Locket Photo Frames - Dynamic Code Loading, External URLs, SD-card access vulnerabilities

HackApp vulnerability scanner discovered that application Locket Photo Frames published at the 'play' market has multiple vulnerabilities...

Flowers Photo Frames - Base64 encoded String, Customized SSL, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Flowers Photo Frames published at the 'play' market has multiple vulnerabilities...

Photo Frames-Unlimited - Customized SSL, MIT license, Redefined SSL Common Names verifier vulnerabilities

HackApp vulnerability scanner discovered that application Photo Frames-Unlimited published at the 'play' market has multiple vulnerabilities...

New Year Frames 2016 - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application New Year Frames 2016 published at the 'play' market has multiple vulnerabilities...

Lovely Photo Frames - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Lovely Photo Frames published at the 'play' market has multiple vulnerabilities...

New Year Photo Frames 2016 - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application New Year Photo Frames 2016 published at the 'play' market has multiple vulnerabilities...

New Year Photo Frames 2016 - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application New Year Photo Frames 2016 published at the 'play' market has multiple vulnerabilities...

New Year Photo Frames - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application New Year Photo Frames published at the 'play' market has multiple vulnerabilities...

PT-2021-3317 · Unknown +10 · Ieee 802.11 +10

Name of the Vulnerable Software and Affected Versions: IEEE 802.11 standard implementations affected versions not specified Description: The issue exists due to insufficient input validation in the implementation of WEP, WPA, WPA2, and WPA3 standards for IEEE 802.11 communication. This can allow ...

PT-2021-3057

Name of the Vulnerable Software and Affected Versions 802.11 standard affected versions not specified Check Point GAiA affected versions not specified Description The issue concerns a flaw in the authentication procedure of the 802.11 standard, which underlies Wi-Fi Protected Access WPA, WPA2, an...

nghttp2 -- Out of memory in nghttpd, nghttp, and libnghttp2_asio

Nghttp2 reports: Out of memory in nghttpd, nghttp, and libnghttp2asio applications due to unlimited incoming HTTP header fields. nghttpd, nghttp, and libnghttp2asio applications do not limit the memory usage for the incoming HTTP header field. If peer sends specially crafted HTTP/2 HEADERS frames...

Zizzania - Automated DeAuth Attack

zizzania sniffs wireless traffic listening for WPA handshakes and dumping only those frames suitable to be decrypted one beacon + EAPOL frames + data. In order to speed up the process, zizzania sends IEEE 802.11 DeAuth frames to the stations whose handshake is needed, properly handling...

Apple QuickTime ID3 Tag Heap Buffer Overflow Remote Code Execution Vulnerability

QuickTime is a multimedia architecture developed by Apple Computer that can handle many types of digital video, media clips, sound effects, text, animation, music formats, and interactive panoramic images. Apple QuickTime has a security vulnerability in the ID3 version tag parsing of MP3 files. T...

FreeBSD : qemu -- denial of service vulnerability in virtio-net support (42cbd1e8-b152-11e5-9728-002590263bf5)

Prasad J Pandit, Red Hat Product Security Team, reports : Qemu emulator built with the Virtual Network Devicevirtio-net support is vulnerable to a DoS issue. It could occur while receiving large packets over the tuntap/macvtap interfaces and when guest's virtio-net driver did not support...

Mozilla Firefox Denial of Service Vulnerability (CNVD-2015-08320)

Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the United States. A security vulnerability exists in the HTTP/2 implementation of Mozilla Firefox 43.0 and earlier. A remote attacker can exploit this vulnerability to cause a denial of service integer overflow,...

DEBIAN-CVE-2015-7295

hw/virtio/virtio.c in the Virtual Network Device virtio-net support in QEMU, when big or mergeable receive buffers are not supported, allows remote attackers to cause a denial of service guest network consumption via a flood of jumbo frames on the 1 tuntap or 2 macvtap interface...

CVE-2015-7295

hw/virtio/virtio.c in the Virtual Network Device virtio-net support in QEMU, when big or mergeable receive buffers are not supported, allows remote attackers to cause a denial of service guest network consumption via a flood of jumbo frames on the 1 tuntap or 2 macvtap interface...

Design/Logic Flaw

hw/virtio/virtio.c in the Virtual Network Device virtio-net support in QEMU, when big or mergeable receive buffers are not supported, allows remote attackers to cause a denial of service guest network consumption via a flood of jumbo frames on the 1 tuntap or 2 macvtap interface...

CVE-2015-7295

hw/virtio/virtio.c in the Virtual Network Device virtio-net support in QEMU, when big or mergeable receive buffers are not supported, allows remote attackers to cause a denial of service guest network consumption via a flood of jumbo frames on the 1 tuntap or 2 macvtap interface...

UBUNTU-CVE-2015-7295

hw/virtio/virtio.c in the Virtual Network Device virtio-net support in QEMU, when big or mergeable receive buffers are not supported, allows remote attackers to cause a denial of service guest network consumption via a flood of jumbo frames on the 1 tuntap or 2 macvtap interface...