SQLite report about CVE-2019-19646

The PRAGMA integritycheck command might cause the byte-code for a prepared statement to loop indefinitely. This might enable a denial-of-service, if the application has not taken appropriate and prudent steps to limit the run-time of SQL statements. This is not a vulnerability, as there are...

[SECURITY] Fedora 29 Update: nekovm-2.2.0-8.fc29

Neko is a high-level dynamically typed programming language which can also be used as an embedded scripting language. It has been designed to provide a common run-time for several different languages. Neko is not only very easy to learn and use, but also has the flexibility of being able to exten...

Remote Code Execution (RCE)

microsoft.chakracore is vulnerable to remote code execution. This happens because it allows redeferral of functions during byte code generation.This CVE ID is different from CVE-2017-11792, CVE-2017-11793, CVE-2017-11796, CVE-2017-11797, CVE-2017-11798, CVE-2017-11799, CVE-2017-11800,...

Remote Code Execution (RCE)

microsoft.chakracore is vulnerable to remote code execution. This is due to an incorrect scope handling during the emitting of byte code which could cause memory corruption and allow an attacker to execute code in the context of the current user. This CVE ID is different from CVE-2018-0758,...

[SECURITY] Fedora 26 Update: groovy18-1.8.9-28.fc26

Groovy is an agile and dynamic language for the Java Virtual Machine, built upon Java with features inspired by languages like Python, Ruby and Smalltalk. It seamlessly integrates with all existing Java objects and libraries and compiles straight to Java byte-code so you can use it anywhere you c...

Debian DSA-3142-1 : eglibc - security update

Several vulnerabilities have been fixed in eglibc, Debian's version of the GNU C library : - CVE-2015-0235 Qualys discovered that the gethostbyname and gethostbyname2 functions were subject to a buffer overflow if provided with a crafted IP address argument. This could be used by an attacker to...

Debian DSA-2311-1 : openjdk-6 - several vulnerabilities

Several vulnerabilities have been discovered in OpenJDK, an implementation of the Java SE platform. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2011-0862 Integer overflow errors in the JPEG and font parser allow untrusted code including applets to...

SuSE 11.1 Security Update : Linux kernel (SAT Patch Numbers 4884 / 4888 / 4889)

The SUSE Linux Enterprise 11 Service Pack 1 kernel was updated to 2.6.32.43 and fixes various bugs and security issues. The following security issues were fixed : - The normal mmap paths all avoid creating a mapping where the pgoff inside the mapping could wrap around due to overflow. However, an...

Fedora Update for mono FEDORA-2011-3393

Check for the Version of mono OpenVAS Vulnerability Test Fedora Update for mono FEDORA-2011-3393 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

phpyun talent system patches after the injection-vulnerability warning-the black bar safety net

Yesterday inadvertently see php100 it seems like the php cloud system out of security patches, and today nothing, download down 1. 1. 6 edition of probably look, take a look at how Supplement. Looked after, found in config/dbsafety. php filter function is as follows: function...

Fedora Update for mono FEDORA-2007-068

Check for the Version of mono OpenVAS Vulnerability Test Fedora Update for mono FEDORA-2007-068 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

QuickTime < 7.1.6 Multiple Vulnerabilities

Binary data 3975.prm...

[SECURITY] Fedora Core 6 Update: mono-1.1.17.1-4.fc6

The Mono runtime implements a JIT engine for the ECMA CLI virtual machine as well as a byte code interpreter, the class loader, the garbage collector, threading system and metadata access libraries...

linux/x86 Radically Self Modifying Code 70 bytes

linux/x86 Radically Self Modifying Code 70 bytes. Shellcode exploit for linx86 platform /-------------------------------------------------------/ / Radically Self Modifying Code for surviving / / toupper and tolower / / / / 70byte execve & exit code by XORt /...

linux/x86 execve /bin/sh xor encrypted 55 bytes

Exploit for linux/x86 platform in category shellcode =============================================== linux/x86 execve /bin/sh xor encrypted 55 bytes =============================================== / .file "xor-encrypted shellcode" .version "1.0" .text .align 4 .globl main .type main,@function...

CVE-1999-0440

The byte code verifier component of the Java Virtual Machine JVM allows remote execution through malicious web pages...

CVE-1999-0440

Technical details are not publicly available in the provided documents. Monitor for updates.

CVE-1999-0725

The affected product is Microsoft IIS. When IIS runs with a default language set to Chinese, Korean, or Japanese, a remote attacker can view the source code of certain files (described as the Double Byte Code Page issue). The Red Hat entry and other mirrors confirm the same behavior. The root c...

CVE-1999-0725

When IIS is run with a default language of Chinese, Korean, or Japanese, it allows a remote attacker to view the source code of certain files, a.k.a. "Double Byte Code Page"...

Microsoft IIS 3.04.0 - Double Byte Code Page

Microsoft IIS 3.04.0 - Double Byte Code Page source: https://www.securityfocus.com/bid/477/info This vulnerability could allow a web site viewer to obtain the source code for .asp and similar files if the server's default language Input Locale is set to Chinese, Japanese or Korean. How this works...