CVE-2014-9629

Integer overflow in the Encode function in modules/codec/schroedinger.c in VideoLAN VLC media player before 2.1.6 and 2.2.x before 2.2.1 allows remote attackers to conduct buffer overflow attacks and execute arbitrary code via a crafted length value...

EulerOS 2.0 SP3 : perl (EulerOS-SA-2019-2648)

According to the versions of the perl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - 1 cpan/Archive-Tar/bin/ptar, 2 cpan/Archive-Tar/bin/ptardiff, 3 cpan/Archive-Tar/bin/ptargrep, 4 cpan/CPAN/scripts/cpan, 5 cpan/Digest-SHA/shasum,...

PT-2019-15987 · FFmpeg · Ffjpeg

Name of the Vulnerable Software and Affected Versions: ffjpeg through 2019-08-21 Description: The issue is related to a NULL pointer dereference in the bitstr tell function at bitstr.c, specifically concerning jfif encode. Recommendations: For versions through 2019-08-21, at the moment, there is ...

libsixel Input Validation Error Vulnerability

libsixel is a package that provides encoding/decoding implementations for DEC SIXEL graphics and other converter programs. An input validation error vulnerability exists in the 'sixelencodebody' function of the tosixel.c file in libsixel version 1.8.2. The vulnerability stems from a networked...

UBUNTU-CVE-2019-19636

An issue was discovered in libsixel 1.8.2. There is an integer overflow in the function sixelencodebody at tosixel.c...

PT-2019-15895 · Libsixel +1 · Libsixel +1

Name of the Vulnerable Software and Affected Versions: libsixel version 1.8.2 Description: An issue was discovered in the function sixel encode body at tosixel.c, which is affected by an integer overflow. Recommendations: For libsixel version 1.8.2, at the moment, there is no information about a...

Ruby on Rails: The authenticity_token can be reversed and used to forge valid per_form_csrf_tokens for arbitrary routes

When performcsrftokens is set to true, each form should protected against CSRF with a unique token that is not predictable by an attacker. Theperformcsrftoken is generated using a HMAC SHA-256 using a key that is exposed in a reversed authenticitytoken. The authenticitytoken is a Base64 encoding ...

EulerOS 2.0 SP5 : perl (EulerOS-SA-2019-2220)

According to the versions of the perl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Integer underflow in regcomp.c in Perl before 5.20, as used in Apple OS X before 10.10.5 and other products, allows context-dependent attackers to...

DEBIAN-CVE-2019-18804

DjVuLibre 3.5.27 has a NULL pointer dereference in the function DJVU::filterfv at IW44EncodeCodec.cpp...

XORpass - Encoder To Bypass WAF Filters Using XOR Operations

XORpass is an encoder to bypass WAF filters using XOR operations. Installation & Usage git clone https://github.com/devploit/XORpass cd XORpass $ php encode.php STRING $ php decode.php "XORed STRING" Example of bypass: Using clear PHP function: Using XOR bypass of that function: $ php encode.php...

UBUNTU-CVE-2019-16711

ImageMagick 7.0.8-40 has a memory leak in Huffman2DEncodeImage in coders/ps2.c...

PT-2019-14786 · Imagemagick +4 · Imagemagick +4

Name of the Vulnerable Software and Affected Versions: ImageMagick version 7.0.8-40 Description: The issue is related to a memory leak in the Huffman2DEncodeImage function, located in the coders/ps2.c file. Recommendations: For ImageMagick version 7.0.8-40, consider updating to a newer version th...

Stegify - Go Tool For LSB Steganography, Capable Of Hiding Any File Within An Image

stegify is a simple command line tool capable of fully transparent hiding any file within an image. This technique is known as LSB Least Significant Bit steganography. Demonstration Carrier Data Results The Result file contains the Data file hidden in it. And as you can see it is fully transparen...

LibreOffice < 6.2.6 Macro - Python Code Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'LibreOffice Macro Python Code Execution', 'Description' = %q LibreOffice comes bundled with sample macros written in Python and allows the abilit...

LibreOffice < 6.2.6 Macro - Python Code Execution Exploit

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'LibreOffice Macro Python Code Execution', 'Description' = %q LibreOffice comes bundled with sample macros written in Python and allows the abilit...

openjpeg2: Excessive iteration in openjp2/t1.c:opj_t1_encode_cblks can allow for denial of service via crafted BMP file

In OpenJPEG 2.3.0, there is excessive iteration in the opjt1encodecblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file...

UBUNTU-CVE-2019-14541

GnuCOBOL 2.2 has a stack-based buffer overflow in cbencodeprogramid in cobc/typeck.c via crafted COBOL source code...

OpenJPEG Resource Management Error Vulnerability

OpenJPEG is a C-based open source JPEG2000 codec . A security vulnerability exists in the 'opjt1encodecblks' function in the openjp2/t1.c file in OpenJPEG version 2.3.1. An attacker can exploit this vulnerability to cause a denial of service with a specially crafted bmp file...

DEBIAN-CVE-2019-12973

In OpenJPEG 2.3.1, there is excessive iteration in the opjt1encodecblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file. This issue is similar to CVE-2018-6616...

Lotus Domino 8.5.3 - &#039;EXAMINE&#039; Stack Buffer Overflow DEP/ASLR Bypass (NSA&#039;s EMPHASISMINE)

Here is a working version of the NSA's EMPHASISMINE for IMAP Server Lotus Domino 8.5.3 FP0 DEP/ASLR bypass Replace breakpoints with msfvenom payload ALPHANUMERIC I love you Alison Thompson OAM @ThirdWaveORG Author: Charles Truscott @r0ss1n1 import base64 import struct import socket import time...