12 matches found
EUVD-2022-52435
Malicious code in bioql PyPI...
BIT-TENSORFLOW-2022-29207 Undefined behavior when users supply invalid resource handles in TensorFlow
TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, multiple TensorFlow operations misbehave in eager mode when the resource handle provided to them is invalid. In graph mode, it would have been impossible to perform these API calls, but...
An information disclosure vulnerability exists in curl <v8.1.0 when doing HTTP(S) transfers libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send even when the `CURLOPT_POSTFIELDS` option has been set if the same handle previously wasused to issue a `PUT` request which used that callback. This flaw may surprise the application and cause it to misbehave and either send off the wrong data or use memory after free or similar in the second transfer. The problem exists in the logic for a reused handle when it is (expected to be) changed from a PUT to a POST.
...
CVE-2022-29207 Undefined behavior when users supply invalid resource handles in TensorFlow
TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, multiple TensorFlow operations misbehave in eager mode when the resource handle provided to them is invalid. In graph mode, it would have been impossible to perform these API calls, but...
Basket becomes unusable if everybody burns their shares
Handle kenzo Vulnerability details While handling the fees, the contract calculates the new ibRatio by dividing by totalSupply. This can be 0 leading to a division by 0. Impact If everybody burns their shares, in the next mint, totalSupply will be 0, handleFees will revert, and so nobody will be...
In-depth analysis of the thread and process handle leak vulnerability on-vulnerability warning-the black bar safety net
Over the years, the author had to encounter and use some handle disclosure vulnerability. Of course, these processes are also particularly interesting, because not all handles have been awardedPROCESSALLACCESSorTHREADALLACCESSpermissions, so you want to successfully use, or to use their brains in...
Sandbox Escape: Win32k Window Handle Vulnerability (EoP)
This bug was disclosed directly to Microsoft. http://technet.microsoft.com/en-us/security/bulletin/ms14-003...
WebMod 0.48 (Content-Length) Remote Buffer Overflow Exploit PoC
Exploit for unknown platform in category remote exploits =============================================================== WebMod 0.48 Content-Length Remote Buffer Overflow Exploit PoC =============================================================== / WebMod Stack Buffer Overflow by cybermind Kevin...
CVE-2006-2374
The Server Message Block SMB driver MRXSMB.SYS in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows local users to cause a denial of service hang by calling the MrxSmbCscIoctlCloseForCopyChunk with the file handle of the shadow device, which results in a deadlock,...
CVE-2004-1174
direntry.c in Midnight Commander mc 4.5.55 and earlier allows attackers to cause a denial of service by "manipulating non-existing file handles."...
NSFOCUS SA2000-03: Microsoft WIN9X Share Service File Handle Vulnerability
NSFOCUS Security AdvisorySA2000-03 Topic : Microsoft WIN9X Share Service File Handle Vulnerability Release Dateёє July 10, 2000 Update Dateёє Oct 11, 2000 Affected System: ================= - Microsoft Windows 95 - Microsoft Windows 98 - Microsoft Windows 98 Second Edition Non-affected Systemёє...
Microsoft Windows 9x - File Handle Buffer Overflow
// source: https://www.securityfocus.com/bid/1796/info The file sharing SMB service in Windows enables client applications to access and modify files from a server on the network. The SMB service within Windows 95/98 allocates 0x4004 bytes to store file handles. Therefore, a file handle returned ...