12 matches found
EUVD-2014-3213
Malware in sbrugna...
PT-2024-7923
Name of the Vulnerable Software and Affected Versions braces versions prior to 3.0.3 Description The issue is related to uncontrolled resource consumption. If a malicious user sends "imbalanced braces" as input, the parsing will enter a loop, causing the program to allocate heap memory without...
SUSE CVE-2019-9959
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo...
PT-2021-4215 · Texas Instruments · Ti-Rtos
Name of the Vulnerable Software and Affected Versions: Texas Instruments TI-RTOS affected versions not specified Description: The issue is related to an integer overflow vulnerability in the HeapMem allocUnprotected function. This vulnerability can be triggered when the malloc function returns a...
MGASA-2020-0335 Updated x11-server packages fix security vulnerability
Allocation for pixmap data in AllocatePixmap does not initialize the memory in xserver, it leads to leak uninitialize heap memory to clients. When the X server runs with elevated privileges. This flaw can lead to ASLR bypass, which when combined with other flaws known/unknown could lead to lead t...
CVE-2019-9959
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo...
gdk-pixbuf2: multiple issues
CVE-2015-7673 denial of service It has been discovered that under certain circumstances while scaling a tga file a heap memory allocation may fail which is later used and leads to a denial of service. - CVE-2015-7673 heap buffer overflow It has been discovered that under certain circumstances...
Heap overflow
Google V8, as used in Google Chrome before 38.0.2125.101, does not properly track JavaScript heap-memory allocations as allocations of uninitialized memory and does not properly concatenate arrays of double-precision floating-point numbers, which allows remote attackers to obtain sensitive...
Apache Traffic Server HTTP Host Header Denial of Service Vulnerability
This host is running Apache Traffic Server and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: secpodapachetrafficserverhostdosvuln.nasl 5977 2017-04-19 09:02:22Z teissa $ Apache Traffic Server HTTP Host Header Denial of Service Vulnerability Authors: Rachana Shetty...
Oracle Java ICC Profile clrt Tag Parsing Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Oracle Java Runtime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists within the way Java handles color...
Adobe Shockwave Player Director File FFFFFF88 Record Integer Overflow (CVE-2010-2876; CVE-2010-4192)
Adobe Shockwave is a multimedia player that allows users to view interactive web content such as games, business presentations, entertainment, and advertisements from the web browser. It allows Adobe Director applications to be published on the Internet and viewed in a web browser on systems whic...
Ubuntu 6.06 LTS / 6.10 / 7.04 : php5 vulnerabilities (USN-485-1)
It was discovered that the PHP xmlrpc extension did not correctly check heap memory allocation sizes. A remote attacker could send a specially crafted request to a PHP application using xmlrpc and execute arbitrary code as the Apache user. CVE-2007-1864 Stefan Esser discovered a flaw in the rando...