Rizin 缓冲区错误漏洞

Rizin is a free open source reverse engineering framework from the Rizin organization. It is used for analyzing binary files, disassembling code, debugging programs, as a forensic tool, as a scriptable command-line hex editor capable of opening disk files, and more. A security vulnerability exist...

The vulnerability in the web interface for managing microprogrammed software routers of Cisco Small Business RV110W, RV130, RV130W, and RV215W allows a perpetrator to execute arbitrary commands or cause service failures.

The vulnerability in the web interface for managing microprogrammed software routers of Cisco Small Business RV110W, RV130, RV130W, and RV215W arises from the copying of buffers without checking the size of the input data during the processing of user fields in incoming HTTP packets. Exploiting...

The vulnerability in the JavaScript script handler of Firefox browsers, Firefox ESR, and the email client Thunderbird allows a hacker to execute arbitrary code.

The vulnerability of JavaScript script handlers in Firefox, Firefox ESR, and the email client Thunderbird lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by opening a specially crafted...

CVE-2022-2320

A flaw was found in the Xorg-x11-server. The specific flaw exists within the handling of ProcXkbSetDeviceInfo requests. The issue results from the lack of proper validation of user-supplied data, which can result in a memory access past the end of an allocated buffer. This flaw allows an attacker...

The vulnerability of the PDF-XChange PDF document viewing and editing program, related to the occurrence of operations outside the buffer in memory, allows a hacker to execute arbitrary code.

The vulnerability of the PDF document viewing and editing software PDF-XChange lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created malicious J2K file...

The vulnerability in the web interface for managing microprogrammed software routers of Cisco Small Business RV110W, RV130, RV130W, and RV215W allows a perpetrator to execute arbitrary commands or cause service failures.

The vulnerability in the web interface for managing microprogrammed software routers of Cisco Small Business RV110W, RV130, RV130W, and RV215W lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary...

The vulnerability of the PDF-XChange PDF document viewing and editing program, related to the occurrence of operations outside the buffer in memory, allows a hacker to execute arbitrary code.

The vulnerability of the PDF document viewing and editing software PDF-XChange lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created malicious JPG file...

The vulnerability of the PDF-XChange PDF document viewing and editing program, related to the occurrence of operations outside the buffer in memory, allows a hacker to execute arbitrary code.

The vulnerability of the PDF document viewing and editing software PDF-XChange lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created malicious EMF file...

The vulnerability of the software for creating FvDesigner operator panels is related to the execution of an operation beyond the buffer boundaries in memory, allowing a hacker to execute arbitrary code.

The vulnerability of the FvDesigner software for creating operator panels is related to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability allows a perpetrator to execute arbitrary code using a specially created malicious file...

Ubuntu: Security Advisory (USN-3685-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat, and Adobe Acrobat Reader lies in the fact that the write-off operation beyond the buffer is possible in memory, allowing an attacker to execute arbitrary code.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat, and Adobe Acrobat Reader are related to the execution of write operations beyond the buffer in memory. Exploiting these vulnerabilities can allow...

The vulnerability of the Adobe Framemaker desktop publishing system arises from the possibility of an operation going beyond the buffer boundaries in memory, allowing a hacker to execute arbitrary code.

The vulnerability of the Adobe Framemaker desktop publishing system lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created malicious file...

The vulnerability of the Adobe Framemaker desktop publishing system arises from the possibility of an operation going beyond the buffer boundaries in memory, allowing a hacker to execute arbitrary code.

The vulnerability of the Adobe Framemaker desktop publishing system lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created malicious file...

The vulnerability of the babel_packet_examin() function (babeld/message.c) in the software implementation of network routing on Unix-like systems allows a hacker to execute arbitrary code.

The vulnerability of the babelpacketexamin function in the FRRouting software implementation for Unix-like systems is related to the execution of operations outside of the buffer. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerabilities of the functions parse_hello_subtlv(), parse_ihu_subtlv(), and parse_update_subtl() in the software for implementing network routing on Unix-like systems allow a hacker to execute arbitrary code.

The vulnerability of the functions parsehellosubtlv, parseihusubtlv, and parseupdatesubtl babeld/message.c of the software tool for implementing networking routing on Unix-like systems is related to the escape of operations outside of the buffer in memory. Exploiting this vulnerability could allo...

The vulnerability of TP-Link TL-R473G router’s microprogramming software lies in the fact that the operation is performed outside the buffer in memory, allowing a hacker to execute arbitrary code.

The vulnerability of TP-Link TL-R473G router’s microprogramming software lies in the fact that the operation data is written outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending specially crafted packets...

The vulnerability of the babel_packet_examin() function (babeld/message.c) in the software implementation of network routing on Unix-like systems allows a hacker to execute arbitrary code.

The vulnerability of the babelpacketexamin function in the FRRouting software implementation for Unix-like systems is related to the execution of operations outside of the buffer. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of Adobe Illustrator’s graphic editor arises from the possibility of an operation beyond the buffer boundaries in memory, allowing a malicious actor to gain unauthorized access to protected information.

The vulnerability of Adobe Illustrator’s graphic editor is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information using a specially created malicious file...

VulnCheck KEV: CVE-2021-20166

Netgear RAX43 version 1.0.3.96 contains a buffer overrun vulnerability. The URL parsing functionality in the cgi-bin endpoint of the router containers a buffer overrun issue that can redirection control flow of the applicaiton...

The vulnerability of Intel Wireless Bluetooth and Killer Bluetooth drivers, related to the occurrence of operations outside the buffer in memory, allows attackers to increase their privileges.

The vulnerability of Intel Wireless Bluetooth and Killer Bluetooth drivers is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow attackers to gain increased privileges...