MGASA-2016-0358 Updated mpg123 packages fix security vulnerability

Jerold Hoong discovered a flaw in the id3 tag processing code of libmpg123. A specially crafted mp3 input file could be used to cause a buffer over-read, resulting in a denial of service CVE-2016-1000247...

thinksaas最新版存储xss

简要描述： 过滤不当 详细说明： 最新版下载地址http://www.thinksaas.cn/service/down/ 跟前面thinksaas最新版xss2 WooYun: thinksaas最新版xss2 thinksaas最新版xss WooYun: thinksaas最新版xss 原理都一样 吐槽下 官网不让注册帐号 就在本地测试了 前人的我测试一个现在还可以 当然 漏洞文件肯定是不一样的 漏洞文件 在app/article/action/add.php 25行中没有过滤 48行插入数据库 isLogin; switch $ts case "" : if...

CVE-2004-2644

Unspecified vulnerability in ASN.1 Compiler asn1c before 0.9.7 has unknown impact and attack vectors when processing "ANY" type tags...

CVE-2005-0191

Off-by-one buffer overflow in the processing of tags in Real Metadata Package RMP files in RealPlayer 10.5 6.0.12.1040 and earlier could allow remote attackers to execute arbitrary code via a long tag...