911 matches found
PYSEC-2017-92
Heap-based buffer overflow in the j2kencodeentry function in Pillow 2.5.0 through 3.1.1 allows remote attackers to cause a denial of service memory corruption via a crafted Jpeg2000 file...
UBUNTU-CVE-2016-3076
Heap-based buffer overflow in the j2kencodeentry function in Pillow 2.5.0 through 3.1.1 allows remote attackers to cause a denial of service memory corruption via a crafted Jpeg2000 file...
Silicon Graphics LibTIFF 'JPEGSetupEncode' Function Denial of Service Vulnerability
Silicon Graphics LibTIFF is a library for reading and writing TIFF Tagged Image File Format files from Silicon Graphics, USA. The library contains a number of command-line tools for processing TIFF files. A security vulnerability exists in the 'JPEGSetupEncode' function of the tiffjpeg.c file in...
Salesforce (Event Registration) Script Insertion
Document Title: =============== Salesforce Event Registration - Persistent Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=1991 Release Date: ============= 2017-01-11 Vulnerability Laboratory ID VL-ID: ====================================...
Apple iOS (Notify iTunes) - Bypass & Persistent Vulnerability
Document Title: =============== Apple iOS Notify iTunes - Bypass & Persistent Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2024 Followup ID: 654962036 Vulnerability Magazine:...
Salesforce (Event Registration) - Persistent Vulnerability
Document Title: =============== Salesforce Event Registration - Persistent Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=1991 Release Date: ============= 2017-01-11 Vulnerability Laboratory ID VL-ID: ====================================...
openssl: EVP_EncodeUpdate overflow
An integer overflow flaw, leading to a buffer overflow, was found in the way the EVPEncodeUpdate function of OpenSSL parsed very large amounts of input data. A remote attacker could use this flaw to crash an application using OpenSSL or, possibly, execute arbitrary code with the permissions of th...
Ian Dunn: unchecked unserialize usages in audit-trail-extension/audit-trail-extension.php
in: https://github.com/iandunn/audit-trail-extension/blob/master/audit-trail-extension.phpL106 https://github.com/iandunn/audit-trail-extension/blob/master/audit-trail-extension.phpL112 https://github.com/iandunn/audit-trail-extension/blob/master/audit-trail-extension.phpL133...
php: Integer overflow in php_raw_url_encode
Integer overflow in the phprawurlencode function in ext/standard/url.c in PHP before 5.5.34, 5.6.x before 5.6.20, and 7.x before 7.0.5 allows remote attackers to cause a denial of service application crash via a long string to the rawurlencode function. NOTE: the vendor says "Not sure if this...
php: Heap buffer overflow vulnerability in simplestring_addn in simplestring.c
Integer signedness error in the simplestringaddn function in simplestring.c in xmlrpc-epi through 0.54.2, as used in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9, allows remote attackers to cause a denial of service heap-based buffer overflow or possibly have unspecified other...
Debian DSA-3705-1 : curl - security update
Several vulnerabilities were discovered in cURL, an URL transfer library : - CVE-2016-8615 It was discovered that a malicious HTTP server could inject new cookies for arbitrary domains into a cookie jar. - CVE-2016-8616 It was discovered that when re-using a connection, curl was doing case...
Edusson (Robotdon) BB - Bypass & Persistent Vulnerability
Document Title: =============== Edusson Robotdon BB - Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1870 Release Date: ============= 2016-11-03 Vulnerability Laboratory ID VL-ID: ==================================== 18...
Edusson (Robotdon) BB - Bypass & Persistent Vulnerability
Document Title: =============== Edusson Robotdon BB - Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1870 Release Date: ============= 2016-11-03 Vulnerability Laboratory ID VL-ID: ==================================== 18...
CVE-2016-8617
The base64 encode function in curl before version 7.51.0 is prone to a buffer being under allocated in 32bit systems if it receives at least 1Gb as input via CURLOPTUSERNAME...
CVE-2016-8617
The base64 encode function in curl before version 7.51.0 is prone to a buffer being under allocated in 32bit systems if it receives at least 1Gb as input via CURLOPTUSERNAME...
openssl: EVP_EncodeUpdate overflow
An integer overflow flaw, leading to a buffer overflow, was found in the way the EVPEncodeUpdate function of OpenSSL parsed very large amounts of input data. A remote attacker could use this flaw to crash an application using OpenSSL or, possibly, execute arbitrary code with the permissions of th...
Ruby on Rails Active Support XSS Vulnerability (Jun 2015) - Linux
Ruby on Rails is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
openssl: EVP_EncodeUpdate overflow
An integer overflow flaw, leading to a buffer overflow, was found in the way the EVPEncodeUpdate function of OpenSSL parsed very large amounts of input data. A remote attacker could use this flaw to crash an application using OpenSSL or, possibly, execute arbitrary code with the permissions of th...
ALPINE-CVE-2016-3621
The LZWEncode function in tiflzw.c in the bmp2tiff tool in LibTIFF 4.0.6 and earlier, when the "-c lzw" option is used, allows remote attackers to cause a denial of service buffer over-read via a crafted BMP image...
UBUNTU-CVE-2016-3621
The LZWEncode function in tiflzw.c in the bmp2tiff tool in LibTIFF 4.0.6 and earlier, when the "-c lzw" option is used, allows remote attackers to cause a denial of service buffer over-read via a crafted BMP image...