DEBIAN-CVE-2018-15378

A vulnerability in ClamAV versions prior to 0.100.2 could allow an attacker to cause a denial of service DoS condition. The vulnerability is due to an error related to the MEW unpacker within the "unmew11" function libclamav/mew.c, which can be exploited to trigger an invalid read memory access v...

ALPINE-CVE-2018-15378

A vulnerability in ClamAV versions prior to 0.100.2 could allow an attacker to cause a denial of service DoS condition. The vulnerability is due to an error related to the MEW unpacker within the "unmew11" function libclamav/mew.c, which can be exploited to trigger an invalid read memory access v...

Music Center for PC improperly verifies software update files

Overview Music Center for PC provided by Sony Video & Sound Products Inc. contains an issue in software update process CWE-669. As a result, under a man-in-the-middle attack, a specially crafted executable file may be downloaded and executed. DigiGnome reported this vulnerability to IPA. JPCERT/C...

UBUNTU-CVE-2018-15378

A vulnerability in ClamAV versions prior to 0.100.2 could allow an attacker to cause a denial of service DoS condition. The vulnerability is due to an error related to the MEW unpacker within the "unmew11" function libclamav/mew.c, which can be exploited to trigger an invalid read memory access v...

DEBIAN-CVE-2018-17360

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.31. a heap-based buffer over-read in bfdgetl32 in libbfd.c allows an attacker to cause a denial of service through a crafted PE file. This vulnerability can be triggered by the executabl...

DEBIAN-CVE-2018-17358

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.31. An invalid memory access exists in bfdstabsectionfindnearestline in syms.c. Attackers could leverage this vulnerability to cause a denial of service application crash via a crafted E...

Microsoft Office Elevation of Privilege Vulnerability (CNVD-2018-16847)

Microsoft Office is an office software suite of products developed by the American Microsoft Corporation Microsoft. An elevation of privilege vulnerability exists in Microsoft Office 2016 for Mac, which stems from the program not properly validating updates before executing them. A remote attacke...

GNU Binutils Denial of Service Vulnerability (CNVD-2018-13846 )

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utilities developed by the GNU Project to work with object files in a variety of formats, with connectors, assemblers, and other tools for object files and archives.The Binary File Descriptor BFD library a.k.a...

DEBIAN-CVE-2018-13033

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service excessive memory allocation and application crash via a crafted ELF file, as demonstrated by bfdelfparseattributes in elf-attrs.c and bfdmalloc in libbfd.c...

DEBIAN-CVE-2018-10360

The docorenote function in readelf.c in libmagic.a in file 5.33 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted ELF file...

UBUNTU-CVE-2018-11384

The shop function in radare2 2.5.0 allows remote attackers to cause a denial of service heap-based out-of-bounds read and application crash via a crafted ELF file...

Netwide Assembler Buffer Overflow Vulnerability

Netwide Assembler NASM is a Linux-based assembler that creates binaries and writes bootloaders. A stack buffer out-of-bounds read vulnerability exists in the 'disasm' function of the disasm/disasm.c file in NASM version 2.13. A remote attacker can exploit this vulnerability to cause a denial of...

DEBIAN-CVE-2018-10254

Netwide Assembler NASM 2.13 has a stack-based buffer over-read in the disasm function of the disasm/disasm.c file. Remote attackers could leverage this vulnerability to cause a denial of service or possibly have unspecified other impact via a crafted ELF file...

Jungo DriverWizard WinDriver Denial of Service Vulnerability (CNVD-2018-08462)

Jungo DriverWizard WinDriver is a PCI/USB device driver development tool from Israel's Jungo Connectivity. A security vulnerability exists in the windrvr1260.sys file in Jungo DriverWizard WinDriver version 12.6.0. The vulnerability can be exploited by an attacker to cause a denial of service wit...

CVE-2018-9136

windrvr1260.sys in Jungo DriverWizard WinDriver 12.6.0 allows attackers to cause a denial of service BSOD via a crafted .exe file, a different vulnerability than CVE-2018-8821...

CVE-2018-9136

windrvr1260.sys in Jungo DriverWizard WinDriver 12.6.0 allows attackers to cause a denial of service BSOD via a crafted .exe file, a different vulnerability than CVE-2018-8821...

Jungo DriverWizard WinDriver Denial of Service Vulnerability

Jungo DriverWizard WinDriver is a PCI/USB device driver development tool from Israel's Jungo Connectivity. A security vulnerability exists in the windrvr1260.sys file in Jungo DriverWizard WinDriver version 12.6.0. The vulnerability can be exploited by an attacker to cause a denial of service wit...

CVE-2018-8821

windrvr1260.sys in Jungo DriverWizard WinDriver 12.6.0 allows attackers to cause a denial of service BSOD via a crafted .exe file...

Denial of service vulnerability in GNU binutils 'swap_std_reloc_in' function

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utilities developed by the GNU Project to work with object files in a variety of formats, with connectors, assemblers, and other tools for object files and archives.The Binary File Descriptor BFD library a.k.a...

ALPINE-CVE-2018-7642

The swapstdrelocin function in aoutx.h in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service aout32swapstdrelocout NULL pointer dereference and application crash via a crafted ELF file, as demonstrated by...