Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

29 matches found

exploitpack
exploitpackadded 2018/11/06 12:0 a.m.17 views

FaceTime - readSPSandGetDecoderParams Stack Corruption

FaceTime - readSPSandGetDecoderParams Stack Corruption There are a variety of problems that occur when processing malformed H264 streams in readSPSandGetDecoderParams, leading to OOB read, OOB write and stackchk crashes. I think the root cause is stack corruption. This issue can occur if someone...

Exploits0
Tenable Nessus
Tenable Nessusadded 2016/10/11 12:0 a.m.13 views

FreeBSD : FreeBSD -- Heap overflow vulnerability in bspatch (ce808022-8ee6-11e6-a590-14dae9d210b8)

The implementation of bspatch is susceptible to integer overflows with carefully crafted input, potentially allowing an attacker who can control the patch file to write at arbitrary locations in the heap. This issue was partially addressed in FreeBSD-SA-16:25.bspatch, but some possible integer...

5.9AI score
Exploits0References1
FreeBSD
FreeBSDadded 2016/10/10 12:0 a.m.16 views

FreeBSD -- Heap overflow vulnerability in bspatch

Problem Description: The implementation of bspatch is susceptible to integer overflows with carefully crafted input, potentially allowing an attacker who can control the patch file to write at arbitrary locations in the heap. This issue was partially addressed in FreeBSD-SA-16:25.bspatch, but som...

3AI score
Exploits0
FreeBSD Advisory
FreeBSD Advisoryadded 2016/10/10 12:0 a.m.5 views

FreeBSD-SA-16:29.bspatch

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-16:29.bspatch Security Advisory The FreeBSD Project Topic: Heap overflow vulnerability in bspatch Category: core Module: bsdiff Announced: 2016-10-10 Affects:...

6.1AI score
Exploits0
Check Point Advisories
Check Point Advisoriesadded 2016/08/23 12:0 a.m.1 views

FreeBSD bspatch Utility Remote Code Execution (CVE-2014-9862)

A remote code execution vulnerability has been reported in the bspatch utility in FreeBSD. The vulnerability is due to improper validation on the numbers of bytes to read from diff and extra stream values. A remote attacker can exploit this vulnerability by enticing the target user to download an...

7.2CVSS4.8AI score0.09005EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2016/08/12 12:0 a.m.27 views

FreeBSD : FreeBSD -- Heap vulnerability in bspatch (7d4f4955-600a-11e6-a6c3-14dae9d210b8)

The implementation of bspatch does not check for a negative value on numbers of bytes read from the diff and extra streams, allowing an attacker who can control the patch file to write at arbitrary locations in the heap. This issue was first discovered by The Chromium Project and reported...

7.8CVSS7.2AI score0.09005EPSS
Exploits0References2
FreeBSD Advisory
FreeBSD Advisoryadded 2016/07/25 12:0 a.m.14 views

FreeBSD-SA-16:25.bspatch

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-16:25.bspatch Security Advisory The FreeBSD Project Topic: Heap vulnerability in bspatch Category: core Module: bsdiff Announced: 2016-07-25 Affects: All...

7.8CVSS7.3AI score0.09005EPSS
Exploits0
FreeBSD
FreeBSDadded 2016/07/25 12:0 a.m.36 views

FreeBSD -- Heap vulnerability in bspatch

Problem Description: The implementation of bspatch does not check for a negative value on numbers of bytes read from the diff and extra streams, allowing an attacker who can control the patch file to write at arbitrary locations in the heap. This issue was first discovered by The Chromium Project...

7.8CVSS8AI score0.09005EPSS
Exploits0
UbuntuCve
UbuntuCveadded 2016/07/22 2:59 a.m.21 views

CVE-2014-9862

Integer signedness error in bspatch.c in bspatch in bsdiff, as used in Apple OS X before 10.11.6 and other products, allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow via a crafted patch file...

7.8CVSS7.3AI score0.09005EPSS
Exploits0References7
Rows per page
Query Builder