CVE-2018-25293

CVE-2018-25293 affects Prime95 29.4b7. A buffer overflow in the PrimeNet connection dialog allows a local attacker to crash the application by supplying an excessively long string to the optional proxy password field (example: a 6000-byte payload). This results in a denial of service when process...

CVE-2018-25293 Prime95 29.4b7 Denial of Service via Proxy Password Field

Prime95 29.4b7 contains a buffer overflow vulnerability in the PrimeNet connection dialog that allows local attackers to crash the application by supplying an excessively long string in the optional proxy password field. Attackers can trigger a denial of service by entering a 6000-byte payload in...

CVE-2019-25655 Device Monitoring Studio 8.10.00.8925 Denial of Service

Device Monitoring Studio 8.10.00.8925 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string to the server connection dialog. Attackers can trigger the crash by entering a malformed server name or address containing...

HDD Device Monitoring Studio 安全漏洞

HDD Device Monitoring Studio is a device communication monitoring and debugging tool developed by the American company HDD. Version 8.10.00.8925 of HDD Device Monitoring Studio contains a security vulnerability. This vulnerability stems from a denial-of-service vulnerability in the server...

EUVD-2019-19882

Valentina Studio 9.0.5 Linux contains a buffer overflow vulnerability in the Host field of the connection dialog that allows local attackers to crash the application by supplying an oversized input string. Attackers can trigger the vulnerability by pasting a crafted buffer exceeding 264 bytes int...

Paradigma Valentina Studio 缓冲区错误漏洞

Paradigma Valentina Studio is a powerful general-purpose database management and data modeling tool developed by Paradigma Corporation. The Paradigma Valentina Studio 9.0.5 Linux version contains a buffer error vulnerability. This vulnerability stems from a buffer overflow in the Host field of th...

CVE-2020-37134

CVE-2020-37134 affects UltraVNC Viewer 1.2.4.0. The vulnerability is a denial-of-service triggered by pasting a malformed 256-byte payload into the VNC Server connection dialog, which crashes the application. The available connected documents corroborate the affected software and the method to re...

CVE-2014-1584

The Public Key Pinning PKP implementation in Mozilla Firefox before 33.0 skips pinning checks upon an unspecified issuer-verification error, which makes it easier for remote attackers to bypass an intended pinning configuration and spoof a web site via a crafted certificate that leads to...

Design/Logic Flaw

The Public Key Pinning PKP implementation in Mozilla Firefox before 33.0 skips pinning checks upon an unspecified issuer-verification error, which makes it easier for remote attackers to bypass an intended pinning configuration and spoof a web site via a crafted certificate that leads to...

SuSE 11.3 Security Update : java-1_7_0-openjdk (SAT Patch Number 8090)

This update to icedtea-2.4.1 fixes various security issues : - S6741606, CVE-2013-2407: Integrate Apache Santuario - S7158805, CVE-2013-2445: Better rewriting of nested subroutine calls - S7170730, CVE-2013-2451: Improve Windows network stack support. - S8000638, CVE-2013-2450: Improve...

CVE-2013-2412

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serviceability. NOTE: the previous information is from the...

CVE-2005-0131

The CVE-2005-0131 entry concerns Konversation 0.15. The Quick Connection dialog erroneously uses the user’s password as the nickname when connecting to an IRC server, which can leak the password to other users. This is tied to the Konversation IRC client and stems from the login handling in the Q...