Lucene search
+L

86 matches found

NVD
NVD
added 2022/08/05 10:15 p.m.37 views

CVE-2022-32543

An integer overflow vulnerability exists in the way ESTsoft Alyac 2.5.8.544 parses OLE files. A specially-crafted OLE file can lead to a heap buffer overflow which can result in arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability...

7.8CVSS0.00461EPSS
Exploits1References1
NVD
NVD
added 2022/08/05 10:15 p.m.32 views

CVE-2022-29886

An integer overflow vulnerability exists in the way ESTsoft Alyac 2.5.8.544 parses OLE files. A specially-crafted OLE file can lead to a heap buffer overflow, which can result in arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability...

7.8CVSS0.00459EPSS
Exploits1References1
Prion
Prion
added 2022/08/05 10:15 p.m.19 views

Integer overflow

An integer overflow vulnerability exists in the way ESTsoft Alyac 2.5.8.544 parses OLE files. A specially-crafted OLE file can lead to a heap buffer overflow, which can result in arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability...

4.4CVSS8AI score0.00459EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/08/05 10:15 p.m.30 views

Integer overflow

An integer overflow vulnerability exists in the way ESTsoft Alyac 2.5.8.544 parses OLE files. A specially-crafted OLE file can lead to a heap buffer overflow which can result in arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability...

4.4CVSS8AI score0.00461EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/08/05 9:20 p.m.43 views

CVE-2022-32543

An integer overflow vulnerability exists in the way ESTsoft Alyac 2.5.8.544 parses OLE files. A specially-crafted OLE file can lead to a heap buffer overflow which can result in arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability...

7.3CVSS8.2AI score0.00461EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/08/05 9:20 p.m.13 views

CVE-2022-32543

An integer overflow vulnerability exists in the way ESTsoft Alyac 2.5.8.544 parses OLE files. A specially-crafted OLE file can lead to a heap buffer overflow which can result in arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability...

7.3CVSS7.7AI score0.00461EPSS
Exploits1References1
CVE
CVE
added 2022/08/05 9:20 p.m.84 views

CVE-2022-32543

ESTsoft Alyac 2.5.8.544 is affected by an integer overflow in OLE file parsing that causes a heap buffer overflow and can enable arbitrary code execution when a user opens a specially crafted OLE file. Talos/TALOS-2022-1527 details show the overflow occurs during heap allocation: a 32-bit truncat...

7.8CVSS6.9AI score0.00461EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2022/08/05 9:20 p.m.124 views

CVE-2022-29886

ESTsoft Alyac 2.5.8.544 is affected by CVE-2022-29886 due to an integer overflow when parsing OLE files, causing a heap-based buffer overflow that can lead to arbitrary code execution. TALOS confirms the vulnerability occurs when processing the OLE header’s Number of Mini FAT sectors; an overflow...

7.8CVSS6.9AI score0.00459EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/08/05 9:20 p.m.45 views

CVE-2022-29886

An integer overflow vulnerability exists in the way ESTsoft Alyac 2.5.8.544 parses OLE files. A specially-crafted OLE file can lead to a heap buffer overflow, which can result in arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability...

7.3CVSS8.2AI score0.00459EPSS
Exploits1References1
Talos
Talos
added 2022/08/03 12:0 a.m.45 views

ESTsoft Alyac OLE header parsing integer overflow

Talos Vulnerability Report TALOS-2022-1527 ESTsoft Alyac OLE header parsing integer overflow August 3, 2022 CVE Number CVE-2022-32543 SUMMARY An integer overflow vulnerability exists in the way ESTsoft Alyac 2.5.8.544 parses OLE files. A specially-crafted OLE file can lead to a heap buffer overfl...

7.8CVSS6.9AI score0.00461EPSS
Exploits1
CNNVD
CNNVD
added 2022/08/03 12:0 a.m.5 views

ESTsoft Alyac 输入验证错误漏洞

ESTsoft Alyac is a low-priced comprehensive security software from the Korean company ESTsoft. A security vulnerability exists in ESTsoft Alyac 2.5.8.544, which is caused by an integer overflow in the way an OLE file is parsed, and can be exploited by an attacker to execute arbitrary code...

7.8CVSS7.1AI score0.00459EPSS
Exploits1References3
Talos
Talos
added 2022/08/03 12:0 a.m.52 views

ESTsoft Alyac OLE header Mini FAT sectors integer overflow

Talos Vulnerability Report TALOS-2022-1533 ESTsoft Alyac OLE header Mini FAT sectors integer overflow August 3, 2022 CVE Number CVE-2022-29886 SUMMARY An integer overflow vulnerability exists in the way ESTsoft Alyac 2.5.8.544 parses OLE files. A specially-crafted OLE file can lead to a heap buff...

7.8CVSS6.9AI score0.00459EPSS
Exploits1
CVE
CVE
added 2022/05/12 5:1 p.m.70 views

CVE-2022-21147

ESTsoft Alyac 2.5.7.7 contains an out-of-bounds read in the malware scan module (coen.aym) used when parsing PE files, which can crash Alyac and effectively stop the malware scan. TALOS confirms the vulnerability exists in the Alyac PE scanning path and identifies the exact module path and a loop...

5.5CVSS5.3AI score0.00638EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/05/12 5:1 p.m.23 views

CVE-2022-21147

An out of bounds read vulnerability exists in the malware scan functionality of ESTsoft Alyac 2.5.7.7. A specially-crafted PE file can trigger this vulnerability to cause denial of service and termination of malware scan. An attacker can provide a malicious file to trigger this vulnerability...

5CVSS5.6AI score0.00638EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2022/05/12 5:1 p.m.11 views

CVE-2022-21147

An out of bounds read vulnerability exists in the malware scan functionality of ESTsoft Alyac 2.5.7.7. A specially-crafted PE file can trigger this vulnerability to cause denial of service and termination of malware scan. An attacker can provide a malicious file to trigger this vulnerability...

5CVSS5.4AI score0.00638EPSS
Exploits1References2
Talos
Talos
added 2022/05/10 12:0 a.m.40 views

ESTsoft Alyac PE section headers out of bounds read

Talos Vulnerability Report TALOS-2022-1452 ESTsoft Alyac PE section headers out of bounds read May 10, 2022 CVE Number CVE-2022-21147 SUMMARY An out of bounds read vulnerability exists in the malware scan functionality of ESTsoft Alyac 2.5.7.7. A specially-crafted PE file can trigger this...

5.5CVSS5.3AI score0.00638EPSS
Exploits1
CNNVD
CNNVD
added 2022/05/10 12:0 a.m.5 views

ESTsoft Alyac 缓冲区错误漏洞

ESTsoft Alyac is a low-priced comprehensive security software from ESTsoft Korea. A security vulnerability exists in ESTsoft Alyac version 2.5.7.7, which stems from an out-of-bounds read vulnerability in the scanning function. The vulnerability is exploited by attackers to trigger the vulnerabili...

5.5CVSS5.7AI score0.00638EPSS
Exploits1References5
CVE
CVE
added 2021/06/11 5:36 p.m.39 views

CVE-2020-7860

The CVE-2020-7860 entry concerns Estsoft UnEGG v0.5 and earlier on Linux, affected by an integer overflow when parsing a specially crafted file, leading to arbitrary code execution. Affected component: UnEGG (file handling/parsing). Root cause: integer overflow triggered by malformed input. Impac...

7.8CVSS7.9AI score0.00862EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/06/11 5:36 p.m.20 views

CVE-2020-7860

UnEGG v0.5 and eariler versions have a Integer overflow vulnerability, triggered when the user opens a malformed specific file that is mishandled by UnEGG. Attackers could exploit this and arbitrary code execution. This issue affects: Estsoft UnEGG 0.5 versions prior to 1.0 on linux...

7.8CVSS8AI score0.00862EPSS
Exploits0References1
CNVD
CNVD
added 2019/09/02 12:0 a.m.6 views

ESTsoft ALSee Buffer Overflow Vulnerability

ESTsoft ALSee is a photo editing application from the Korean company ESTsoft. A buffer overflow vulnerability exists in the .PSD parsing function in ESTsoft ALSee versions 5.3 through 8.39, which can be exploited to execute arbitrary code with the help of specially crafted .PSD files...

7.8CVSS8.1AI score0.0116EPSS
Exploits0References1
Rows per page
Query Builder