Design/Logic Flaw

In all versions of Node.js prior to 6.14.4, 8.11.4 and 10.9.0 when used with UCS-2 encoding recognized by Node.js under the names 'ucs2', 'ucs-2', 'utf16le' and 'utf-16le', Bufferwrite can be abused to write outside of the bounds of a single Buffer. Writes that start from the second-to-last...

Out-of-bounds

Improper restriction of write operations within the bounds of a memory buffer in snscore.sys in SoftControl/SafenSoft SysWatch, SoftControl/SafenSoft TPSecure, SoftControl/SafenSoft Enterprise Suite before version 4.4.1 allows local users to cause a denial of service BSOD or modify kernel-mode...

DEBIAN-CVE-2017-18185

An issue was discovered in QPDF before 7.0.0. There is a large heap-based out-of-bounds read in the PlBuffer::write function in PlBuffer.cc. It is caused by an integer overflow in the PNG filter...

UBUNTU-CVE-2017-18185

An issue was discovered in QPDF before 7.0.0. There is a large heap-based out-of-bounds read in the PlBuffer::write function in PlBuffer.cc. It is caused by an integer overflow in the PNG filter...

openSUSE Security Update : libcares2 (openSUSE-2017-58)

This update for libcares2 fixes the following issues : - Add patch to fix single byte out of buffer write CVE-2016-5180, bsc1007728 This update was imported from the SUSE:SLE-12:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...

SUSE SLED12 / SLES12 Security Update : libcares2 (SUSE-SU-2016:3286-1)

This update for libcares2 fixes the following issues : - Add patch to fix single byte out of buffer write CVE-2016-5180, bsc1007728 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically cle...

SUSE-SU-2016:3286-1 Security update for libcares2

This update for libcares2 fixes the following issues: - Add patch to fix single byte out of buffer write CVE-2016-5180, bsc1007728...

SUSE-SU-2016:3287-1 Security update for libcares2

This update for libcares2 fixes the following issues: - Add patch to fix single byte out of buffer write CVE-2016-5180, bsc1007728...

FreeBSD : node.js -- ares_create_query single byte out of buffer write (28bb6ee5-9b5c-11e6-b799-19bef72f4b7c)

Node.js has released new versions containing the following security fix : The following releases all contain fixes for CVE-2016-5180 'arescreatequery single byte out of buffer write': Node.js v0.10.48 Maintenance, Node.js v0.12.17 Maintenance, Node.js v4.6.1 LTS 'Argon' While this is not a critic...

qemu: virtio: out-of-bounds buffer write on invalid state load

The virtioload function in virtio/virtio.c in QEMU 1.x before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image, which triggers an out-of-bounds write...

Symantec Workspace Virtualization 6.4.1895.0 Local Kernel Mode Privilege Escalation Exploit

Symantec Workspace Virtualization 6.4.1895.0 Local Kernel Mode Privilege Escalation Exploit Date: 2013-7-17 Author : MJ0011 Version: Symantec Workspace Virtualization 6.4.1895.0 Tested on: Windows XP SP3 DETAILS: In fslx.sys 's hook function of "NtQueryValueKey" , it directly write to the buffer ...

VirtualDJ Trial 6.0.6 New Year Edition - .m3u Local Overflow

VirtualDJ Trial 6.0.6 New Year Edition - .m3u Local Overflow /VirtualDJ Trial v6.0.6 "New Year Edition" PC 0day This is a poc for the latest VJ by fl0 fl0w Author: fl0 fl0w Tested on: Windows xp sp2 Code : exploit code/ include include include include include /----prototypes---/ int fileCreatecha...