CVE-2017-11121

On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56 and other chips, properly crafted malicious over-the-air Fast Transition frames can potentially trigger internal Wi-Fi firmware heap and/or stack overflows, leading to denial of service or other effects, aka B-V2017061205...

Cisco IOS Software for Cisco Integrated Services Routers Generation 2 Denial of Service Vulnerability

A vulnerability in the implementation of a protocol in Cisco Integrated Services Routers Generation 2 ISR G2 Routers running Cisco IOS Software could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial of service DoS condition. The vulnerabilit...

PT-2017-4196 · Cisco · Cisco Integrated Services Routers Generation 2 (Isr G2) Routers +1

Name of the Vulnerable Software and Affected Versions: Cisco IOS versions 15.0 through 15.6 Description: A vulnerability in the implementation of a protocol in Cisco Integrated Services Routers Generation 2 ISR G2 Routers could allow an unauthenticated, adjacent attacker to cause an affected devi...

Broadcom 802.11v WNM Sleep Mode Response Heap Overflow Vulnerability

Broadcom suffers from a heap overflow vulnerability when handling 802.11v WNM Sleep Mode Response. Broadcom: Heap overflow when handling 802.11v WNM Sleep Mode Response CVE-2017-7065 Broadcom produces Wi-Fi HardMAC SoCs which are used to handle the PHY and MAC layer processing. These chips are...

Apple iOS 10.2 - Broadcom Out-of-Bounds Write when Handling 802.11k Neighbor Report Response

Apple iOS 10.2 - Broadcom Out-of-Bounds Write when Handling 802.11k Neighbor Report Response Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1289 The exploit gains code execution on the Wi-Fi firmware on the iPhone 7. The exploit has been tested against the Wi-Fi firmware as...

The vulnerability of the mv_read_header function in the multimedia library Ffmpeg (libavformat/mvdec.c) allows a attacker to trigger memory consumption and service failure.

The vulnerability of the mvreadheader function in the FFmpeg multimedia library libavformat/mvdec.c is related to resource management errors. Exploiting this vulnerability can allow a remote attacker to trigger memory consumption and service failures by using a specially created MV format file...

Clickjacking Through Frames

bolt/bolt is vulnerable to clickjacking attacks. The vulnerability exists as bolt did not have sameorigin set in the X-Frame-Options header...

CVE-2017-11121

On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56 and other chips, properly crafted malicious over-the-air Fast Transition frames can potentially trigger internal Wi-Fi firmware heap and/or stack overflows, leading to denial of service or other effects, aka B-V2017061205...

UBUNTU-CVE-2017-14055

In libavformat/mvdec.c in FFmpeg 3.3.3, a DoS in mvreadheader due to lack of an EOF End of File check might cause huge CPU and memory consumption. When a crafted MV file, which claims a large "nbframes" field in the header but does not contain sufficient backing data, is provided, the loop over t...

CVE-2015-7516

ONOS before 1.5.0 when using the ifwd app allows remote attackers to cause a denial of service NULL pointer dereference and switch disconnect by sending two Ethernet frames with ethertype Jumbo Frame 0x8870...

CVE-2015-7516

ONOS before 1.5.0 when using the ifwd app allows remote attackers to cause a denial of service NULL pointer dereference and switch disconnect by sending two Ethernet frames with ethertype Jumbo Frame 0x8870...

CVE-2015-7516

CVE-2015-7516 affects ONOS before 1.5.0 when using the ifwd app. A remote attacker can cause a denial of service by sending two Ethernet frames with ether_type 0x8870, triggering a NULL pointer dereference and switch disconnect. The available documents describe the impact as DoS but do not specif...

DEBIAN-CVE-2017-12855

Xen maintains the GTFread,writing bits as appropriate, to inform the guest that a grant is in use. A guest is expected not to modify the grant details while it is in use, whereas the guest is free to modify/reuse the grant entry when it is not in use. Under some circumstances, Xen will clear the...

Technicolor TC8717T Device Time Warner Firmware Unauthorized Access Vulnerability

Technicolor TC8717T devices is a router from the French company Technicolor.Time Warner is the firmware that runs on it. A security vulnerability exists in the Time Warner firmware on Technicolor TC8717T devices. A remote attacker could exploit the vulnerability to gain network access by reading...

CVE-2017-11643

GraphicsMagick 1.3.26 has a heap overflow in the WriteCMYKImage function in coders/cmyk.c when processing multiple frames that have non-identical widths...

Heap overflow

GraphicsMagick 1.3.26 has a heap overflow in the WriteRGBImage function in coders/rgb.c when processing multiple frames that have non-identical widths...

CVE-2017-11643

GraphicsMagick 1.3.26 has a heap overflow in the WriteCMYKImage function in coders/cmyk.c when processing multiple frames that have non-identical widths...

CVE-2017-11636

GraphicsMagick 1.3.26 has a heap overflow in the WriteRGBImage function in coders/rgb.c when processing multiple frames that have non-identical widths...

CVE-2017-11636

GraphicsMagick 1.3.26 has a heap overflow in the WriteRGBImage function in coders/rgb.c when processing multiple frames that have non-identical widths...

Heap overflow

GraphicsMagick 1.3.26 has a heap overflow in the WriteCMYKImage function in coders/cmyk.c when processing multiple frames that have non-identical widths...