UBUNTU-CVE-2017-8061

drivers/media/usb/dvb-usb/dvb-usb-firmware.c in the Linux kernel 4.9.x and 4.10.x before 4.10.7 interacts incorrectly with the CONFIGVMAPSTACK option, which allows local users to cause a denial of service system crash or memory corruption or possibly have unspecified other impact by leveraging us...

UBUNTU-CVE-2017-8064

drivers/media/usb/dvb-usb-v2/dvbusbcore.c in the Linux kernel 4.9.x and 4.10.x before 4.10.12 interacts incorrectly with the CONFIGVMAPSTACK option, which allows local users to cause a denial of service system crash or memory corruption or possibly have unspecified other impact by leveraging use ...

UBUNTU-CVE-2017-8063

drivers/media/usb/dvb-usb/cxusb.c in the Linux kernel 4.9.x and 4.10.x before 4.10.12 interacts incorrectly with the CONFIGVMAPSTACK option, which allows local users to cause a denial of service system crash or possibly have unspecified other impact by leveraging use of more than one virtual page...

PT-2017-1929 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions 4.9.x through 4.10.x before 4.10.12 Description: The issue is caused by a buffer overflow in the drivers/media/usb/dvb-usb/cxusb.c driver of the Linux kernel. It can be exploited by a local attacker who interacts...

Over 85% Of Smart TVs Can Be Hacked Remotely Using Broadcasting Signals

The Internet-connected devices are growing at an exponential rate, and so are threats to them. Due to the insecure implementation, a majority of Internet-connected embedded devices, including Smart TVs, Refrigerators, Microwaves, Security Cameras, and printers, are routinely being hacked and used...

Delta Industrial Automation WPLSoft Bit Data File Parsing Heap-Based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Delta Industrial Automation WPLSoft. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

Newtec Satellite Modem MDM6000 2.2.5 Cross Site Scripting

Newtec Satellite Modem MDM6000 2.2.5 Cross-Site Scripting Vulnerability Vendor: Newtec Cy N.V. Product web page: http://www.newtec.eu Affected version: 2.2.5.67852 2.2.4.64193 1.3.8.56435 Summary: The MDM6000 modem is typically installed at both ends of a point-to-point satellite link or at the...

Faplino - DVB Info Dresden - Suspicious files, Unsafe deleting vulnerabilities

HackApp vulnerability scanner discovered that application Faplino - DVB Info Dresden published at the 'play' market has multiple vulnerabilities...

DVB-T finder - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application DVB-T finder published at the 'play' market has multiple vulnerabilities...

Tivizen DVB-T Wi-Fi - Exported components, Native code usage, Possible privilege escalation vulnerabilities

HackApp vulnerability scanner discovered that application Tivizen DVB-T Wi-Fi published at the 'play' market has multiple vulnerabilities...

Updated ffmpeg packages fix security vulnerabilities

The takdecodeframe function in libavcodec/takdec.c in FFmpeg before 2.0.4 does not properly validate a certain bits-per-sample value, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via crafted TAK aka Tom's lossless...

DreamBox DM500(+) - Arbitrary File Download Vulnerability

No description provided by source. DreamBox DM500+ Arbitrary File Download Vulnerability Vendor: Dream Multimedia GmbH Product web page: http://www.dream-multimedia-tv.de Affected version: DM500, DM500+, DM500HD and DM500S Summary: The Dreambox is a series of Linux-powered DVB satellite,...

Enigma2 Webinterface 1.7.x 1.6.x 1.5.x (linux) Remote File Disclosure

No description provided by source. !/usr/bin/perl Enigma2 Webinterface 1.7.x 1.6.x 1.5.x remote root file disclosure exploit Author: Todor Donev Email me: todor.donev@@gmail.com Platform: Linux Type: remote Gewgle Dork: Enigma2 movielist filetype:rss Enigma2 is a framebuffer-based zapping...

DreamBox DM800 Arbitrary File Download Vulnerability

No description provided by source. Exploit Title: title Date: date Author: ShellVision Version: dm800 = 1.6rc3 Tested on: dm800 Release 4.6.0 2009-12-24 DreamBox DM800 Arbitrary File Download Vulnerability Vendor: Dream Multimedia GmbH Product web page: http://www.dream-multimedia-tv.de Affected...

openSUSE Security Update : vlc (openSUSE-SU-2014:0315-1)

VLC was updated to version 2.1.3 bnc864422 : + Core : - Fix broken behaviour with SOCKSv5 proxies - Fix integer overflow on error when using vlcreaddir + Access : - Fix DVB-T2 tuning on Linux. - Fix encrypted DVD playback. - Fix v4l2 frequency conversion. + Decoders : - Fix numerous issues M2TS,...

openSUSE Security Update : wireshark (openSUSE-SU-2013:1295-1)

Wireshark was updated to 1.8.9 bnc831718 + vulnerabilities fixed : - The Bluetooth SDP dissector could go into a large loop CVE-2013-4927 wnpa-sec-2013-45 - The DIS dissector could go into a large loop CVE-2013-4929 wnpa-sec-2013-47 - The DVB-CI dissector could crash CVE-2013-4930 wnpa-sec-2013-4...

Out-of-bounds

The mpegtswritepmt function in the MPEG2 transport stream aka DVB muxer libavformat/mpegtsenc.c in FFmpeg, possibly 2.1 and earlier, allows remote attackers to have unspecified impact and vectors, which trigger an out-of-bounds write...

CVE-2014-2263

CVE-2014-2263 affects FFmpeg’s MPEG2 transport stream muxer (libavformat/mpegtsenc.c): the mpegts_write_pmt function allows an out-of-bounds write. Affected versions are FFmpeg up to 2.1 and earlier; remediation is to upgrade FFmpeg to 2.0.6+ (or newer) per linked advisories. Exploitation details...

CVE-2014-2263

The mpegtswritepmt function in the MPEG2 transport stream aka DVB muxer libavformat/mpegtsenc.c in FFmpeg, possibly 2.1 and earlier, allows remote attackers to have unspecified impact and vectors, which trigger an out-of-bounds write...

SuSE 11.2 / 11.3 Security Update : wireshark (SAT Patch Numbers 8318 / 8319)

This wireshark version update from 1.8.8 to 1.8.9 includes several security and general bug fixes. bnc831718 http://www.wireshark.org/docs/relnotes/wireshark-1.8.9.html - The Bluetooth SDP dissector could go into a large loop CVE-2013-4927 wnpa-sec-2013-45 - The DIS dissector could go into a larg...