7640 matches found
Design/Logic Flaw
FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file...
CVE-2017-5025
FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file...
CVE-2017-5024
FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file...
CVE-2017-5025
FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file...
CVE-2017-5024
FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file...
CVE-2017-5009
WebRTC in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56.0.2924.87 for Android, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
CVE-2017-5025
FFmpeg heap overflow in FFmpeg library used by Google Chrome up to 56.0.2924.76 (CVE-2017-5025). The vulnerability arises from insufficient bounds checking, enabling a remote attacker to potentially execute arbitrary code via a crafted video file. Connected advisories indicate the upstream fix in...
CVE-2017-5025
FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file...
CVE-2017-5009
CVE-2017-5009 is a memory out-of-bounds vulnerability in Chrome’s WebRTC library. Affects Chrome prior to 56.0.2924.76 on Linux/Windows/macOS, and 56.0.2924.87 on Android. Root cause: failure to perform proper bounds checking in WebRTC leading to potential heap corruption via a crafted HTML page....
CVE-2017-5024
CVE-2017-5024 reflects a heap overflow in FFmpeg used by Google Chrome prior to 56.0.2924.76 (Linux/Windows/macOS), caused by improper bounds checking and exploitable via crafted multimedia content. Multiple advisories (Arch Linux ASA-201702-10; Alpine Linux CVE-2017-5024; Debian security notes) ...
CVE-2017-5024
FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file...
CVE-2017-5025
FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file...
CVE-2017-5009
Removed by vendor...
CVE-2017-5025
FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file...
CVE-2017-5024
FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file...
QEMU Stack Buffer Overflow Vulnerability
QEMU aka Quick Emulator is a suite of analog processor software developed by French programmer Fabrice Bellard. QEMU suffers from a stack buffer overflow vulnerability, which stems from a failure to perform sufficient bounds checking before copying user input into an undersized buffer. An attacke...
FreeBSD : gtk-vnc -- bounds checking vulnerabilities (79bbb8f8-f049-11e6-8a6a-bcaec565249c)
Daniel P. Berrange reports : CVE-2017-5884 - fix bounds checking for RRE, hextile and copyrect encodings CVE-2017-5885 - fix color map index bounds checking. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD...
VUPlayer CUE File Buffer Overflow
A stack overflow exists in VUPlayer. The vulnerability is due to improper boundary checking of user-supplied input when processing CUE files. By enticing a victim to open a malicious CUE file, a remote attacker could execute arbitrary code on the affected system...
gtk-vnc -- bounds checking vulnerabilities
Daniel P. Berrange reports: CVE-2017-5884 - fix bounds checking for RRE, hextile and copyrect encodings CVE-2017-5885 - fix color map index bounds checking...
Vulnerability of the Java Platform software platform, which allows attackers to bypass certificate verification
The vulnerability of the RMI components of the Java Platform exists due to insufficient checking of input data. Exploiting this vulnerability allows a malicious actor to bypass certificate verification using network packets...