4206 matches found
The vulnerability of the sdp_copy_raw_data function in the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability of the sdpcopyrawdata function sdpdiscovery.cc in the Android operating system is related to writing beyond the buffer boundaries into memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code using Bluetooth...
The vulnerability of the implementation of Intel Active Management Technology (AMT) for microprogramming software such as Intel Converged Security and Manageability Engine and Intel Management Engine allows a perpetrator to execute arbitrary code with AMT privileges.
The vulnerability of the Intel AMT microprogramming software, the Intel Converged Security and Manageability Engine CSME, and the Intel Management Engine ME, arises from an operation that goes beyond the buffer in memory. Exploiting this vulnerability can allow a perpetrator to execute arbitrary...
EulerOS Virtualization 2.5.0 : curl (EulerOS-SA-2018-1237)
According to the version of the curl package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - A buffer overrun flaw was found in the IMAP handler of libcurl. By tricking an unsuspecting user into connecting to a malicious IMAP...
The vulnerability of the ChakraCore JavaScript script handler, related to the execution of operations beyond the buffer boundaries in memory, allows attackers to execute malicious code.
The vulnerability of the ChakraCore JavaScript script handler arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute malicious code...
The vulnerability of the Adobe Photoshop graphic editor arises from the possibility of an operation going beyond the buffer in memory, allowing a hacker to execute arbitrary code.
The vulnerability of the Adobe Photoshop graphic editor is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of FL SWITCH microprogrammed software for controlled switches arises from operations that go beyond the buffer boundaries in memory. This allows attackers to access device operating system files and execute arbitrary code.
The vulnerability of the microprogrammed software for controlled switches from FL SWITCH from Phoenix Contact arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to the device’s operating...
The vulnerability of microprogrammed software in Schneider Electric’s Modicon Premium, Modicon Quantum, Modicon M340, and Modicon BMXNOR0200 programmable logic controllers arises from an operation that escapes the buffer boundaries into memory, allowing a malicious actor to trigger a service failure.
The vulnerability of microprogrammed software in Schneider Electric’s Modicon Premium, Modicon Quantum, Modicon M340, and Modicon BMXNOR0200 programmable logic controllers arises from the execution of an operation outside the buffer boundaries in memory. Exploiting this vulnerability can allow a...
cURL (libcurl) NTLM Authentication Code Buffer Overrun Vulnerability
curl before version 7.61.1 is vulnerable to a buffer overrun in the NTLM authentication code. The internal function Curlntlmcoremknthash multiplies the length of the password by two SUM to figure out how large temporary storage area to allocate from the heap. The length value is then subsequently...
Integer overflow
curl before version 7.61.1 is vulnerable to a buffer overrun in the NTLM authentication code. The internal function Curlntlmcoremknthash multiplies the length of the password by two SUM to figure out how large temporary storage area to allocate from the heap. The length value is then subsequently...
CVE-2018-14618
curl before version 7.61.1 is vulnerable to a buffer overrun in the NTLM authentication code. The internal function Curlntlmcoremknthash multiplies the length of the password by two SUM to figure out how large temporary storage area to allocate from the heap. The length value is then subsequently...
CVE-2018-14618
curl before version 7.61.1 is vulnerable to a buffer overrun in the NTLM authentication code. The internal function Curlntlmcoremknthash multiplies the length of the password by two SUM to figure out how large temporary storage area to allocate from the heap. The length value is then subsequently...
ALPINE-CVE-2018-14618
curl before version 7.61.1 is vulnerable to a buffer overrun in the NTLM authentication code. The internal function Curlntlmcoremknthash multiplies the length of the password by two SUM to figure out how large temporary storage area to allocate from the heap. The length value is then subsequently...
CVE-2018-14618
curl before version 7.61.1 is vulnerable to a buffer overrun in the NTLM authentication code. The internal function Curlntlmcoremknthash multiplies the length of the password by two SUM to figure out how large temporary storage area to allocate from the heap. The length value is then subsequently...
CVE-2018-14618
CVE-2018-14618 affects curl/libcurl NTLM authentication. The vulnerability arises from an integer overflow in Curl_ntlm_core_mk_nt_hash (32-bit size_t) that overflows when password length > 2 GB, causing heap buffer overflow due to under-allocated temporary storage. Affects curl prior to 7.61....
CVE-2018-14618
curl before version 7.61.1 is vulnerable to a buffer overrun in the NTLM authentication code. The internal function Curlntlmcoremknthash multiplies the length of the password by two SUM to figure out how large temporary storage area to allocate from the heap. The length value is then subsequently...
CVE-2018-14618
curl before version 7.61.1 is vulnerable to a buffer overrun in the NTLM authentication code. The internal function Curlntlmcoremknthash multiplies the length of the password by two SUM to figure out how large temporary storage area to allocate from the heap. The length value is then subsequently...
CVE-2018-14618
curl before version 7.61.1 is vulnerable to a buffer overrun in the NTLM authentication code. The internal function Curlntlmcoremknthash multiplies the length of the password by two SUM to figure out how large temporary storage area to allocate from the heap. The length value is then subsequently...
CURL-CVE-2018-14618 NTLM password overflow via integer overflow
libcurl contains a buffer overrun in the NTLM authentication code. The internal function Curlntlmcoremknthash multiplies the length of the password by two SUM to figure out how large temporary storage area to allocate from the heap. The length value is then subsequently used to iterate over the...
CVE-2018-14618
curl before version 7.61.1 is vulnerable to a buffer overrun in the NTLM authentication code. The internal function Curlntlmcoremknthash multiplies the length of the password by two SUM to figure out how large temporary storage area to allocate from the heap. The length value is then subsequently...
openSUSE Security Update : zutils (openSUSE-2018-951)
This update for zutils to version 1.7 fixes one security issue : - CVE-2018-1000637: buffer overrun in zcat utility boo1103878 Please note that the zutils zcat utility is distinct from the default gzip zcat utility. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...