CVE-2016-0840

CVE-2016-0840 refers to multiple stack-based buffer underflows in mediaserver’s decoder/ih264d_parse_cavlc.c on Android 6.x prior to 2016-04-01. The flaw allows memory corruption that could enable remote code execution or a denial of service when processing crafted media files. The entry is suppo...

Microsoft Windows - devenum.dll!DeviceMoniker::Load() Heap Corruption Buffer Underflow (MS16-007)

Microsoft Windows - devenum.dll!DeviceMoniker::Load Heap Corruption Buffer Underflow MS16-007 Source: https://code.google.com/p/google-security-research/issues/detail?id=594 Heap corruption buffer underflow in devenum.dll!DeviceMoniker::Load There exists a buffer underflow vulnerability in...

Microsoft Windows devenum.dll!DeviceMoniker::Load() - Heap Corruption Buffer Underflow (MS16-007)

Exploit for windows platform in category dos / poc Source: https://code.google.com/p/google-security-research/issues/detail?id=594 Heap corruption buffer underflow in devenum.dll!DeviceMoniker::Load There exists a buffer underflow vulnerability in devenum.dll!DeviceMoniker::Load when attempting t...

Microsoft Windows - devenum.dll!DeviceMoniker::Load() Heap Corruption Buffer Underflow (MS16-007)

Source: https://code.google.com/p/google-security-research/issues/detail?id=594 Heap corruption buffer underflow in devenum.dll!DeviceMoniker::Load There exists a buffer underflow vulnerability in devenum.dll!DeviceMoniker::Load when attempting to null terminate a user supplied string. The functi...

CVE-2015-5309

Integer overflow in the terminal emulator in PuTTY before 0.66 allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via an ECH erase characters escape sequence with a large parameter value, which triggers a buffer underflow...

CVE-2015-5309

Integer overflow in the terminal emulator in PuTTY before 0.66 allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via an ECH erase characters escape sequence with a large parameter value, which triggers a buffer underflow...

Integer overflow

Integer overflow in the terminal emulator in PuTTY before 0.66 allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via an ECH erase characters escape sequence with a large parameter value, which triggers a buffer underflow...

UBUNTU-CVE-2015-5309

Integer overflow in the terminal emulator in PuTTY before 0.66 allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via an ECH erase characters escape sequence with a large parameter value, which triggers a buffer underflow...

CVE-2015-5309

Integer overflow in the terminal emulator in PuTTY before 0.66 allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via an ECH erase characters escape sequence with a large parameter value, which triggers a buffer underflow...

CVE-2015-5309

PuTTY before 0.66 contains a memory‑corrupting integer overflow in handling the ECH (erase characters) escape sequence, allowing a remote attacker to cause DoS or potentially execute arbitrary code via a large parameter value. This affects PuTTY’s terminal emulator. Debian advisories (DSA-3409) a...

CVE-2015-5309

Integer overflow in the terminal emulator in PuTTY before 0.66 allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via an ECH erase characters escape sequence with a large parameter value, which triggers a buffer underflow...

Mozilla Thunderbird < 38.4 Multiple Vulnerabilities

The version of Thunderbird installed on the remote Windows host is prior to 38.4. It is, therefore, affected by multiple vulnerabilities : - Multiple memory corruption issues exist due to improper validation of user-supplied input. An unauthenticated, remote attacker can exploit these issues, via...

Mozilla Thunderbird < 38.4 Multiple Vulnerabilities (Mac OS X)

The version of Thunderbird installed on the remote Mac OS X host is prior to 38.4. It is, therefore, affected by multiple vulnerabilities : - Multiple memory corruption issues exist due to improper validation of user-supplied input. An unauthenticated, remote attacker can exploit these issues, vi...

wireshark: TLS/SSL decryption crash (wnpa-sec-2015-05)

Buffer underflow in the ssldecryptrecord function in epan/dissectors/packet-ssl-utils.c in Wireshark 1.10.x before 1.10.12 and 1.12.x before 1.12.3 allows remote attackers to cause a denial of service application crash via a crafted packet that is improperly handled during decryption of an SSL...

CVE-2015-7194

Buffer underflow in libjar in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted ZIP archive...

CVE-2015-7194

CVE-2015-7194 affects Mozilla Firefox and Firefox ESR via a buffer underflow in libjar when parsing crafted ZIP archives. A remote attacker could crash the browser or possibly execute arbitrary code. Affected: Firefox before 42.0 and Firefox ESR 38.x before 38.4. Remediation: upgrade to Firefox 4...

CVE-2015-7194

Buffer underflow in libjar in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted ZIP archive...

Firefox < 42 Multiple Vulnerabilities

The version of Firefox installed on the remote Windows host is prior to 42. It is, therefore, affected by the following vulnerabilities : - Multiple memory corruption issues exist due to improper validation of user-supplied input. An unauthenticated, remote attacker can exploit these issues, via ...

UBUNTU-CVE-2015-7194

Buffer underflow in libjar in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted ZIP archive...

Memory corruption in libjar through zip files — Mozilla

Security researcher Gustavo Grieco reported a buffer underflow in libjar triggered through a maliciously crafted ZIP format file. This results in a potentially exploitable crash...