31256 matches found
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd) as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in _bfd_elf_slurp_version_tables in elf.c.
...
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd) as distributed in GNU Binutils 2.32. It is a heap-based buffer overflow in _bfd_archive_64_bit_slurp_armap in archive64.c.
...
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd) as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in elf_read_notes in elf.c.
...
Google Chrome < 84.0.4147.135 Vulnerability
Binary data 701284.pasl...
wabt:wasm2wat_fuzzer: Segv on unknown address in wabt::BinaryReader::PrintError
Detailed Report: https://oss-fuzz.com/testcase?key=4710620126248960 Project: wabt Fuzzing Engine: libFuzzer Fuzz Target: wasm2watfuzzer Job Type: libfuzzermsanwabt Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State: wabt::BinaryReader::PrintError...
Microsoft Internet Information Services (IIS) Installed
Binary data microsoftiisinstalled.nbin...
Adobe Lightroom Classic Installed
Binary data adobelightroomclassicinstalled.nbin...
Nautilus - A Grammar Based Feedback Fuzzer
Nautilus is a coverage guided, grammar based fuzzer. You can use it to improve your test coverage and find more bugs. By specifying the grammar of semi valid inputs, Nautilus is able to perform complex mutation and to uncover more interesting test cases. Many of the ideas behind this fuzzer are...
CVE-2020-13178
A function in the Teradici PCoIP Standard Agent for Windows and Graphics Agent for Windows prior to version 20.04.1 does not properly validate the signature of an external binary, which could allow an attacker to gain elevated privileges via execution in the context of the PCoIP Agent process...
Hardcoded credentials
The support bundler in Teradici PCoIP Standard Agent for Windows and Graphics Agent for Windows versions prior to 20.04.1 and 20.07.0 does not use hard coded paths for certain Windows binaries, which allows an attacker to gain elevated privileges via execution of a malicious binary placed in the...
Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in Microsoft
PoC exploit for CVE-2020-1048. It is an exploit targeting a bina...
pwntools
This is an offensive tool for exploit development and CTF Capture The Flag framework. The tool is called pwntools and is used for exploit development and CTF challenges. It provides a set of tools and libraries for exploiting vulnerabilities and solving CTF challenges. The tool is written in Pyth...
Google Chrome < 84.0.4147.125 Multiple Vulnerabilities
Binary data 701283.pasl...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Google Chrome
CVE-2020-6514 The exploit When writing the exploit, I origina...
CTF-challenges-by-me
This is an offensive tool for CTF challenges. It is a collection of exploits and challenges from various CTF events, including 0ctffinal-2017 and 0ctfquals-2018. The repository contains a variety of challenges, including web security, pwnable, and cryptography challenges. The challenges are...
AZL-79098 CVE-2020-16845 affecting package golang 1.25.7-1
Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs...
CVE-2020-16845
Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs...
CVE-2020-16845
Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs...
DEBIAN-CVE-2020-16845
Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs...
Design/Logic Flaw
Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs...