EUVD-2021-23015

Malware in sbrugna...

The vulnerability of the software environment of Siemens Tecnomatix Plant Simulation lies in the ability to read data beyond the acceptable range in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the software environment of Siemens Tecnomatix Plant Simulation relates to reading data beyond the permissible range in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code using specially created WRL files...

libtiff: Invalid crop_width and/or crop_length could cause an out-of-bounds read in reverseSamples16bits()

An improper input validation flaw was found in libtiff's tiffcrop utility. This issue can lead to an out-of-bounds read and cause a crash if an attacker can supply a crafted file to tiffcrop...

GPAC 代码问题漏洞

GPAC is a multimedia framework for rich media and distributed under the LGPL license. A null pointer dereference vulnerability exists in the gfisomcencgetdefaultinfointernal function in GPAC version 1.0.1. An attacker could exploit this vulnerability via specially crafted files to cause a denial ...

GPAC 缓冲区错误漏洞

GPAC is a multimedia framework for rich media and distributed under the LGPL license. A heap overflow vulnerability exists in the gfhevcreadppsbsinternal function in mediatools/avparsers.c in GPAC version 1.0.1. An attacker can exploit this vulnerability via specially crafted files to cause a...

Microsoft SharePoint Information Disclosure Vulnerability (CNVD-2019-41633)

Microsoft SharePoint is an enterprise business collaboration platform from Microsoft. The platform is used to consolidate business information and enable sharing of work, collaborating with others, organizing projects and workgroups, and searching for people and information. An information...

The vulnerability of the Cisco Webex Network Recording Player and Cisco Webex Player for Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Cisco Webex Network Recording Player and Cisco Webex Player for Windows operating systems is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially crafted...

libfsntfs information disclosure vulnerability (CNVD-2018-16497)

libfsntfs is a library for accessing the New Technology File System NTFS. An information disclosure vulnerability exists in the libfsntfsattributereadfrommft function in the libfsntfsattribute.c file in libfsntfs 2018-04-20 and earlier. An attacker can exploit this vulnerability to obtain...

Buffalo WZR-1750DHP2 Buffer Overflow Vulnerability

The Buffalo WZR-1750DHP2 is a router product from the Buffalo Group of Japan. A buffer overflow vulnerability exists in the Buffalo WZR-1750DHP2 version 2.30 and earlier. An attacker can exploit this vulnerability to execute arbitrary code with the help of specially crafted files...

Microsoft Windows Elevation of Privilege Vulnerability (CNVD-2016-00282)

Microsoft Windows is a series of operating systems designed for personal computer and server users from the American company Microsoft. Microsoft Windows fails to properly load DLL files, allowing attackers to exploit the vulnerability to build special files that can be tricked into parsing and...