Lucene search
K

31254 matches found

OSV
OSV
added 2020/12/02 6:15 p.m.7 views

CVE-2020-13493

A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. A specially crafted USDC file format path jumps decompression heap overflow in a way path jumps are processed. To trigger this vulnerability, the victim needs to open an...

7.8CVSS6.9AI score
Exploits0References1
NVD
NVD
added 2020/12/02 6:15 p.m.16 views

CVE-2020-13493

A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. A specially crafted USDC file format path jumps decompression heap overflow in a way path jumps are processed. To trigger this vulnerability, the victim needs to open an...

8.8CVSS8AI score0.0133EPSS
Exploits1References1
Prion
Prion
added 2020/12/02 6:15 p.m.19 views

Heap overflow

A heap overflow vulnerability exists in the Pixar OpenUSD 20.05 parsing of compressed string tokens in binary USD files. A specially crafted malformed file can trigger a heap overflow which can result in out of bounds memory access which could lead to information disclosure. This vulnerability...

4.3CVSS5.3AI score0.01164EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2020/12/02 6:15 p.m.26 views

Heap overflow

A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. A specially crafted USDC file format path jumps decompression heap overflow in a way path jumps are processed. To trigger this vulnerability, the victim needs to open an...

6.8CVSS7.6AI score0.0133EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/12/02 5:25 p.m.17 views

CVE-2020-13493

A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. A specially crafted USDC file format path jumps decompression heap overflow in a way path jumps are processed. To trigger this vulnerability, the victim needs to open an...

8.8CVSS7.7AI score0.0133EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2020/12/02 4:36 p.m.3 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

7.5CVSS7.2AI score0.0473EPSS
Exploits0References5
Gitee
Gitee
added 2020/12/02 11:16 a.m.3 views

Exploit for Race Condition in Canonical Ubuntu_Linux

This is a PoC exploit for CVE-2016-5195, also known as the Dirty Cow vulnerability. The exploit targets Linux systems and uses the Dirty Cow vulnerability to gain root access. The vulnerability allows an attacker to write to a read-only page in memory, which can be used to execute arbitrary code...

7.2CVSS7.8AI score0.83524EPSS
Exploits81
CNVD
CNVD
added 2020/12/02 12:0 a.m.3 views

Binary Vulnerability in ZTE UC TP220 Upper PC Screen Setting Tool

Shenzhen Zhongda U-control Technology Co., Ltd. is an industrial visual touch control products - human-machine interface, text display, programmable logic controller PLC core technology research and development and overcome, professional development, sales as one of the high-tech enterprises. A...

7AI score
Exploits0
CNVD
CNVD
added 2020/12/02 12:0 a.m.3 views

Binary Vulnerability in ZTE UC TP220 Upper PC Screen Setting Tool (CNVD-2020-70592)

Shenzhen Zhongda U-control Technology Co., Ltd. is an industrial visual touch control products - human-machine interface, text display, programmable logic controller PLC core technology research and development and overcome, professional development, sales as one of the high-tech enterprises. A...

7AI score
Exploits0
CNVD
CNVD
added 2020/12/02 12:0 a.m.2 views

Binary Vulnerability in CenturyStar Configuration Software

Beijing Century Changqiu Technology Co., Ltd. is a high-tech enterprise engaged in industrial automation software research and development, providing software development, sales, service and industrial automation system integration and other complete set of services and so on. Century Star...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/12/02 12:0 a.m.9 views

Middleware Configuration Detection (Linux / Unix)

Binary data middlewareconfignixinstalled.nbin...

7.3AI score
Exploits0
Positive Technologies
Positive Technologies
added 2020/12/02 12:0 a.m.6 views

PT-2020-13571 · Pixar · Pixar Openusd

Name of the Vulnerable Software and Affected Versions: Pixar OpenUSD version 20.05 Description: A heap overflow issue exists when the software parses compressed sections in binary USD files. This occurs due to the way path jumps are processed in specially crafted USDC file formats, leading to a...

8.8CVSS8.2AI score0.0133EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2020/12/02 12:0 a.m.5 views

PT-2020-13572 · Pixar · Pixar Openusd

Name of the Vulnerable Software and Affected Versions: Pixar OpenUSD version 20.05 Description: A heap overflow issue exists in the parsing of compressed string tokens in binary USD files. This can be triggered by a specially crafted malformed file, leading to out of bounds memory access and...

5.5CVSS4.7AI score0.01164EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2020/12/01 12:0 a.m.15 views

Cisco DNA Spaces Connector Web Detection.

Binary data ciscodnaspacesconnectorwebdetect.nbin...

7.3AI score
Exploits0
CNVD
CNVD
added 2020/12/01 12:0 a.m.10 views

Binary Vulnerability in Zhongda UC YKBuilder V5.1

YKBuilder is a software for constructing embedded integrated development software. A binary vulnerability exists in ZTE YKBuilder V5.1. An attacker can exploit this vulnerability to construct malformed files that could cause the program to crash...

6.9AI score
Exploits0
RedHat Linux
RedHat Linux
added 2020/11/30 3:6 p.m.4 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

7.5CVSS7.2AI score0.0473EPSS
Exploits0References5
Kitploit
Kitploit
added 2020/11/27 8:30 p.m.77 views

DNSx - A Fast And Multi-Purpose DNS Toolkit Allow To Run Multiple DNS Queries Of Your Choice With A List Of User-Supplied Resolvers

dnsx is a fast and multi-purpose DNS toolkit allow to run multiple probers using retryabledns library, that allows you to perform multiple DNS queries of your choice with a list of user supplied resolvers. dnsx is successor of dnsprobe that includes new features, multiple bugs fixes, and tailored...

7.3AI score
Exploits0References6
CNVD
CNVD
added 2020/11/27 12:0 a.m.2 views

Binary Vulnerability in Kermel Computer Activity Monitor

Kermel Computer Activity Monitor is a software that tracks all Internet activity, including browsing history, pages visited, access times and usernames. Features include monitoring an unlimited number of computers at the same time, performing stealth monitoring in a completely hidden manner, taki...

7AI score
Exploits0
0day.today
0day.today
added 2020/11/26 12:0 a.m.47 views

Razer Chroma SDK Server 3.16.02 - Race Condition Remote File Execution Exploit

Exploit Title: Razer Chroma SDK Server 3.16.02 - Race Condition Remote File Execution Exploit Author: Loke Hui Yi Vendor Homepage: https://razerid.razer.com Software Link: http://rzr.to/synapse-3-pc-download Version: , and create an exe file with the same application's name in that folder. The Ap...

8.1CVSS8.2AI score0.05989EPSS
Exploits4
CNVD
CNVD
added 2020/11/25 12:0 a.m.0 views

Binary Vulnerability in TP Manager, HMI Software from Tengen Controls

The HMI software TP Manager is a software product of TENGCONTROL TECHNOLOGY China. A binary vulnerability exists in TP Manager, which can be exploited by attackers to cause a denial of service...

6.7AI score
Exploits0
Rows per page
Query Builder