Lucene search
K

32 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:46 p.m.9 views

CVE-2026-42476

Two heap-based out-of-bounds read vulnerabilities in the STL ASCII file parser in Open CASCADE Technology OCCT V800rc5 exist in RWStlReader::ReadAscii because buffers returned by StandardReadLineBuffer::ReadLine are not properly length-validated before strncasecmp or direct byte access...

7.1CVSS5.5AI score0.00106EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/05/01 3:16 p.m.68 views

CVE-2026-42476

Two heap-based out-of-bounds read vulnerabilities in the STL ASCII file parser in Open CASCADE Technology OCCT V800rc5 exist in RWStlReader::ReadAscii because buffers returned by StandardReadLineBuffer::ReadLine are not properly length-validated before strncasecmp or direct byte access...

7.1CVSS5.8AI score0.00106EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/01 12:0 a.m.28 views

CVE-2026-42476

Two heap-based out-of-bounds read vulnerabilities in the STL ASCII file parser in Open CASCADE Technology OCCT V800rc5 exist in RWStlReader::ReadAscii because buffers returned by StandardReadLineBuffer::ReadLine are not properly length-validated before strncasecmp or direct byte access...

0.00106EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/02 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2024-23948

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple improper array index validation vulnerabilities exist in the readMSH functionality of libigl v2.5.0. A specially crafted .msh file can lead to an...

8.8CVSS5.9AI score0.00916EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:7 a.m.5 views

SUSE CVE-2008-3863

Stack-based buffer overflow in the readspecialescape function in src/psgen.c in GNU Enscript 1.6.1 and 1.6.4 beta, when the -e aka special escapes processing option is enabled, allows user-assisted remote attackers to execute arbitrary code via a crafted ASCII file, related to the setfilename...

7.6CVSS8.3AI score0.08358EPSS
Exploits1References5
Veracode
Veracode
added 2020/04/10 12:29 a.m.19 views

Arbitrary Code Execution

enscript is vulnerable to arbitrary code execution. The vulnerability exists as two buffer overflow flaws were found in GNU enscript. An attacker could craft an ASCII file in such a way that it could execute arbitrary commands if the file was opened with enscript with the "special escapes" option...

7.6CVSS3.8AI score0.08358EPSS
Exploits1References34Affected Software1
CNVD
CNVD
added 2020/03/11 12:0 a.m.2 views

Johnson Controls Metasys XML External Entity Injection Vulnerability

Johnson Controls Metasys is a building automation system from Johnson Controls. The system can be networked with weak electronic systems such as fire and security through a variety of open protocols or standard interfaces to provide system integrity for secure access. An XML external entity...

9.1CVSS7.3AI score0.01286EPSS
Exploits0References1
Prion
Prion
added 2020/03/10 8:15 p.m.21 views

Xxe

XXE vulnerability exists in the Metasys family of product Web Services which has the potential to facilitate DoS attacks or harvesting of ASCII server files. This affects Johnson Controls' Metasys Application and Data Server ADS, ADS-Lite versions 10.1 and prior; Metasys Extended Application and...

6.4CVSS9.1AI score0.01286EPSS
Exploits0References2Affected Software13
Hacker One
Hacker One
added 2016/04/27 10:4 p.m.411 views

HackerOne: RCE in profile picture upload

Issue ===== The profile picture upload at /settings/profile/edit is vulnerable to remote code execution due to the uploaded file being passed to ImageMagick without checking whether it's an actual image. Combined with the fact that ImageMagick parses ASCII text as so called MVG Magic Vector...

0.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/10/12 12:0 a.m.25 views

Amazon Linux AMI : php54 (ALAS-2014-333)

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a large amount of...

5CVSS8AI score0.0304EPSS
Exploits1References2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

ProFTPD <= 1.2.9 rc2 (ASCII File) Remote Root Exploit

No description provided by source. ProFTPd remote root exploit solareclipse at phreedom dot org GPG key ID: E36B11B7 http://www.exploit-db.com/sploits/12262006-proftpd-not-pro-enough.tar.gz milw0rm.com 2003-10-15...

7.1AI score
Exploits0
Amazon
Amazon
added 2014/05/21 12:0 a.m.68 views

Medium: php54

Issue Overview: The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a...

5CVSS8.5AI score0.0304EPSS
Exploits1
Amazon
Amazon
added 2014/04/25 12:0 a.m.58 views

Medium: php55

Issue Overview: The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a...

5CVSS8.5AI score0.0304EPSS
Exploits1
Amazon
Amazon
added 2014/04/10 12:0 a.m.46 views

Medium: file

Issue Overview: The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a...

5CVSS8.5AI score0.0304EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2014/04/08 12:0 a.m.55 views

PHP 5.5.x < 5.5.11 awk Magic Parsing BEGIN DoS

According to its banner, the version of PHP 5.5.x installed on the remote host is a version prior to 5.5.11. It is, therefore, potentially affected by a denial of service vulnerability. A flaw exists in the awk script detector within magic/Magdir/commands where multiple wildcards with unlimited...

5CVSS7.9AI score0.0304EPSS
Exploits1References2
Mageia
Mageia
added 2014/03/31 7:34 p.m.61 views

Updated file packages fix security vulnerabilities

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a large amount of...

5CVSS4.9AI score0.0304EPSS
Exploits1References2
Prion
Prion
added 2014/03/24 4:31 p.m.24 views

Design/Logic Flaw

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a large amount of...

5CVSS6.4AI score0.0304EPSS
Exploits1References6Affected Software3
UbuntuCve
UbuntuCve
added 2014/03/24 12:0 a.m.41 views

CVE-2013-7345

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a large amount of...

5CVSS7.1AI score0.0304EPSS
Exploits1References5
Cvelist
Cvelist
added 2014/03/23 3:0 p.m.34 views

CVE-2013-7345

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a large amount of...

8.9AI score0.0304EPSS
Exploits1References6
Debian CVE
Debian CVE
added 2014/03/23 3:0 p.m.38 views

CVE-2013-7345

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a large amount of...

5CVSS8.3AI score0.0304EPSS
Exploits1
Rows per page
Query Builder