Lucene search
K

605 matches found

UbuntuCve
UbuntuCve
added 2016/11/18 8:59 p.m.32 views

CVE-2016-4333

The HDF5 1.8.16 library allocating space for the array using a value from the file has an impact within the loop for initializing said array allowing a value within the file to modify the loop's terminator. Due to this, an aggressor can cause the loop's index to point outside the bounds of the...

8.6CVSS7.2AI score0.00613EPSS
Exploits2References2
OSV
OSV
added 2016/11/18 8:59 p.m.4 views

UBUNTU-CVE-2016-4333

The HDF5 1.8.16 library allocating space for the array using a value from the file has an impact within the loop for initializing said array allowing a value within the file to modify the loop's terminator. Due to this, an aggressor can cause the loop's index to point outside the bounds of the...

8.6CVSS7.2AI score0.00613EPSS
Exploits2References3
Cvelist
Cvelist
added 2016/11/18 8:0 p.m.28 views

CVE-2016-4333

The HDF5 1.8.16 library allocating space for the array using a value from the file has an impact within the loop for initializing said array allowing a value within the file to modify the loop's terminator. Due to this, an aggressor can cause the loop's index to point outside the bounds of the...

8.4AI score0.00613EPSS
Exploits2References4
BDU FSTEC
BDU FSTEC
added 2016/07/05 12:0 a.m.6 views

The vulnerability of Google Chrome browser allows a malicious actor to trigger a service failure.

The Google Chrome browser contains a vulnerability related to incorrect numerical transformations when processing typed arrays. Exploiting this vulnerability allows malicious actors to cause service interruptions access to the array beyond its boundaries or otherwise affect the system by using...

7.5CVSS7.7AI score0.01324EPSS
Exploits0References3Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2016/05/10 12:0 a.m.25 views

(Pwn2Own) Microsoft Edge JavaScript fill Out-Of-Bounds Access Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Edge. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the implementatio...

6.8CVSS2.7AI score0.20081EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2016/01/22 12:0 a.m.31 views

Apple OS X IOAcceleratorFamily2 Out-Of-Bounds Indexing Privilege Escalation Vulnerability

This vulnerability allows local attackers to elevate privileges on vulnerable installations of Apple OS X. User interaction is required to exploit this vulnerability in that the target must open a malicious file. The specific flaw exists within the IOAcceleratorFamily2 interface. The issue lies i...

6.9CVSS3.1AI score0.00353EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2015/10/20 12:0 a.m.27 views

SAP 3D Visual Enterprise Viewer JPEG2000 Out-Of-Bounds Indexing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP 3D Visual Enterprise Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

6.8CVSS6.4AI score0.04074EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/03/25 12:0 a.m.23 views

SuSE 11.3 Security Update : Mozilla Firefox (SAT Patch Number 10524)

Mozilla Firefox was updated to the 31.5.3ESR release to fix two security vulnerabilities : - Security researcher ilxu1a reported, through HP Zero Day Initiative's Pwn2Own contest, a flaw in Mozilla's implementation of typed array bounds checking in JavaScript just-in-time compilation JIT and its...

7.5CVSS8.3AI score0.03677EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2015/03/24 12:0 a.m.35 views

SeaMonkey < 2.33.1 Multiple Vulnerabilities

The version of Mozilla SeaMonkey installed on the remote host is prior to 2.33.1. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists due to an out-of-bounds error in typed array bounds checking within 'asmjs/AsmJSValidate.cpp', which relates to...

7.5CVSS7.8AI score0.03677EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/03/24 12:0 a.m.27 views

Firefox < 36.0.3 JIT Code Execution (Mac OS X)

The version of Mozilla Firefox installed on the remote Mac OS X host is prior to 36.0.3. It is, therefore, affected by a remote code execution vulnerability due to an out-of-bounds error in typed array bounds checking within 'asmjs/AsmJSValidate.cpp', which relates to just-in-time compilation for...

6.8CVSS7.3AI score0.03677EPSS
Exploits0References2
OSV
OSV
added 2015/03/22 11:12 a.m.4 views

USN-2538-1 firefox vulnerabilities

A flaw was discovered in the implementation of typed array bounds checking in the Javascript just-in-time compilation. If a user were tricked in to opening a specially crafted website, an attacked could exploit this to execute arbitrary code with the privileges of the user invoking Firefox...

7.5CVSS7.1AI score0.03677EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2014/04/23 12:0 a.m.21 views

Microsoft Internet Explorer CSS Out-Of-Bounds Indexing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

4.4CVSS6.3AI score0.16894EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2012/04/13 12:0 a.m.27 views

Ubuntu: Security Advisory (USN-1423-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.9AI score0.74034EPSS
Exploits9References2
Ubuntu
Ubuntu
added 2012/04/05 10:29 p.m.59 views

USN-1418-1: GnuTLS vulnerabilities

Alban Crequy discovered that the GnuTLS library incorrectly checked array bounds when copying TLS session data. A remote attacker could crash a client application, leading to a denial of service, as the client application prepared for TLS session resumption. CVE-2011-4128 Matthew Hall discovered...

5CVSS7.5AI score0.04202EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2011/12/05 12:0 a.m.37 views

Debian DSA-2357-1 : evince - several vulnerabilities

Jon Larimer from IBM X-Force Advanced Research discovered multiple vulnerabilities in the DVI backend of the Evince document viewer : - CVE-2010-2640 Insufficient array bounds checks in the PK fonts parser could lead to function pointer overwrite, causing arbitrary code execution. - CVE-2010-2641...

7.6CVSS6.2AI score0.1427EPSS
Exploits0References15
Zero Day Initiative
Zero Day Initiative
added 2011/10/15 12:0 a.m.31 views

Microsoft Internet Explorer Select Element Insufficient Type Checking Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer 8. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within ho...

7.5CVSS3.8AI score0.27959EPSS
Exploits2References1
Zero Day Initiative
Zero Day Initiative
added 2010/08/26 12:0 a.m.37 views

RealNetworks RealPlayer Malformed IVR Object Index Code Execution Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of RealNetworks RealPlayer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists when parsing a RealMed...

10CVSS6.8AI score0.06812EPSS
Exploits1References1
Debian
Debian
added 2008/10/11 6:46 a.m.32 views

[SECURITY] [DSA 1646-2] New squid packages fix array bounds check

------------------------------------------------------------------------ Debian Security Advisory DSA-1646-2 [email protected] http://www.debian.org/security/ Devin Carraway October 11, 2008 http://www.debian.org/security/faq -...

5CVSS6.6AI score0.26858EPSS
Exploits3
Debian
Debian
added 2008/10/11 6:46 a.m.26 views

[SECURITY] [DSA 1646-2] New squid packages fix array bounds check

------------------------------------------------------------------------ Debian Security Advisory DSA-1646-2 [email protected] http://www.debian.org/security/ Devin Carraway October 11, 2008 http://www.debian.org/security/faq -...

5CVSS0.1AI score0.26858EPSS
Exploits3
Debian
Debian
added 2008/10/07 6:12 a.m.26 views

[SECURITY] [DSA-1646-1] New squid packages fix array bounds check

------------------------------------------------------------------------ Debian Security Advisory DSA-1646-1 [email protected] http://www.debian.org/security/ Devin Carraway October 07, 2008 http://www.debian.org/security/faq -...

5CVSS0.1AI score0.26858EPSS
Exploits3
Rows per page
Query Builder