Lucene search
K

119 matches found

NVD
NVD
added 2021/01/29 3:15 a.m.29 views

CVE-2021-26305

An issue was discovered in Deserializer::readvec in the cdr crate before 0.2.4 for Rust. A user-provided Read implementation can gain access to the old contents of newly allocated heap memory, violating soundness...

9.8CVSS9.5AI score0.01688EPSS
Exploits1References1
Prion
Prion
added 2021/01/29 3:15 a.m.13 views

Heap overflow

An issue was discovered in Deserializer::readvec in the cdr crate before 0.2.4 for Rust. A user-provided Read implementation can gain access to the old contents of newly allocated heap memory, violating soundness...

7.5CVSS9.5AI score0.01688EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2021/01/29 2:27 a.m.65 views

CVE-2021-26305

The CVE-2021-26305 issue affects the Rust crate cdr prior to 0.2.4, where Deserializer::read_vec could allow a user-provided Read implementation to access the old contents of newly allocated heap memory, creating a soundness vulnerability. The vulnerability arises from an uninitialized buffer bei...

9.8CVSS9.4AI score0.01688EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2021/01/28 12:0 a.m.6 views

cdr crate before for Rust 安全漏洞

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in Deserializer :: readvec in the cdr package of Rust prior to 0.2.4, which stems from the fact that the user-supplied read implementation of Deserializer :: readvec can access th...

9.8CVSS7.3AI score0.01688EPSS
Exploits1References2
CVE
CVE
added 2019/10/21 3:27 p.m.68 views

CVE-2019-16985

FusionPBX contains a path traversal/file-deletion vulnerability in versions up to 4.5.7. The file app\xml_cdr\xml_cdr_delete.php uses an unsanitized URL parameter rec, which is base64 decoded and can cause deletion of arbitrary system files. Reported impact is arbitrary file deletion; remediation...

8.5CVSS6.4AI score0.0114EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2019/10/21 12:0 a.m.3 views

PT-2019-14906 · Fusionpbx · Fusionpbx

Name of the Vulnerable Software and Affected Versions: FusionPBX versions prior to 4.5.8 Description: The issue concerns the use of an unsanitized rec variable in the xml cdr delete.php file, which allows for the deletion of any system file. This is achieved through a base64 decoded variable comi...

8.5CVSS6.3AI score0.0114EPSS
Exploits0References4
Schneier on Security
Schneier on Security
added 2019/08/12 11:14 a.m.61 views

Evaluating the NSA's Telephony Metadata Program

Interesting analysis: "Examining the Anomalies, Explaining the Value: Should the USA FREEDOM Act's Metadata Program be Extended?" by Susan Landau and Asaf Lubin. Abstract: The telephony metadata program which was authorized under Section 215 of the PATRIOT Act, remains one of the most controversi...

0.6AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2019/04/03 8:7 p.m.46 views

It’s Time to End the NSA’s Metadata Collection Program

Opinion: Congress needs to pull the plug and end the authority for the CDR program...

7AI score
Exploits0
Fedora
Fedora
added 2018/04/06 3:3 p.m.29 views

[SECURITY] Fedora 27 Update: bchunk-1.2.2-1.fc27

The bchunk package contains a UNIX/C rewrite of the BinChunker program. BinChunker converts a CD image in a .bin/.cue format sometimes .raw/.cue into a set of .iso and .cdr tracks. The .bin/.cue format is used by some non-UNIX CD-writing software, but is not supported on most other CD-writing...

5.5CVSS2.5AI score0.01EPSS
Exploits0
Fedora
Fedora
added 2018/04/06 2:38 p.m.24 views

[SECURITY] Fedora 26 Update: bchunk-1.2.2-1.fc26

The bchunk package contains a UNIX/C rewrite of the BinChunker program. BinChunker converts a CD image in a .bin/.cue format sometimes .raw/.cue into a set of .iso and .cdr tracks. The .bin/.cue format is used by some non-UNIX CD-writing software, but is not supported on most other CD-writing...

5.5CVSS2.5AI score0.01EPSS
Exploits0
Fedora
Fedora
added 2018/04/06 11:10 a.m.23 views

[SECURITY] Fedora 28 Update: bchunk-1.2.2-1.fc28

The bchunk package contains a UNIX/C rewrite of the BinChunker program. BinChunker converts a CD image in a .bin/.cue format sometimes .raw/.cue into a set of .iso and .cdr tracks. The .bin/.cue format is used by some non-UNIX CD-writing software, but is not supported on most other CD-writing...

5.5CVSS2.5AI score0.01EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/11/10 12:0 a.m.34 views

FreeBSD : asterisk -- Buffer overflow in CDR's set user (ab04cb0b-c533-11e7-8da5-001999f8d30b)

The Asterisk project reports : No size checking is done when setting the user field for Party B on a CDR. Thus, it is possible for someone to use an arbitrarily large string and write past the end of the user field storage buffer. The earlier AST-2017-001 advisory for the CDR user field overflow...

8.8CVSS7.9AI score0.03344EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2017/11/09 12:29 a.m.26 views

CVE-2017-16671

A Buffer Overflow issue was discovered in Asterisk Open Source 13 before 13.18.1, 14 before 14.7.1, and 15 before 15.1.1 and Certified Asterisk 13.13 before 13.13-cert7. No size checking is done when setting the user field for Party B on a CDR. Thus, it is possible for someone to use an arbitrari...

8.8CVSS7.2AI score0.03344EPSS
Exploits0References5
Prion
Prion
added 2017/11/09 12:29 a.m.17 views

Buffer overflow

A Buffer Overflow issue was discovered in Asterisk Open Source 13 before 13.18.1, 14 before 14.7.1, and 15 before 15.1.1 and Certified Asterisk 13.13 before 13.13-cert7. No size checking is done when setting the user field for Party B on a CDR. Thus, it is possible for someone to use an arbitrari...

6.5CVSS8.5AI score0.06243EPSS
Exploits0References5Affected Software2
OSV
OSV
added 2017/11/09 12:29 a.m.19 views

CVE-2017-16671

A Buffer Overflow issue was discovered in Asterisk Open Source 13 before 13.18.1, 14 before 14.7.1, and 15 before 15.1.1 and Certified Asterisk 13.13 before 13.13-cert7. No size checking is done when setting the user field for Party B on a CDR. Thus, it is possible for someone to use an arbitrari...

8.8CVSS6.6AI score
Exploits0References5
OpenVAS
OpenVAS
added 2017/11/09 12:0 a.m.24 views

Asterisk CDR Buffer Overflow Vulnerability (AST-2017-010)

Asterisk is prone to a buffer overflow vulnerability in CDR SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:digium:asterisk"; if...

8.8CVSS8.8AI score0.03344EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2017/11/03 12:0 a.m.21 views

Debian DLA-1158-1 : bchunk security update

Several vulnerabilities were discovered in bchunk, a tool to convert a CD image in .bin/.cue format into a set of .iso and .cdr/.wav tracks. It was possible to trigger a heap-based buffer overflow with an resultant invalid free when processing a malformed CUE .cue file that may lead to the...

5.5CVSS6.4AI score0.01EPSS
Exploits0References5
FreeBSD
FreeBSD
added 2017/10/09 12:0 a.m.26 views

asterisk -- Buffer overflow in CDR's set user

The Asterisk project reports: No size checking is done when setting the user field for Party B on a CDR. Thus, it is possible for someone to use an arbitrarily large string and write past the end of the user field storage buffer. The earlier AST-2017-001 advisory for the CDR user field overflow w...

8.8CVSS8.7AI score0.03344EPSS
Exploits0References1
Check Point Advisories
Check Point Advisories
added 2017/05/03 12:0 a.m.25 views

Digium Asterisk CDR ast_cdr_setuserfield Buffer Overflow (CVE-2017-16671; CVE-2017-7617)

A buffer overflow exists in the CDR engine of Digium Asterisk. The vulnerability is due to a lack of size checking when setting the user field of a CDR. A remote, authenticated attacker can exploit this vulnerability by sending a crafted message to an affected Asterisk server...

6.5CVSS4.5AI score0.06243EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/04/13 12:0 a.m.39 views

Asterisk 13.13 < 13.13-cert3 / 13.x < 13.14.1 / 14.x < 14.3.1 CDR user Field RCE (AST-2017-001)

According to its SIP banner, the version of Asterisk running on the remote host is 13.13 prior to 13.13-cert3, 13.x prior to 13.14.1, or 14.x prior to 14.3.1. Is it, therefore, affected by a buffer overflow condition due to a failure to check the size when setting the user field on a CDR. An...

8.8CVSS8.2AI score0.06243EPSS
Exploits0References2
Rows per page
Query Builder