7 matches found
SUSE CVE-2019-15548
An issue was discovered in the ncurses crate through 5.99.0 for Rust. There are instr and mvwinstr buffer overflows because interaction with C functions is mishandled...
ncurses crate for Rust buffer overflow vulnerability
ncurses crate for Rust is a Rust-based library for writing terminal-independent text-based user interfaces. A buffer overflow vulnerability exists in ncurses crate for Rust 5.99.0 and prior versions of instr and mvwinstr, which can be exploited by an attacker to cause a buffer overflow or heap...
CVE-2019-15548
An issue was discovered in the ncurses crate through 5.99.0 for Rust. There are instr and mvwinstr buffer overflows because interaction with C functions is mishandled...
UBUNTU-CVE-2019-15548
An issue was discovered in the ncurses crate through 5.99.0 for Rust. There are instr and mvwinstr buffer overflows because interaction with C functions is mishandled...
Microsoft Edge: Chakra: JIT: GlobOpt::OptTagChecks must consider IsLoopPrePass properly(CVE-2017-11840)
There's one more place that emits a BailOnNotObject opcode. Here's a snippet of GlobOpt::OptTagChecks. if valueType.CanBeTaggedValue && !valueType.HasBeenNumber && this-IsLoopPrePass || !this-currentBlock-loop ValueType newValueType = valueType.SetCanBeTaggedValuefalse; // Split out the tag check...
Microsoft Windows VBScript InStr/InStrRev Functions Use-After-Free Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose the contents of memory on applications using the VBScript scripting language on vulnerable installations of Microsoft Windows. Microsoft Internet Explorer is an affected application. User interaction is required to exploit this vulnerability ...
苹果CMS绕过检测SQL注入,第四发(绕过360防护)
简要描述: 原来我之前说的那些都成废话了,厂商没有看懂,囧~,看回复把过错归结于360safe3.php,不再发了,总结下原因。 详细说明: index.php: $m = be'get','m'; ifstrpos$m,'.' $m = substr$m,0,strpos$m,'.'; $par = explode'-',$m; $parlen = count$par; $ac = $par0; ifempty$ac $ac='vod'; $method='index'; $colnum = array"id","pg","yaer","typeid","classid";...