CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

exploitpack•added 2016/05/26 12:0 a.m.•17 views

Graphite2 - TtfUtil::CmapSubtable4NextCodepoint Heap Overread

Graphite2 - TtfUtil::CmapSubtable4NextCodepoint Heap Overread Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=755 The following crash due to a heap-based buffer overread can be observed in an ASAN build of the standard Graphite2 gr2FontTest utility git trunk, triggered with the...

Exploit DB•added 2016/05/26 12:0 a.m.•31 views

Graphite2 - TtfUtil::CheckCmapSubtable12 Heap Overread

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=752 The following crash due to a heap-based buffer overread can be observed in an ASAN build of the standard Graphite2 gr2FontTest utility git trunk, triggered with the following command: $ ./gr2fonttest /path/to/file -auto --- cut...

Exploit DB•added 2016/05/26 12:0 a.m.•31 views

Graphite2 - TtfUtil::CmapSubtable4NextCodepoint Heap Overread

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=755 The following crash due to a heap-based buffer overread can be observed in an ASAN build of the standard Graphite2 gr2FontTest utility git trunk, triggered with the following command: $ ./gr2fonttest /path/to/file -auto --- cut...

0day.today•added 2016/05/26 12:0 a.m.•50 views

Graphite2 - TtfUtil::CmapSubtable4NextCodepoint Heap Based Overread

Exploit for multiple platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=755 The following crash due to a heap-based buffer overread can be observed in an ASAN build of the standard Graphite2 gr2FontTest utility git trunk, triggered with the following...

7.1AI score

exploitpack•added 2016/05/26 12:0 a.m.•15 views

Graphite2 - TtfUtil::CheckCmapSubtable12 Heap Overread

Graphite2 - TtfUtil::CheckCmapSubtable12 Heap Overread Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=752 The following crash due to a heap-based buffer overread can be observed in an ASAN build of the standard Graphite2 gr2FontTest utility git trunk, triggered with the followi...

BDU FSTEC•added 2016/03/31 12:0 a.m.•4 views

The vulnerabilities of Firefox ESR and Firefox, the rendering software Graphite 2, allow attackers to induce service failures or exert other effects.

The vulnerability of the graphite2::TtfUtil::CmapSubtable12Lookup function TtfUtil.cpp for Firefox ESR and Firefox browsers can be exploited due to buffer overflows. Exploiting this vulnerability may allow an attacker to cause service interruptions or other effects by using a specially crafted...

6.8CVSS0.00565EPSS

Exploits0References3Affected Software3

Tenable Nessus•added 2016/03/17 12:0 a.m.•38 views

SUSE SLED12 / SLES12 Security Update : graphite2 (SUSE-SU-2016:0779-1)

This update for graphite2 fixes the following issues : - CVE-2016-1521: The directrun function in directmachine.cpp in Libgraphite did not validate a certain skip operation, which allowed remote attackers to execute arbitrary code, obtain sensitive information, or cause a denial of service...

8.8CVSS7.8AI score0.01341EPSS

Exploits0References10

BDU FSTEC•added 2016/03/17 12:0 a.m.•2 views

The vulnerability of Firefox ESR, the rendering software Graphite 2, and the Thunderbird email client, which allows a hacker to trigger a service failure or obtain confidential information.

The vulnerability of the TtfUtil:LocaLookup function in the Firefox ESR browser, the Graphite 2 rendering software, and the Thunderbird email client is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor to obtain confidential information ...

5.8CVSS0.00759EPSS

Exploits0References3Affected Software3

NVD•added 2016/03/13 6:59 p.m.•18 views

CVE-2016-2801

The graphite2::TtfUtil::CmapSubtable12Lookup function in TtfUtil.cpp in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via a crafted...

8.8CVSS9.6AI score0.00565EPSS

NVD•added 2016/03/13 6:59 p.m.•17 views

CVE-2016-2794

The graphite2::TtfUtil::CmapSubtable12NextCodepoint function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via a crafted Graphite...

9.3CVSS9.5AI score0.00875EPSS

Prion•added 2016/03/13 6:59 p.m.•33 views

Design/Logic Flaw

The graphite2::TtfUtil::CmapSubtable12Lookup function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via a crafted Graphite smart...

6.8CVSS8.8AI score0.00565EPSS

Exploits0References26Affected Software7

Prion•added 2016/03/13 6:59 p.m.•19 views

Design/Logic Flaw

6.8CVSS8.8AI score0.00565EPSS

Exploits0References26Affected Software7

Prion•added 2016/03/13 6:59 p.m.•15 views

Design/Logic Flaw

9.3CVSS7.8AI score0.00875EPSS

Exploits0References26Affected Software7

Cvelist•added 2016/03/13 6:0 p.m.•24 views

CVE-2016-2797

9.7AI score0.00562EPSS

Cvelist•added 2016/03/13 6:0 p.m.•25 views

CVE-2016-2801

9.7AI score0.00565EPSS