9293 matches found
gdal: Heap-buffer-overflow in DDFScanInt
Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=4680760109826048 Project: gdal Fuzzer: libFuzzergdalogrfuzzer Fuzz target binary: ogrfuzzer Job Type: libfuzzerasangdal Platform Id: linux Crash Type: Heap-buffer-overflow READ 7 Crash Address:...
WordPress: WordPress Automatic Update Protocol Does Not Authenticate Updates Provided by the Server
When the WordPress automatic update process is initiated likely via wp-cron.php, this is the path the code takes: https://github.com/WordPress/WordPress/blob/4a6f90db58a935abb688cfb91b391dffeda7b35c/wp-admin/includes/class-wp-upgrader.phpL242-L283...
Chrome Browser Hack Opens Door to Credential Theft
A vulnerability in Google’s Chrome browser allows hackers to automatically download a malicious file onto a victim’s PC that could be used to steal credentials and launch SMB relay attacks. Bosko Stankovic, information security engineer at DefenseCode, found the flaw in the default configuration ...
gdal: Heap-buffer-overflow in DDFFieldDefn::ExtractSubstring
Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=5480058187677696 Project: gdal Fuzzer: libFuzzergdalogrfuzzer Fuzz target binary: ogrfuzzer Job Type: libfuzzerasangdal Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 1 Crash Address:...
Exploitable Vulnerabilities: A Metasploit-Vulnerability Management Love Story
Integrating InsightVM or Nexpose Rapid7's vulnerability management solutions with Metasploit our penetration testing solution is a lot like Cupid playing "matchmaker" with vulnerabilities and exploit modules. When a vulnerability scan is imported into Metasploit, many things happen under the hood...
gdal: Heap-buffer-overflow in OGRReadWKBGeometryType
Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=5710786179629056 Project: gdal Fuzzer: libFuzzergdalwkbimportfuzzer Fuzz target binary: wkbimportfuzzer Job Type: libfuzzerasangdal Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Addres...
gdal: Heap-buffer-overflow in VSIFileManager::GetHandler
Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=5535351261102080 Project: gdal Fuzzer: libFuzzergdalfuzzer Fuzz target binary: gdalfuzzer Job Type: libfuzzerasangdal Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address:...
gdal: Heap-buffer-overflow in GTiffOddBitsBand::IReadBlock
Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=5934155684642816 Project: gdal Fuzzer: libFuzzergdalfuzzer Fuzz target binary: gdalfuzzer Job Type: libfuzzerasangdal Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address:...
gdal: Heap-buffer-overflow in NITFGetField
Project: https://github.com/OSGeo/gdal.git Detailed report: https://oss-fuzz.com/testcase?key=5956305300750336 Project: gdal Fuzzer: libFuzzergdalfuzzer Fuzz target binary: gdalfuzzer Job Type: libfuzzerasangdal Platform Id: linux Crash Type: Heap-buffer-overflow READ 5 Crash Address:...
Lenovo Service Bridge Contains Privilege Escalation and Other Vulnerabilities - Lenovo Support US
No description provided...
ffmpeg: Index-out-of-bounds in decode_residual
Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=6246484833992704 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDH264fuzzer Fuzz target binary: ffmpegAVCODECIDH264fuzzer Job Type: libfuzzerubsanffmpeg Platform Id: linux Crash Type: Index-out-of-bounds...
harfbuzz: Index-out-of-bounds in hb_ot_face_glyf_accelerator_t::get_extents
Project: https://github.com/harfbuzz/harfbuzz.git Detailed report: https://oss-fuzz.com/testcase?key=4523479581851648 Project: harfbuzz Fuzzer: libFuzzerharfbuzzhb-fuzzer Fuzz target binary: hb-fuzzer Job Type: libfuzzerubsanharfbuzz Platform Id: linux Crash Type: Index-out-of-bounds Crash Addres...
ffmpeg: Heap-buffer-overflow in y41p_decode_frame
Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=4569970002362368 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDY41Pfuzzer Fuzz target binary: ffmpegAVCODECIDY41Pfuzzer Job Type: libfuzzerasanffmpeg Platform Id: linux Crash Type: Heap-buffer-overflow...
May 2017 security update release
Today, we released security updates to provide additional protections against malicious attackers. By default, Windows 10 receives these updates automatically, and for customers running previous versions, we recommend they turn on automatic updates as a best practice. More information about this...
May 2017 security update release
Today, we released security updates to provide additional protections against malicious attackers. By default, Windows 10 receives these updates automatically, and for customers running previous versions, we recommend they turn on automatic updates as a best practice. More information about this...
Security update for the Windows Kernel Information Disclosure Vulnerability in Windows Server 2008: May 9, 2017
Security update for the Windows Kernel Information Disclosure Vulnerability in Windows Server 2008: May 9, 2017 Summary An information disclosure vulnerability exists when the Windows kernel handles objects in memory incorrectly. An attacker who successfully exploited this vulnerability could...
Security Update for the Windows Kernel Information Disclosure Vulnerability in Windows Server 2008: May 9, 2017
Security Update for the Windows Kernel Information Disclosure Vulnerability in Windows Server 2008: May 9, 2017 Summary An information disclosure vulnerability exists when the Windows kernel handles objects in memory incorrectly. An attacker who successfully exploits this vulnerability could obta...
ffmpeg: Heap-buffer-overflow in vp8_decode_mb_row_no_filter
Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=6314998085189632 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDWEBPfuzzer Fuzz target binary: ffmpegAVCODECIDWEBPfuzzer Job Type: libfuzzerasanffmpeg Platform Id: linux Crash Type: Heap-buffer-overflow...
ffmpeg: Heap-buffer-overflow in ff_htmlmarkup_to_ass
Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5520132195483648 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDSAMIfuzzer Fuzz target binary: ffmpegAVCODECIDSAMIfuzzer Job Type: libfuzzerasanffmpeg Platform Id: linux Crash Type: Heap-buffer-overflow...
Oracle Automatic Service Request "ASR Manager Denial of Service Vulnerability
Automatic Service Request ASR is a secure, scalable, customer-installable warranty software feature and "Oracle Support Service" that provides automatic case generation in the event of common hardware component failures. A denial of service vulnerability exists in Oracle Automatic Service Request...