8 matches found
CVE-2023-23298
The Toybox.Graphics.BufferedBitmap.initialize API method in CIQ API version 2.3.0 through 4.1.7 does not validate its parameters, which can result in integer overflows when allocating the underlying bitmap buffer. A malicious application could call the API method with specially crafted parameters...
High severity vulnerability that affects colorscore
Withdrawn, accidental duplicate publish. The initialize method in the Histogram class in lib/colorscore/histogram.rb in the colorscore gem before 0.0.5 for Ruby allows context-dependent attackers to execute arbitrary code via shell metacharacters in the 1 imagepath, 2 colors, or 3 depth variable...
colorscore Command Injection vulnerability
The initialize method in the Histogram class in lib/colorscore/histogram.rb in the colorscore gem before 0.0.5 for Ruby allows context-dependent attackers to execute arbitrary code via shell metacharacters in the 1 imagepath, 2 colors, or 3 depth variable...
Microsoft Internet Explorer COALineDashStyleArray Unsafe Memory Access
This Metasploit module exploits a vulnerability on Microsoft Silverlight. The vulnerability exists on the Initialize method from System.Windows.Browser.ScriptObject, which access memory in an unsafe manner. Since it is accessible for untrusted code user controlled it's possible to dereference...
Directory traversal
Directory traversal vulnerability in the ISCreateObject method in an ActiveX control in InstallShield\ISProxy.dll in AdminStudio in Novell ZENworks Configuration Management ZCM 10.3 through 11.2 allows remote attackers to execute arbitrary local DLL files via a crafted web page that also calls th...
IP2location.dll 1.0.0.1 Initialize() Buffer Overflow
IP2Location.dll v1.0.0.1 Initialize Buffer Overflow by sinn3r / IP2Location.dll v1.0.0.1 Initialize Buffer Overflow Vulnerable version : v1.0.0.1 checksum: d86933ab58720c384bdc081d33684f7d patched version : v1.0.0.1 checksum: bf66e2ef8be3c301b381cfb424ad0afc, v3.0.1.0 Found and coded by sinn3r...
CA eTrust PestPatrol Anti-Spyware 'ppctl.dll' ActiveX Control BOF Vulnerability
CA eTrust PestPatrol Anti-Spyware is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
VMWare ActiveX buffer overflow
VMDBCOMLib.VMList Initialize method buffer overflow...