Lucene search
+L

197 matches found

seebug.org
seebug.org
added 2017/09/19 12:0 a.m.40 views

AntennaHouse DMC HTMLFilter DHFSummary Code Execution Vulnerability(CVE-2016-8384)

Summary An exploitable heap corruption vulnerability exists in the DHFSummary functionality of AntennaHouse DMC HTMLFilter. A specially crafted doc file can cause a heap corruption resulting in arbitrary code execution. An attacker can provide a malicious doc file to trigger this vulnerability...

9.5AI score0.01535EPSS
Exploits2
seebug.org
seebug.org
added 2017/09/18 12:0 a.m.45 views

AntennaHouse DMC HTMLFilter Doc_SetSummary Code Execution Vulnerability(CVE-2016-8382)

Summary An exploitable heap corruption vulnerability exists in the DocSetSummary functionality of AntennaHouse DMC HTMLFilter. A specially crafted doc file can cause a heap corruption resulting in arbitrary code execution. An attacker can send a malicious doc file to trigger this vulnerability...

9.5AI score0.02124EPSS
Exploits2
seebug.org
seebug.org
added 2017/09/18 12:0 a.m.47 views

AntennaHouse DMC HTMLFilter AddSst Code Execution Vulnerability(CVE-2017-2799)

Summary An exploitable heap corruption vulnerability exists in the AddSst functionality of AntennaHouse DMC HTMLFilter as used by MarkLogioc 8.0-6. A specially crafted XLS file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide a malicious XLS file to...

6.8CVSS8.4AI score0.01328EPSS
Exploits2
seebug.org
seebug.org
added 2017/09/12 12:0 a.m.46 views

Ledger CLI Tags Parsing Code Execution Vulnerability(CVE-2017-2807)

Summary An exploitable buffer overflow vulnerability exists in the tag parsing functionality of Ledger-CLI 3.1.1. A specially crafted journal file can cause a integer underflow resulting in code execution. An attacker can construct a malicious journal file to trigger this vulnerability. Tested...

6.8CVSS8.2AI score0.01974EPSS
Exploits1
Talos
Talos
added 2017/08/30 12:0 a.m.66 views

Ledger CLI Tags Parsing Code Execution Vulnerability

Summary An exploitable buffer overflow vulnerability exists in the tag parsing functionality of Ledger-CLI 3.1.1. A specially crafted journal file can cause a integer underflow resulting in code execution. An attacker can construct a malicious journal file to trigger this vulnerability. Tested...

7.8CVSS7.8AI score0.01974EPSS
Exploits1
myhack58
myhack58
added 2017/08/09 12:0 a.m.53 views

See my how-to the Apache fuzzing and dig to a value of 1500 knife of vulnerability-vulnerability warning-the black bar safety net

Target In the AFL in the view of the Apache httpd server's crash logs, I found a lot of problems. For example, some crash testing with example in fuzz testing tools internal collapse, but also affect the test program stability. In this article, I will talk to you to explain the test case to crash...

7.8AI score
Exploits0
Mageia
Mageia
added 2017/07/28 6:12 p.m.67 views

Updated valgrind packages fix security vulnerabilities

It was discovered that Valgrind incorectly handled certain string operations. If a user or automated system were tricked into processing a specially crafted binary, a remote attacker could possibly execute arbitrary code CVE-2016-2226. It was discovered that Valgrind incorrectly handled parsing...

7.8CVSS3AI score0.07267EPSS
Exploits1References2
OSV
OSV
added 2017/07/28 6:12 p.m.7 views

MGASA-2017-0222 Updated valgrind packages fix security vulnerabilities

It was discovered that Valgrind incorectly handled certain string operations. If a user or automated system were tricked into processing a specially crafted binary, a remote attacker could possibly execute arbitrary code CVE-2016-2226. It was discovered that Valgrind incorrectly handled parsing...

7.8CVSS6.2AI score0.07267EPSS
Exploits1References3
0day.today
0day.today
added 2017/07/07 12:0 a.m.71 views

LibTIFF - _TIFFVGetField (tiffsplit) Out-of-Bounds Read Exploit

Exploit for linux platform in category dos / poc Source: http://bugzilla.maptools.org/showbug.cgi?id=2693 On 4.0.7: tiffsplit $FILE ==2007== Invalid read of size 4 ==2007== at 0x40CD1A: TIFFVGetField tifdir.c:1072 ==2007== by 0x41B2C5: TIFFVGetField tifdir.c:1198 ==2007== by 0x41B2C5: TIFFGetFiel...

4.3CVSS7.2AI score0.07EPSS
Exploits1
exploitpack
exploitpack
added 2017/07/06 12:0 a.m.15 views

LibTIFF - _TIFFVGetField (tiffsplit) Out-of-Bounds Read

LibTIFF - TIFFVGetField tiffsplit Out-of-Bounds Read Source: http://bugzilla.maptools.org/showbug.cgi?id=2693 On 4.0.7: tiffsplit $FILE ==2007== Invalid read of size 4 ==2007== at 0x40CD1A: TIFFVGetField tifdir.c:1072 ==2007== by 0x41B2C5: TIFFVGetField tifdir.c:1198 ==2007== by 0x41B2C5:...

0.4AI score
Exploits0
OpenVAS
OpenVAS
added 2017/06/22 12:0 a.m.33 views

Ubuntu: Security Advisory (USN-3337-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS5.7AI score0.07267EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2017/06/22 12:0 a.m.60 views

Ubuntu 14.04 LTS / 16.04 LTS : Valgrind vulnerabilities (USN-3337-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3337-1 advisory. It was discovered that Valgrind incorrectly handled certain string operations. If a user or automated system were tricked into processing a...

7.8CVSS6.5AI score0.07267EPSS
Exploits1References10
OSV
OSV
added 2017/06/21 5:37 p.m.7 views

USN-3337-1 valgrind vulnerabilities

It was discovered that Valgrind incorrectly handled certain string operations. If a user or automated system were tricked into processing a specially crafted binary, a remote attacker could possibly execute arbitrary code. This issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu...

7.8CVSS6.3AI score0.07267EPSS
Exploits1References10
Ubuntu
Ubuntu
added 2017/06/21 5:37 p.m.66 views

USN-3337-1: Valgrind vulnerabilities

It was discovered that Valgrind incorrectly handled certain string operations. If a user or automated system were tricked into processing a specially crafted binary, a remote attacker could possibly execute arbitrary code. This issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu...

7.8CVSS6.1AI score0.07267EPSS
Exploits1
Talos
Talos
added 2017/05/04 12:0 a.m.34 views

AntennaHouse DMC HTMLFilter PPT ParseEnvironment Code Execution Vulnerability

Summary An exploitable heap overflow vulnerability exists in the ParseEnvironment functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted PPT file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide malicious PPT fil...

8.3CVSS8.5AI score0.00917EPSS
Exploits2
Talos
Talos
added 2017/05/04 12:0 a.m.36 views

AntennaHouse DMC HTMLFilter UnCompressUnicode Code Execution Vulnerability

Summary An exploitable heap corruption vulnerability exists in the UnCompressUnicode functionality of AntennaHouse DMC HTMLFilter used by MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide malicious XLS fil...

8.3CVSS8.5AI score0.01432EPSS
Exploits2
Talos
Talos
added 2017/05/04 12:0 a.m.46 views

AntennaHouse DMC HTMLFilter FillRowFormat Code Execution Vulnerability

Summary An exploitable heap corruption vulnerability exists in the FillRowFormat functionality of AntennaHouse DMC HTMLFilter that is shipped with MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide maliciou...

8.3CVSS8.4AI score0.01328EPSS
Exploits2
Talos
Talos
added 2017/05/04 12:0 a.m.34 views

AntennaHouse DMC HTMLFilter Doc_SetSummary Code Execution Vulnerability

AntennaHouse DMC HTMLFilter DocSetSummary Code Execution Vulnerability Summary An exploitable heap corruption vulnerability exists in the DocSetSummary functionality of AntennaHouse DMC HTMLFilter. A specially crafted doc file can cause a heap corruption resulting in arbitrary code execution. An...

8.8CVSS9.2AI score0.02124EPSS
Exploits2
Talos
Talos
added 2017/05/04 12:0 a.m.39 views

AntennaHouse DMC HTMLFilter iBldDirInfo Code Execution Vulnerability

Summary An exploitable heap corruption vulnerability exists in the iBldDirInfo functionality of AntennaHouse DMC HTMLFilter used by MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can provide a malicious xls file to...

9.6CVSS9.4AI score0.01457EPSS
Exploits1
Oracle linux
Oracle linux
added 2017/03/27 12:0 a.m.47 views

wireshark security and bug fix update

1.8.10-25.0.1 - Fix ocfs2 dissector John Haxby orabug 21505640 - Add oracle-ocfs2-network.patch to allow disassembly of OCFS2 interconnect 1.8.10-25 - rebuilt 1.8.10-24 - Related: 1245887 - segfault with CVE-2013-4075 capture - valgrind error with CVE-2015-3812 capture 1.8.10-23 - Resolves: 12381...

7.8CVSS0.5AI score0.03731EPSS
Exploits0
Rows per page
Query Builder