The vulnerability of the `read_channel_data` function in the GIMP graphic editor’s plug-ins/common/file-psp.c file, related to the issue of exceeding the buffer memory limit, allows a hacker to cause a service failure or execute arbitrary code.

The vulnerability of the readchanneldata function in the plug-ins/common/file-psp.c file of the GIMP graphic editor, as well as the GNU Image Manipulation Program, is related to the issue of leaving data outside of the memory buffer. Exploiting this vulnerability could allow an attacker to cause...

The vulnerability of the JavaScript script handler in Google Chrome’s V8 browser allows a hacker to execute arbitrary code.

The vulnerability of the JavaScript script handler in Google Chrome browsers is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code or cause a denial-of-service attack through a specially crafted web page...

The vulnerability of the lppTransposer function in the Android operating system allows a hacker to execute arbitrary code.

The vulnerability of the lppTransposer function lpptran.cpp in the Android operating system is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the ParsePayloadHeader function in the Android operating system allows a hacker to execute arbitrary code.

The vulnerability of the ParsePayloadHeader function in the payloadmetadata.cc library of the Android operating system is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

Amazon Linux 2 : curl (ALAS-2018-1135)

curl is vulnerable to a buffer overrun in the NTLM authentication code. The internal function Curlntlmcoremknthash multiplies the length of the password by two SUM to figure out how large temporary storage area to allocate from the heap. The length value is then subsequently used to iterate over...

Low: curl

Issue Overview: curl is vulnerable to a buffer overrun in the NTLM authentication code. The internal function Curlntlmcoremknthash multiplies the length of the password by two SUM to figure out how large temporary storage area to allocate from the heap. The length value is then subsequently used ...

The vulnerability of the Media framework component of the Android operating system allows a hacker to enhance their privileges and execute arbitrary code.

The vulnerability of the Media framework component of the Android operating system relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a remote attacker to increase their privileges and execute arbitrary code...

The vulnerability of the Microsoft Outlook email client, related to the execution of operations outside the buffer in memory, allows an attacker to execute arbitrary code.

The vulnerability of the Microsoft Outlook email client is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted file...

The vulnerability of the Microsoft Outlook email client, related to the execution of operations outside the buffer in memory, allows an attacker to execute arbitrary code.

The vulnerability of the Microsoft Outlook email client is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted file...

Amazon Linux AMI : curl (ALAS-2018-1112)

curl before version 7.61.1 is vulnerable to a buffer overrun in the NTLM authentication code. The internal function Curlntlmcoremknthash multiplies the length of the password by two SUM to figure out how large temporary storage area to allocate from the heap. The length value is then subsequently...

The vulnerability of the VBScript script handler in the Windows operating system allows a hacker to execute arbitrary code.

The vulnerability of VBScript script handlers in Windows operating systems arises from the execution of an operation beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code, either through a specially crafted web page or a Microsoft...

Vulnerability of the vorbis_book_decodev_set function in the Media Framework component of the Android operating system, allowing a hacker to execute arbitrary code

The vulnerability of the vorbisbookdecodevset function in the codebook.c file of the Media Framework component of the Android operating system is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

curl: IMAP FETCH response out of bounds read

A buffer overrun flaw was found in the IMAP handler of libcurl. By tricking an unsuspecting user into connecting to a malicious IMAP server, an attacker could exploit this flaw to potentially cause information disclosure or crash the application...

OpenSLP 2.0.0 - Multiple Vulnerabilities

Exploit for linux platform in category local exploits OpenSLP 2.0.0 - Multiple Vulnerabilities ========================== I discovered some bugs in openslp-2.0.0 back in January, 2018. One of them I disclosed in June dumpco.re/blog/openslp-2.0.0-double-free, and today I'm disclosing two more. BUG...

The vulnerability of the Internet Explorer browser, related to the execution of operations beyond the buffer in memory, allows an attacker to execute arbitrary code.

The vulnerability of the Internet Explorer browser arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code through a specially created web page...

FreeBSD : curl -- multiple vulnerabilities (e0ab1773-07c1-46c6-9170-4c5e81c00927)

curl security problems : CVE-2018-16839: SASL password overflow via integer overflow libcurl contains a buffer overrun in the SASL authentication code. The internal function Curlauthcreateplainmessage fails to correctly verify that the passed in lengths for name and password aren't too long, then...

Buffer overflow

Curl versions 7.33.0 through 7.61.1 are vulnerable to a buffer overrun in the SASL authentication code that may lead to denial of service...

CVE-2018-16839

Curl versions 7.33.0 through 7.61.1 are vulnerable to a buffer overrun in the SASL authentication code that may lead to denial of service...

ALPINE-CVE-2018-16839

Curl versions 7.33.0 through 7.61.1 are vulnerable to a buffer overrun in the SASL authentication code that may lead to denial of service...

DEBIAN-CVE-2018-16839

Curl versions 7.33.0 through 7.61.1 are vulnerable to a buffer overrun in the SASL authentication code that may lead to denial of service...