Lucene search
K

7 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:8 a.m.5 views

SUSE CVE-2019-15548

An issue was discovered in the ncurses crate through 5.99.0 for Rust. There are instr and mvwinstr buffer overflows because interaction with C functions is mishandled...

9.8CVSS9.5AI score0.01615EPSS
Exploits0References2
CNVD
CNVD
added 2019/08/28 12:0 a.m.5 views

ncurses crate for Rust buffer overflow vulnerability

ncurses crate for Rust is a Rust-based library for writing terminal-independent text-based user interfaces. A buffer overflow vulnerability exists in ncurses crate for Rust 5.99.0 and prior versions of instr and mvwinstr, which can be exploited by an attacker to cause a buffer overflow or heap...

9.8CVSS7.4AI score0.01615EPSS
Exploits0References1
OSV
OSV
added 2019/08/26 6:15 p.m.6 views

CVE-2019-15548

An issue was discovered in the ncurses crate through 5.99.0 for Rust. There are instr and mvwinstr buffer overflows because interaction with C functions is mishandled...

9.8CVSS7.3AI score0.01615EPSS
Exploits0References1
OSV
OSV
added 2019/08/26 6:15 p.m.5 views

UBUNTU-CVE-2019-15548

An issue was discovered in the ncurses crate through 5.99.0 for Rust. There are instr and mvwinstr buffer overflows because interaction with C functions is mishandled...

9.8CVSS7.3AI score0.01615EPSS
Exploits0References4
seebug.org
seebug.org
added 2017/12/04 12:0 a.m.45 views

Microsoft Edge: Chakra: JIT: GlobOpt::OptTagChecks must consider IsLoopPrePass properly(CVE-2017-11840)

There's one more place that emits a BailOnNotObject opcode. Here's a snippet of GlobOpt::OptTagChecks. if valueType.CanBeTaggedValue && !valueType.HasBeenNumber && this-IsLoopPrePass || !this-currentBlock-loop ValueType newValueType = valueType.SetCanBeTaggedValuefalse; // Split out the tag check...

7.6CVSS7.4AI score0.59642EPSS
Exploits3
Zero Day Initiative
Zero Day Initiative
added 2015/12/08 12:0 a.m.44 views

Microsoft Windows VBScript InStr/InStrRev Functions Use-After-Free Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose the contents of memory on applications using the VBScript scripting language on vulnerable installations of Microsoft Windows. Microsoft Internet Explorer is an affected application. User interaction is required to exploit this vulnerability ...

4.3CVSS5.6AI score0.25169EPSS
Exploits1References2
seebug.org
seebug.org
added 2014/06/26 12:0 a.m.29 views

苹果CMS绕过检测SQL注入,第四发(绕过360防护)

简要描述: 原来我之前说的那些都成废话了,厂商没有看懂,囧~,看回复把过错归结于360safe3.php,不再发了,总结下原因。 详细说明: index.php: $m = be'get','m'; ifstrpos$m,'.' $m = substr$m,0,strpos$m,'.'; $par = explode'-',$m; $parlen = count$par; $ac = $par0; ifempty$ac $ac='vod'; $method='index'; $colnum = array"id","pg","yaer","typeid","classid";...

7AI score
Exploits0
Rows per page
Query Builder