EUVD-2015-6395

Malware in sbrugna...

CVE-2012-4220

diagcharcore.c in the Qualcomm Innovation Center QuIC Diagnostics aka DIAG kernel-mode driver for Android 2.3 through 4.2 allows attackers to execute arbitrary code or cause a denial of service incorrect pointer dereference via an application that uses crafted arguments in a local diagcharioctl...

CVE-2015-6454

CVE-2015-6454 affects PeakHMI prior to 8.7.0.2. When the video server is enabled, a crafted packet can trigger an untrusted pointer dereference, leading to a remote denial of service (daemon crash). Affected product: PeakHMI (industrial control systems) prior to version 8.7.0.2. Impact: remote cr...

CVE-2014-1759

pubconv.dll in Microsoft Publisher 2003 SP3 and 2007 SP3 allows remote attackers to execute arbitrary code or cause a denial of service incorrect pointer dereference and application crash via a crafted .pub file, aka "Arbitrary Pointer Dereference Vulnerability."...

CVE-2013-3556

Wireshark is affected by CVE-2013-3556 in the ASN.1 BER dissector (fragment_add_seq_common in epan/reassemble.c). The issue is an incorrect pointer dereference during a comparison, allowing a remote attacker to crash the application via a malformed packet (denial of service). Public fixes are doc...

Null pointer dereference

The client in Novell GroupWise 8.0 before 8.0.3 HP2 and 2012 before SP1 HP1 allows remote attackers to execute arbitrary code or cause a denial of service incorrect pointer dereference via unspecified vectors...

Null pointer dereference

The befsfollowlink function in fs/befs/linuxvfs.c in the Linux kernel before 3.1-rc3 does not validate the length attribute of long symlinks, which allows local users to cause a denial of service incorrect pointer dereference and OOPS by accessing a long symlink on a malformed Be filesystem...

CVE-2011-2928

CVE-2011-2928 affects the Linux kernel prior to 3.1-rc3, specifically the befs_follow_link function in fs/befs/linuxvfs.c. The flaw does not validate the length attribute of long symlinks on a malformed Be filesystem, enabling a local attacker to trigger an incorrect pointer dereference and OOPS,...

Null pointer dereference

The gstype2interpret function in Ghostscript allows remote attackers to cause a denial of service incorrect pointer dereference and application crash via crafted font data in a compressed data stream, aka bug 691043...

CVE-2010-4054

The gstype2interpret function in Ghostscript allows remote attackers to cause a denial of service incorrect pointer dereference and application crash via crafted font data in a compressed data stream, aka bug 691043...

CVE-2010-4054

CVE-2010-4054 affects Ghostscript: the gs_type2_interpret function can be driven to crash via crafted font data in a compressed data stream (bug 691043), enabling a remote denial-of-service. Documented in MiracleLinux advisories and various OpenVAS/Nessus entries; patch/version details are not sp...

Null pointer dereference

The LookupGetterOrSetter function in js3250.dll in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 does not properly support window.lookupGetter function calls that lack arguments, which allows remote attackers to...