ISO-TP (ISO 15765-2) Support Library in C 缓冲区错误漏洞

ISO-TP ISO 15765-2 Support Library in C is an OpenXC Vehicle Platform open source ISO-TP protocol library that supports CAN bus long message transmission. A buffer error vulnerability exists in ISO-TP ISO 15765-2 Support Library in C. The vulnerability originates from an out-of-bounds read in the...

Eclipse ThreadX NetX Duo 缓冲区错误漏洞

Eclipse ThreadX NetX Duo is an IPv4 and IPv6 dual network stack for Eclipse ThreadX open source. A buffer error vulnerability exists in Eclipse ThreadX NetX Duo versions prior to 6.4.4, which stems from a potential out-of-bounds read issue in the nxicmpv6validateoptions function when processing...

EUVD-2013-2907

Malware in sbrugna...

Apple macOS MP4 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

Faronics Deep Freeze 缓冲区错误漏洞

Faronics Deep Freeze is a system recovery software developed by Faronics, Inc. A buffer error vulnerability exists in Faronics Deep Freeze version 9.00.020.5760, which stems from susceptibility to an out-of-bounds read vulnerability that can trigger the 0x70014 IOCTL code in the FarDisk.sys drive...

Libmobi 缓冲区错误漏洞

Libmobi is a C library . Used to handle Mobipocket/Kindle MOBI e-book format documents. An out-of-bounds read vulnerability exists in Libmobi, which stems from the program being vulnerable to the use of out-of-range pointer offsets, and can be exploited by an attacker to read memory information...

HCC Embedded InterNiche 缓冲区错误漏洞

HCC Embedded InterNiche is a newsletter software. An out-of-bounds read vulnerability exists in the HCC Embedded InterNiche stack and NicheLite, which can be exploited by an attacker to cause an out-of-bounds read...

Multiple Huawei products cross-border read vulnerability (CNVD-2020-28979)

The Huawei AR1200, among others, is an enterprise router from Huawei, a Chinese company. The buffer error vulnerability exists in several Huawei products and stems from a failure to read data from the end of an expected buffer when parsing a specific message. An attacker could exploit the...

[SECURITY] [DLA 1111-1] weechat security update

Package : weechat Version : 0.3.8-1+deb7u3 CVE ID : CVE-2017-14727 Debian Bug : 876553 It was discovered that WeeChats logger plugin is vulnerable to an invalid buffer read which can be exploited remotely to trigger an application crash or other undefined behaviour. For Debian 7 "Wheezy", these...