2466 matches found
CVE-2018-17231
Telegram Desktop aka tdesktop 1.3.14 might allow attackers to cause a denial of service assertion failure and application exit via an "Edit color palette" search that triggers an "index out of range" condition. NOTE: this issue is disputed by multiple third parties because the described attack...
Design/Logic Flaw
The BPMDetect class in BPMDetect.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service assertion failure and application exit, as demonstrated by SoundStretch...
CVE-2018-17096
The BPMDetect class in BPMDetect.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service assertion failure and application exit, as demonstrated by SoundStretch...
CVE-2018-17096
CVE-2018-17096 affects Olli Parviainen’s SoundTouch 2.0 (BPMDetect.cpp in libSoundTouch.a). The described issue enables remote attackers to trigger a denial of service via an assertion failure and application exit (evidenced by SoundStretch). Several connected advisories (EulerOS, Ubuntu, Red Hat...
CVE-2018-17096
The BPMDetect class in BPMDetect.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service assertion failure and application exit, as demonstrated by SoundStretch...
Linux/x86 - File Modification(/etc/hosts) Polymorphic Shellcode (99 bytes)
/ Title: Linux/86 - File Modification/etc/hosts Polymorphic Shellcode 99 bytes Author: Ray Doyle @doylersec Tested on: Linux/x86 gcc -o polyhostsshellcode -z execstack -fno-stack-protector polyhostsshellcode.c / / Disassembly of section .text: 08048060 : 8048060: 29 c9 sub ecx,ecx 8048062: 51 pus...
CVE-2018-16749
CVE-2018-16749: In ImageMagick 7.0.7-29 and earlier, a missing NULL check in ReadOneJNGImage (coders/png.c) allows a crafted file to trigger a denial of service (WriteBlob assertion failure and app exit). Affected versions are before the fixed release. Remediation: update ImageMagick to a version...
Linux/x64 - Add Root User (toor/toor) Shellcode (99 bytes)
; Title: add root user toor:toor ; Date: 20180811 ; Author: epi ; https://epi052.gitlab.io/notes-to-self/ ; Tested on: linux/x8664 SMP CentOS-7 3.10.0-862.2.3.el7.x8664 GNU/Linux ; ; Shellcode Length: 99 bytes ; Action: Adds a user into /etc/passwd with the following information ; username: toor ...
Linux: Uninitialized state in x86 PV failsafe callback path
ISSUE DESCRIPTION Linux has a failsafe callback, invoked by Xen under certain conditions. Normally in this failsafe callback, errorentry is paired with errorexit; and errorentry uses %ebx to communicate to errorexit whether to use the user or kernel return path. Unfortunately, on 64-bit PV Xen on...
Olli Parviainen SoundTouch Denial of Service Vulnerability (CNVD-2018-20560)
Olli Parviainen SoundTouch is an open source audio processing library that is used to configure the speed, pitch, and playback rate of an audio stream or audio file, among other things. A security flaw exists in the 'FIRFilter::evaluateFilterMulti' function of the RateTransposer.cpp file of the...
Olli Parviainen SoundTouch Denial of Service Vulnerability
Olli Parviainen SoundTouch is an open source audio processing library that is used to configure the speed, pitch, and playback rate of an audio stream or audio file, among other things. The 'RateTransposer::setChannels' function in the RateTransposer.cpp file of the libSoundTouch.a static link...
Design/Logic Flaw
The FIRFilter::evaluateFilterMulti function in FIRFilter.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service assertion failure and application exit, as demonstrated by SoundStretch...
CVE-2018-14044
The RateTransposer::setChannels function in RateTransposer.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service assertion failure and application exit, as demonstrated by SoundStretch...
Design/Logic Flaw
The RateTransposer::setChannels function in RateTransposer.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service assertion failure and application exit, as demonstrated by SoundStretch...
CVE-2018-14045
The FIRFilter::evaluateFilterMulti function in FIRFilter.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service assertion failure and application exit, as demonstrated by SoundStretch...
CVE-2018-14044
The RateTransposer::setChannels function in RateTransposer.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service assertion failure and application exit, as demonstrated by SoundStretch...
DEBIAN-CVE-2018-14045
The FIRFilter::evaluateFilterMulti function in FIRFilter.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service assertion failure and application exit, as demonstrated by SoundStretch...
CVE-2018-14044
The RateTransposer::setChannels function in RateTransposer.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service assertion failure and application exit, as demonstrated by SoundStretch...
CVE-2018-14045
CVE-2018-14045 affects SoundTouch 2.0 (FIRFilter::evaluateFilterMulti in FIRFilter.cpp) and is associated with denial of service via remote exploitation demonstrated by SoundStretch. Related issues in the SoundTouch 2.0 stack include RateTransposer::setChannels (CVE-2018-14044), BPMDetect (CVE-20...
CVE-2018-14045
The FIRFilter::evaluateFilterMulti function in FIRFilter.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service assertion failure and application exit, as demonstrated by SoundStretch...