Lucene search
K

63 matches found

NVD
NVD
added 2022/02/16 9:15 p.m.15 views

CVE-2021-43302

Read out-of-bounds in PJSUA API when calling pjsuarecordercreate. An attacker-controlled 'filename' argument may cause an out-of-bounds read when the filename is shorter than 4 characters...

9.1CVSS0.02198EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2022/02/16 9:15 p.m.65 views

CVE-2021-43299

Stack overflow in PJSUA API when calling pjsuaplayercreate. An attacker-controlled 'filename' argument may cause a buffer overflow since it is copied to a fixed-size stack buffer without any size validation...

9.8CVSS7.5AI score0.02514EPSS
Exploits0References4
Prion
Prion
added 2022/02/16 9:15 p.m.21 views

Stack overflow

Stack overflow in PJSUA API when calling pjsuarecordercreate. An attacker-controlled 'filename' argument may cause a buffer overflow since it is copied to a fixed-size stack buffer without any size validation...

7.5CVSS9.4AI score0.02376EPSS
Exploits0References5Affected Software2
Prion
Prion
added 2022/02/16 9:15 p.m.20 views

Out-of-bounds

Read out-of-bounds in PJSUA API when calling pjsuarecordercreate. An attacker-controlled 'filename' argument may cause an out-of-bounds read when the filename is shorter than 4 characters...

6.4CVSS9.1AI score0.02198EPSS
Exploits0References5Affected Software2
UbuntuCve
UbuntuCve
added 2022/02/16 9:15 p.m.41 views

CVE-2021-43302

Read out-of-bounds in PJSUA API when calling pjsuarecordercreate. An attacker-controlled 'filename' argument may cause an out-of-bounds read when the filename is shorter than 4 characters...

9.1CVSS7.3AI score0.02198EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2022/02/16 9:15 p.m.63 views

CVE-2021-43300

Stack overflow in PJSUA API when calling pjsuarecordercreate. An attacker-controlled 'filename' argument may cause a buffer overflow since it is copied to a fixed-size stack buffer without any size validation...

9.8CVSS7.5AI score0.02376EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2022/02/16 12:0 a.m.54 views

CVE-2021-43299

Stack overflow in PJSUA API when calling pjsuaplayercreate. An attacker-controlled 'filename' argument may cause a buffer overflow since it is copied to a fixed-size stack buffer without any size validation...

9.8CVSS9.1AI score0.02514EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2019/11/29 11:15 p.m.20 views

CVE-2019-19451

When GNOME Dia before 2019-11-27 is launched with a filename argument that is not a valid codepoint in the current encoding, it enters an endless loop, thus endlessly writing text to stdout. If this launch is from a thumbnailer service, this output will usually be written to disk via the system's...

5.5CVSS6AI score0.0037EPSS
Exploits0References2
Prion
Prion
added 2010/02/22 9:30 p.m.16 views

Stack overflow

Multiple stack-based buffer overflows in the HyleosChemView.HLChemView ActiveX control HyleosChemView.ocx in Hyleos ChemView 1.9.5.1 allow remote attackers to execute arbitrary code via a large number of white space characters in the filename argument to the 1 SaveasMolFile and 2 ReadMolFile...

9.3CVSS8.3AI score0.35128EPSS
Exploits4References7Affected Software1
Cvelist
Cvelist
added 2010/02/22 9:0 p.m.31 views

CVE-2010-0679

Multiple stack-based buffer overflows in the HyleosChemView.HLChemView ActiveX control HyleosChemView.ocx in Hyleos ChemView 1.9.5.1 allow remote attackers to execute arbitrary code via a large number of white space characters in the filename argument to the 1 SaveasMolFile and 2 ReadMolFile...

7.7AI score0.35128EPSS
Exploits4References7
Prion
Prion
added 2008/03/24 6:44 p.m.19 views

Buffer overflow

Buffer overflow in XnView 1.92.1 allows user-assisted remote attackers to execute arbitrary code via a long filename argument on the command line. NOTE: it is unclear whether there are common handler configurations in which this argument is controlled by an attacker...

7.6CVSS8.1AI score0.11292EPSS
Exploits2References5Affected Software1
NVD
NVD
added 2008/03/24 6:44 p.m.22 views

CVE-2008-1461

Buffer overflow in XnView 1.92.1 allows user-assisted remote attackers to execute arbitrary code via a long filename argument on the command line. NOTE: it is unclear whether there are common handler configurations in which this argument is controlled by an attacker...

7.6CVSS7.7AI score0.11292EPSS
Exploits2References5
CVE
CVE
added 2008/03/24 6:0 p.m.51 views

CVE-2008-1461

CVE-2008-1461 affects XnView 1.92.1. It is a buffer-overflow vulnerability in the command-line filename argument, allowing a user-assisted remote attacker to potentially execute arbitrary code in the context of the running user. Exploit details in public writeups describe an attack condition wher...

7.6CVSS7.8AI score0.11292EPSS
Exploits2References5Affected Software1
Cvelist
Cvelist
added 2007/09/23 11:0 p.m.31 views

CVE-2002-2226

Buffer overflow in tftpd of TFTP32 2.21 and earlier allows remote attackers to execute arbitrary code via a long filename argument...

7.8AI score0.63478EPSS
Exploits4References7
RedHat Linux
RedHat Linux
added 2007/07/11 12:0 a.m.5 views

security flaw

Buffer overflow in UnZip 5.50 and earlier allows user-assisted attackers to execute arbitrary code via a long filename command line argument. NOTE: since the overflow occurs in a non-setuid program, there are not many scenarios under which it poses a vulnerability, unless unzip is passed long...

3.7CVSS6.2AI score0.01516EPSS
Exploits1References4
Cvelist
Cvelist
added 2007/05/11 10:0 a.m.19 views

CVE-2007-2602

Buffer overflow in MIBEXTRA.EXE in Ipswitch WhatsUp Gold 11 allows attackers to cause a denial of service application crash or execute arbitrary code via a long MIB filename argument. NOTE: If there is not a common scenario under which MIBEXTRA.EXE is called with attacker-controlled command line...

7.8AI score0.0346EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2007/05/01 1:37 p.m.7 views

security flaw

Buffer overflow in UnZip 5.50 and earlier allows user-assisted attackers to execute arbitrary code via a long filename command line argument. NOTE: since the overflow occurs in a non-setuid program, there are not many scenarios under which it poses a vulnerability, unless unzip is passed long...

3.7CVSS6.2AI score0.01516EPSS
Exploits1References4
Cvelist
Cvelist
added 2007/01/23 2:0 a.m.18 views

CVE-2006-6950

Directory traversal vulnerability in Conti FTPServer 1.0 Build 2.8 allows remote attackers to read arbitrary files and list arbitrary directories via a .. dot dot in a filename argument...

6.7AI score0.01623EPSS
Exploits0References5
OSV
OSV
added 2005/12/31 5:0 a.m.4 views

DEBIAN-CVE-2005-4667

Buffer overflow in UnZip 5.50 and earlier allows user-assisted attackers to execute arbitrary code via a long filename command line argument. NOTE: since the overflow occurs in a non-setuid program, there are not many scenarios under which it poses a vulnerability, unless unzip is passed long...

3.7CVSS7.7AI score0.01516EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2005/05/20 12:0 a.m.27 views

gedit -- format string vulnerability

Yan Feng reports a format string vulnerability in gedit. This vulnerability could cause a denial of service with a binary file that contains format string characters within the filename. It had been reported that web browsers and email clients can be configured to provide a filename as an argumen...

2.6CVSS6.2AI score0.07655EPSS
Exploits0References1
Rows per page
Query Builder