31255 matches found
CVE-2020-6149
A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. To trigger this vulnerability, the victim needs to open an attacker-provided malformed file in an instance in USDC file format PATHS section...
CVE-2020-6147
A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. This instance exists in the USDC file format FIELDS section decompression heap overflow...
CVE-2020-6147
Pixar OpenUSD 20.05 vulnerability CVE-2020-6147 involves heap overflow when parsing USDC binary sections with compression. Four compressed sections (FIELDS, FIELDSETS, PATHS, SPECS) can trigger overflows because allocated buffers depend on file-provided counts while read sizes come from the same ...
CVE-2020-6156
A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. To trigger this vulnerability, the victim needs to open an attacker-provided malformed file in an instance USDC file format path element token index...
CVE-2020-6155
A heap overflow vulnerability exists in the Pixar OpenUSD 20.05 while parsing compressed value rep arrays in binary USD files. A specially crafted malformed file can trigger a heap overflow, which can result in remote code execution. To trigger this vulnerability, the victim needs to access an...
CVE-2020-6155
Pixar OpenUSD 20.05 binary file format vulnerability: two code paths (compressed integer and floating-point arrays) can trigger a heap-based buffer overflow while decoding the reps array in binary USD files. The overflow arises when a size read from the file and a later, larger size are used to a...
CTF-All-In-One
This repository is an offensive tool for CTF Capture The Flag competitions, specifically targeting Linux binary security. The repository contains a collection of tools and resources for learning and practicing binary exploitation, reverse engineering, and other related skills. The repository...
Binary Vulnerability in Rexchip Chips
With a R&D team specializing in system-on-chip design and algorithm research, Rexchip Microelectronics Corporation provides professional chip solutions for high-end intelligent hardware, cell phone peripherals, tablet PCs, TV set-top boxes, industrial control and other fields. A binary...
Apple iOS < 14.2 Multiple Vulnerabilities
Binary data appleios142check.nbin...
Binary Vulnerability in Rexchip Chip (CNVD-2020-67105)
With a R&D team specializing in system-on-chip design and algorithm research, Rexchip Microelectronics Corporation provides professional chip solutions for high-end intelligent hardware, cell phone peripherals, tablet PCs, TV set-top boxes, industrial control and other fields. A binary...
Pixar OpenUSD binary file format compressed sections code execution vulnerabilities
Summary A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. A specially crafted malformed file can trigger a heap overflow which can result in remote code execution. To trigger this vulnerability, the victim needs to open a...
Pixar OpenUSD binary file format offset seek information leak vulnerability
Summary An exploitable vulnerability exists in the way Pixar OpenUSD 20.05 handles file offsets in binary USD files. A specially crafted malformed file can trigger an arbitrary out-of-bounds memory access that could lead to the disclosure of sensitive information. This vulnerability could be used...
Pixar OpenUSD binary file format specs memory corruption
Summary An out-of-bounds memory corruption vulnerability exists in the way Pixar OpenUSD 20.05 uses SPECS data from binary USD files. A specially crafted malformed file can trigger an out-of-bounds memory access and modification which results in memory corruption. To trigger this vulnerability, t...
Pixar OpenUSD Binary File Format Compressed Value Reps Code Execution Vulnerabilities
Summary A heap overflow vulnerability exists in the Pixar OpenUSD 20.05 while parsing compressed value rep arrays in binary USD files. A specially crafted malformed file can trigger a heap overflow, which can result in remote code execution. To trigger this vulnerability, the victim needs to acce...
Pixar OpenUSD Binary File Format Token Strings Information Leak Vulnerability
Summary A heap overflow vulnerability exists in the Pixar OpenUSD 20.05 parsing of compressed string tokens in binary USD files. A specially crafted malformed file can trigger a heap overflow which can result in out of bounds memory access which could lead to information disclosure. This...
Pixar OpenUSD Binary File Format Decompressed Path Rebuilding Memory corruption
Summary An out of bounds memory corruption vulnerability exists in the way Pixar OpenUSD 20.05 reconstructs paths from binary USD files. A specially crafted malformed file can trigger an out of bounds memory modification which can result in remote code execution. To trigger this vulnerability,...
CVE-2020-5992
NVIDIA GeForce NOW application software on Windows, all versions prior to 2.0.25.119, contains a vulnerability in its open-source software dependency in which the OpenSSL library is vulnerable to binary planting attacks by a local user, which may lead to code execution or escalation of privileges...
CVE-2020-5992
NVIDIA GeForce NOW application software on Windows, all versions prior to 2.0.25.119, contains a vulnerability in its open-source software dependency in which the OpenSSL library is vulnerable to binary planting attacks by a local user, which may lead to code execution or escalation of privileges...
Design/Logic Flaw
NVIDIA GeForce NOW application software on Windows, all versions prior to 2.0.25.119, contains a vulnerability in its open-source software dependency in which the OpenSSL library is vulnerable to binary planting attacks by a local user, which may lead to code execution or escalation of privileges...
CVE-2020-5992
CVE-2020-5992 affects the NVIDIA GeForce NOW application for Windows prior to 2.0.25.119. The issue is in an open‑source dependency (OpenSSL) that enables binary planting by a local user, potentially leading to code execution or privilege escalation. NVIDIA released a security update that mitigat...