11 matches found
The vulnerability of the AV1 multimedia framework Gstreamer’s file analyzer code allows a perpetrator to execute arbitrary code.
The vulnerability of the AV1 multimedia framework’s file analyzer codec is related to the possibility of buffer overflow attacks. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by creating specially crafted metadata in AV1 format files...
The vulnerability of the 7z-file analyzer component of the 7-Zip archive tool allows a hacker to execute arbitrary code.
The vulnerability of the 7z-file analyzer component of the 7-Zip compressor is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...
CVE-2022-41917 Incorrect Error Handling Allowed Partial File Reads Over REST API in OpenSearch
OpenSearch is a community-driven, open source fork of Elasticsearch and Kibana. OpenSearch allows users to specify a local file when defining text analyzers to process data for text analysis. An issue in the implementation of this feature allows certain specially crafted queries to return a...
AWStats: Multiple vulnerabilities
Background AWStats is an advanced log file analyzer and statistics generator. Description Multiple vulnerabilities have been discovered in AWStats. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is ...
The vulnerability of the Trace File Analyzer (TFA) Collector utility, a clustering application for Oracle Clusterware, allows a malicious individual to gain unauthorized access to protected data or cause partial service failure.
The vulnerability of the Trace File Analyzer TFA Collector utility, a tool for clustering Oracle Clusterware, is related to access control deficiencies. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected data or cause partial service failure through...
CVE-2019-2860
Vulnerability in the Oracle Clusterware component of Oracle Support Tools subcomponent: Trace File Analyzer TFA Collector. The supported version that is affected is 12.1.0.2.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to...
Oracle Support Tools Clusterware Component Denial of Service Vulnerability
Oracle Support Tools is a set of Oracle support tools from Oracle Corporation.Clusterware is a set of portable clusterware. A security vulnerability exists in the Trace File Analyzer TFA Collector subcomponent of the Clusterware component of Oracle Support Tools, version 12.1.0.2.0. An attacker...
The vulnerability of the ImportOldFormatStyles function in the DOC-file analyzer of the Apache OpenOffice office package allows a hacker to execute arbitrary code.
The vulnerability of the ImportOldFormatStyles function in the DOC-file analyzer of the Apache OpenOffice office package is related to the writing of data beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service failures or execute arbitrary code usi...
The vulnerability of the PPTStyleSheet function in the PowerPoint file analyzer of the Apache OpenOffice office package allows a hacker to execute arbitrary code.
The vulnerability of the PPTStyleSheet function in the Apache OpenOffice office package’s PPT file analyzer is related to data writing beyond the buffer limit. Exploiting this vulnerability can allow an attacker to cause service failures or execute arbitrary code...
[SECURITY] [DSA 1679-1] New awstats packages fix cross-site scripting
------------------------------------------------------------------------ Debian Security Advisory DSA-1679-1 [email protected] http://www.debian.org/security/ Florian Weimer December 03, 2008 http://www.debian.org/security/faq -...
DSA-1679-1 awstats - cross-site scripting
Bulletin has no description...