CVE-2019-0707

An elevation of privilege vulnerability exists in the Network Driver Interface Specification NDIS when ndis.sys fails to check the length of a buffer prior to copying memory to it.To exploit the vulnerability, in a local attack scenario, an attacker could run a specially crafted application to...

Windows NDIS Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in the Network Driver Interface Specification NDIS when ndis.sys fails to check the length of a buffer prior to copying memory to it. To exploit the vulnerability, in a local attack scenario, an attacker could run a specially crafted application to...

CVE-2019-3560

An improperly performed length calculation on a buffer in PlaintextRecordLayer could lead to an infinite loop and denial-of-service based on user input. This issue affected versions of fizz prior to v2019.03.04.00...

CVE-2019-3560

An improperly performed length calculation on a buffer in PlaintextRecordLayer could lead to an infinite loop and denial-of-service based on user input. This issue affected versions of fizz prior to v2019.03.04.00...

PT-2019-16609 · Fizz · Fizz

Name of the Vulnerable Software and Affected Versions: fizz versions prior to v2019.03.04.00 Description: The issue is related to an improperly performed length calculation on a buffer in PlaintextRecordLayer, which could lead to an infinite loop and denial-of-service based on user input...

CVE-2018-5881

Improper validation of buffer length checks in the lwm2m device management protocol can leads to a buffer overflow in snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 835, SDA660, SDM630, SDM660...

Arm Whois 3.11 - Buffer Overflow (SEH)

Exploit Title: Arm Whois 3.11 - Buffer Overflow SEH Date: 2018-11-05 Exploit Author: Yair Rodríguez Aparicio 0-day DoS exploit, Semen Alexandrovich Lyhin 1-day fully working exploit Vendor Homepage: http://www.armcode.com/ Software Link: http://www.armcode.com/downloads/arm-whois.exe Version: 3.1...

CVE-2018-11879

When the buffer length passed is very large, bounds check could be bypassed leading to potential buffer overwrite in Snapdragon Mobile in version SD 845...

Out-of-bounds

When the buffer length passed is very large in WLAN, bounds check could be bypassed leading to potential buffer overwrite in Snapdragon Mobile in version SD 835, SD 845, SD 850, SDA660...

CVE-2018-11879

CVE-2018-11879 affects Qualcomm Snapdragon Mobile SD 845. The vulnerability arises when an excessively large buffer length bypasses bounds checks, potentially allowing a buffer overwrite. Severity/metrics from NVD indicate HIGH impact with LOCAL exploitability and complete confidentiality/integri...

Heap overflow

Fuji Electric Alpha5 Smart Loader Versions 3.7 and prior. The device does not perform a check on the length/size of a project file before copying the entire contents of the file to a heap-based buffer...

CVE-2018-11851

In all android releases Android for MSM, Firefox OS for MSM, QRD Android from CAF using the linux kernel, lack of check on input received to calculate the buffer length can lead to out of bound write to kernel stack...

CVE-2018-11301

In all android releases Android for MSM, Firefox OS for MSM, QRD Android from CAF using the linux kernel, lack of check on buffer length while processing debug log event from firmware can lead to an integer overflow...

Design/Logic Flaw

In all android releases Android for MSM, Firefox OS for MSM, QRD Android from CAF using the linux kernel, lack of check on input received to calculate the buffer length can lead to out of bound write to kernel stack...

CVE-2018-11301

CVE-2018-11301 describes an integer overflow caused by a missing buffer-length check while processing debug log events from firmware in Android CAF builds using the Linux kernel, affecting Qualcomm WLAN Host components across Android releases such as Android for MSM, Firefox OS for MSM, and QRD A...

CVE-2018-8343

An elevation of privilege vulnerability exists in the Network Driver Interface Specification NDIS when ndis.sys fails to check the length of a buffer prior to copying memory to it, aka "Windows NDIS Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT...

CVE-2018-8342

An elevation of privilege vulnerability exists in the Network Driver Interface Specification NDIS when ndis.sys fails to check the length of a buffer prior to copying memory to it, aka "Windows NDIS Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2008 R2. This CVE ID...

Microsoft Windows NDIS Local Elevation of Privilege Vulnerability

Microsoft Windows Network Driver Interface Specification NDIS is a component of Microsoft's Network Driver Interface Specification for use in Windows systems. A local elevation of privilege vulnerability exists in Microsoft Windows NDIS, which stems from ndis.sys not detecting the length of a...

Windows NDIS Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in the Network Driver Interface Specification NDIS when ndis.sys fails to check the length of a buffer prior to copying memory to it. To exploit the vulnerability, in a local attack scenario, an attacker could run a specially crafted application to...

Windows NDIS Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in the Network Driver Interface Specification NDIS when ndis.sys fails to check the length of a buffer prior to copying memory to it. To exploit the vulnerability, in a local attack scenario, an attacker could run a specially crafted application to...