The vulnerability of Siemens Solid Edge’s design and simulation tools relates to the execution of operations beyond the buffer boundaries in memory. This allows attackers to execute arbitrary code.

The vulnerability of Siemens Solid Edge’s design and simulation tools relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created PAR file...

The vulnerability of the ctl_request_sense() function in the ctl subsystem of FreeBSD allows a hacker to execute arbitrary code.

The vulnerability of the ctlrequestsense function in the ctl subsystem of FreeBSD lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code...

CVE-2024-9113

FastStone Image Viewer TGA File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FastStone Image Viewer. User interaction is required to exploit this vulnerability in that the target...

CVE-2024-11546

IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious pag...

Tungsten Automation Power PDF 缓冲区错误漏洞

Tungsten Automation Power PDF Kofax Power PDF is a powerful PDF processing software from Tungsten Automation. Tungsten Automation Power PDF suffers from a buffer error vulnerability that stems from a PDF file parsing issue that includes an out-of-bounds write problem. An attacker could exploit th...

The vulnerability of Adobe InDesign’s computer layout automation tool, related to the execution of operations beyond the buffer in memory, allows attackers to execute arbitrary code.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

PT-2024-17077 · Irfan Skiljan · Irfanview

Name of the Vulnerable Software and Affected Versions: IrfanView affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicious file...

PT-2024-17063 · Irfanview · Irfanview

Name of the Vulnerable Software and Affected Versions: IrfanView affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this issue, where the target must visit a...

The vulnerability of the LightGBM gradient boosting framework lies in the possibility of an operation exceeding the buffer boundaries in memory, allowing a hacker to execute arbitrary code.

The vulnerability of the LightGBM gradient boosting framework lies in the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of component t7xx in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of component t7xx in the Linux operating system arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the ASMIMPORT228A.dll library in the AutoCAD simulation, design, and drafting software allows a perpetrator to gain unauthorized access to protected information, execute arbitrary code, or cause a service failure.

The vulnerability of the ASMIMPORT228A.dll software for simulation, design, and drawing in AutoCAD is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information, execute...

The vulnerability of the ASMKERN228A.dll and ASMKERN229A.dll libraries, which are software for modeling, designing, and drawing in AutoCAD, allows a perpetrator to execute arbitrary code.

The vulnerability of the ASMKERN228A.dll and ASMKERN229A.dll libraries, which are software libraries for modeling, designing, and drafting in AutoCAD, is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execut...

The vulnerability of the pskernel.DLL library, which is used in software for simulation, design, and drawing in AutoCAD, allows a perpetrator to gain unauthorized access to protected information, execute arbitrary code, or cause a service failure.

The vulnerability of the pskernel.DLL library, which is used for simulation, design, and drafting in AutoCAD, relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information,...

The vulnerability of Adobe Illustrator’s graphic editor lies in the possibility of an operation going beyond the buffer boundaries in memory, allowing a hacker to execute arbitrary code.

The vulnerability of Adobe Illustrator’s graphic editor is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

The vulnerability of the FUN_0046AC38 function in the /goform/WifiExtraSet file of the Tenda AC10 router microprogramming system, which allows a intruder to cause a service failure.

The vulnerability of the FUN0046AC38 function in the /goform/WifiExtraSet module of the Tenda AC10 router’s microprogramming system is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a service failure by sending a...

The vulnerability of the pskernel.DLL library, which is used in software for simulation, design, and drawing in AutoCAD, allows a perpetrator to execute arbitrary code.

The vulnerability of the pskernel.DLL library, which is used for simulation, design, and drawing in AutoCAD, relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code using specially created...

Fedora 41 : lua-mpack (2024-c83b7dcae0)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-c83b7dcae0 advisory. Fix buffer overrun when giving an offset to Session:receive Tenable has extracted the preceding description block directly from the Fedora security advisory...

The vulnerability of Adobe After Effects’ video and dynamic image editing software arises from operations that go beyond buffer boundaries in memory, allowing attackers to gain unauthorized access to protected information.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to the execution of operations beyond buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information through a specially created file...

The vulnerability of the Cisco Unified Threat Defense Snort Intrusion Prevention System Engine’s operating system, Cisco IOS XE, related to the operation of data out of the buffer in memory. This allows attackers to bypass existing security restrictions and trigger a service failure.

The vulnerability of the Cisco Unified Threat Defense Snort Intrusion Prevention System Engine’s operating system, Cisco IOS XE, lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions and...

kernel: firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files

A buffer overrun flaw exists in the Linux kernel when the strlen function is used on name fields in V1 wmfw files. This issue results in a loss of system availability...