111101111 11111 00110 00110001111 111111 01 01 1 11111011111111 11111 0 11 01 0 11 1 1 111011001 11111111101 1 11 0110111 1 1111101111 1001 0 1 10 11 0 10 11...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2010/08/19 12:0 a.m.41 views

SonicWALL E-Class SSL-VPN - ActiveX Control Format String Overflow

SonicWALL E-Class SSL-VPN - ActiveX Control Format String Overflow -------------------------- NSOADV-2010-005 --------------------------- SonicWALL E-Class SSL-VPN ActiveX Control format string overflow 111101111 11111 00110 00110001111 111111 01 01 1 11111011111111 11111 0 11 01 0 11 1 1 1110110...

Exploits0
Rows per page
Query Builder