Buffer overflow

Espruino before 1.99 allows attackers to cause a denial of service application crash and a potential Information Disclosure with user crafted input files via a Buffer Overflow or Out-of-bounds Read during syntax parsing of certain for loops in jsparse.c...

CVE-2018-7687 Client for OES Elevation of Privilege via Buffer Overflow

The Micro Focus Client for OES before version 2 SP4 IR8a has a vulnerability that could allow a local attacker to elevate privileges via a buffer overflow in ncfsd.sys...

Valve: Buffer overflows in demo parsing

This was originally reported by @yalter at https://github.com/ValveSoftware/halflife/issues/1654...

Buffer overflow

DLPnpAuditor.exe in DeviceLock Plug and Play Auditor freeware 5.72 has a Unicode Buffer Overflow SEH...

CVE-2018-5823

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, improper buffer length validation in extscan hotlist event can lead to potential buffer overflow...

CVE-2018-8905

In LibTIFF 4.0.9, a heap-based buffer overflow occurs in the function LZWDecodeCompat in tiflzw.c via a crafted TIFF file, as demonstrated by tiff2ps...

CVE-2018-7648

An issue was discovered in mj2/opjmj2extract.c in OpenJPEG 2.3.0. The output prefix was not checked for length, which could overflow a buffer, when providing a prefix with 50 or more characters on the command line...

ImageMagick 'ReadSIXELImage' function buffer overflow vulnerability

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A buffer overflow vulnerability exists in the 'ReadSIXELImage' function of the coders/sixel.c file in ImageMagick...

CVE-2017-17502

ReadCMYKImage in coders/cmyk.c in GraphicsMagick 1.3.26 has a magick/import.c ImportCMYKQuantumType heap-based buffer over-read via a crafted file...

Buffer overflow

In SWFTools, a memcpy buffer overflow was found in swfc...

openSUSE: Security Advisory for MozillaThunderbird (openSUSE-SU-2017:2710-1)

The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

WebKitGTK 2.1.2 (Ubuntu 14.04) - Heap based Buffer Overflow

CVE-2014-1303 PoC for Linux CVE-2014-1303 WebKit Heap based BOF proof of concept for Linux. This repository demonstrates the WebKit heap based buffer overflow vulnerability CVE-2014-1303 on Linux. NOTE: Original exploit is written for Mac OS X and PS4 PlayStation4. I've ported and tested work on...

RealPlayer 16.0.5.x < 16.0.5.18 / 16.0.6.x < 16.0.6.3 (Win) Buffer Overflow

Binary data 700136.prm...

CVE-2017-9351

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DHCP dissector could read past the end of a buffer. This was addressed in epan/dissectors/packet-bootp.c by extracting the Vendor Class Identifier more carefully...

Microsoft IIS WebDav ScStoragePathFromUrl Overflow

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule ' Microsoft IIS WebDav ScStoragePathFromUrl Overflow', 'Description' = %q Buffer overflow in the ScStoragePathFromUrl function in the WebDAV servic...

CVE-2017-7866

FFmpeg before 2017-01-23 has an out-of-bounds write caused by a stack-based buffer overflow related to the decodezbuf function in libavcodec/pngdec.c...

CVE-2017-7868

International Components for Unicode ICU for C/C++ before 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utextmoveIndex32 function...

CVE-2016-10271

tools/tiffcrop.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service heap-based buffer over-read and buffer overflow or possibly have unspecified other impact via a crafted TIFF image, related to "READ of size 1" and libtiff/tiffax3.c:413:13...

Fedora 25 : tcpreplay (2017-dc1828d4f9)

Patch CVE-2017-6429. Tcpcapinfo utility of Tcpreplay has a buffer overflow vulnerability associated with parsing a crafted pcap file. This occurs in the src/tcpcapinfo.c file when capture has a packet that is too large to handle. References : http://seclists.org/bugtraq/2017/Mar/22 Upstream bug :...

Geutebrueck GCore 1.3.8.42 / 1.4.2.37 Code Execution

Exploit Title: Geutebrueck GCore X64 Full RCE Bufferoverflow for Metasploit Date: 20170125 Exploit Author: Luca Cappiello, Maurice Popp ContactTwitter: @dopamined, @m4p0 Github: https://github.com/m4p0/GeutebrueckGCoreX64RCEBO Vendor Homepage:...