EUVD-2016-9707

Malware in sbrugna...

Integer Overflow

GTKWave 3.3.115 is vulnerable to Integer Overflow. The vulnerability is due to not allocating enough memory to stringpointers array in the LXT2 numdictentries functionality. A specially crafted .lxt2 file can lead to arbitrary code execution when opened by a victim...

ROS-20231013-05

Vulnerability of prfunctiontype function in prdbg.c file of GNU Binutils development tool is related to a memory leak. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service A vulnerability in the parsestabstructfields function of the GNU development tool...

CVE-2023-41637

An arbitrary file upload vulnerability in the Carica immagine function of GruppoSCAI RealGimm 1.1.37p38 allows attackers to execute arbitrary code via uploading a crafted HTML file...

DEBIAN-CVE-2022-43237

Libde265 v1.0.8 was discovered to contain a stack-buffer-overflow vulnerability via void putepelhvfallback in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted video file...

CVE-2022-28440

An arbitrary file upload vulnerability in UCMS v1.6 allows attackers to execute arbitrary code via a crafted PHP file...

Privilege escalation

Privilege escalation in 'upload.php' in FrogCMS SentCMS v0.9.5 allows attacker to execute arbitrary code via crafted php file...

CVE-2021-23413

This affects the package jszip before 3.7.0. Crafting a new zip file with filenames set to Object prototype values e.g proto, toString, etc results in a returned object with a modified prototype instance...

EulerOS 2.0 SP5 : poppler (EulerOS-SA-2019-2224)

According to the versions of the poppler packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - poppler through version 0.55.0 is vulnerable to an uncontrolled recursion in pdfunite resulting into potential denial-of-service.CVE-2017-7515 ...

CVE-2019-15142

In DjVuLibre 3.5.27, DjVmDir.cpp in the DJVU reader component allows attackers to cause a denial-of-service application crash in GStringRep::strdup in libdjvu/GString.cpp caused by a heap-based buffer over-read by crafting a DJVU file...

Design/Logic Flaw

In radare2 prior to 3.1.1, coreanalbytes in libr/core/cmdanal.c allows attackers to cause a denial-of-service application crash caused by out-of-bounds read by crafting a binary file...

CVE-2018-20461

In radare2 prior to 3.1.1, coreanalbytes in libr/core/cmdanal.c allows attackers to cause a denial-of-service application crash caused by out-of-bounds read by crafting a binary file...

CVE-2018-16517

asm/labels.c in Netwide Assembler NASM is prone to NULL Pointer Dereference, which allows the attacker to cause a denial of service via a crafted file...

Double free

The maddecoderrun function in decoder.c in Underbit libmad through 0.15.1b allows remote attackers to cause a denial of service SIGABRT because of double free or corruption or possibly have unspecified other impact via a crafted file. NOTE: this may overlap CVE-2017-11552...

UnRAR 'Archive::ReadHeader15' function out-of-bounds read vulnerability

UnRAR is a command line document decompression program for use on Windows and Linux platforms. An out-of-bounds read vulnerability in the 'Archive::ReadHeader15' function of the UnRAR libunrar.a file allows remote attackers to exploit the vulnerability to construct a malicious file that can be...

Google Android libjhead Remote Code Execution Vulnerability

Android is a Linux-based open source operating system developed by Google Inc. and the Open Handheld Consortium. A security vulnerability exists in libjhead in Android, which can be exploited by remote attackers to build special files that can be tricked into parsing and crashing the application...

Google Picasa 'phase one' tag integer overflow vulnerability

Google Picasa is a set of free image management tools. An integer overflow vulnerability exists in Google Picasa 'phase one' tag handling. A remote attacker can exploit this vulnerability to construct a malicious file and trick the application into parsing it, which could crash the application or...

Apple iOS CoreText Memory Corruption Vulnerability

Apple iOS is the latest operating system that runs on Apple's iPhone and iPod touch devices. A memory corruption vulnerability exists in Apple iOS CoreText, which allows remote attackers to exploit the vulnerability to construct special font files that can be tricked into parsing by the user, whi...

CVE-2009-1181

The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service crash via a crafted PDF file that triggers a NULL pointer dereference...