CVE-2012-0769

Adobe Flash Player before 10.3.183.16 and 11.x before 11.1.102.63 on Windows, Mac OS X, Linux, and Solaris; before 11.1.111.7 on Android 2.x and 3.x; and before 11.1.115.7 on Android 4.x does not properly handle integers, which allows attackers to obtain sensitive information via unspecified...

CVE-2012-0769

Adobe Flash Player contains CVE-2012-0769 (and related CVE-2012-0768) where integer handling flaws could lead to information disclosure across Windows, macOS, Linux, Solaris, and Android runtimes. The public-facing details show that Flash Player 11.1.102.63 (and earlier 11.x, 10.3.x lines) fix th...

CVE-2011-0493

Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha might allow remote attackers to cause a denial of service assertion failure and daemon exit via vectors related to malformed router caches and improper handling of integer values...

CVE-2011-0493

Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha might allow remote attackers to cause a denial of service assertion failure and daemon exit via vectors related to malformed router caches and improper handling of integer values...

CVE-2010-3073

SSLCipher.cpp in EncFS before 1.7.0 does not properly handle integer data sizes when constructing headers intended for randomization of initialization vectors, which makes it easier for local users to obtain sensitive information by defeating cryptographic protection mechanisms...

CVE-2010-3254

The WebSockets implementation in Google Chrome before 6.0.472.53 does not properly handle integer values, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...

Design/Logic Flaw

The WebSockets implementation in Google Chrome before 6.0.472.53 does not properly handle integer values, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...

CVE-2010-3254

The WebSockets implementation in Google Chrome before 6.0.472.53 does not properly handle integer values, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...

CVE-2010-3254

Removed by vendor...

CVE-2010-2759

The CVE-2010-2759 entry applies to Bugzilla 2.23.1–3.2.7, 3.3.1–3.4.7, 3.5.1–3.6.1, and 3.7–3.7.2 when used with PostgreSQL. It describes a vulnerability where large integers in (1) bug and (2) attachment phrases are not handled correctly, allowing remote authenticated users to cause a denial of ...

sablog-X v1.6 $page数值类型转换漏洞

sablog是国内安全研究人员写的一款blog程序。数值类型转换存在漏洞。 系统对分页函数$page处理上存在问题。 如果$page的参数为负数的话，程序就会出错。如：http://luoq.net/?page=-1 1是数字，-1就是字符了。暂且叫做数值类型转换上的问题吧。不过没有办法利用。哈哈。比较非主流。 sablog-X v1.6 对$page进行处理。 $page = isset$GET'page' ? max0, intval$GET'page' : 0;...

DSA-1385-1 xfs

Bulletin has no description...

FreeBSD 5.x - I386_Set_LDT() Multiple Local Denial of Service Vulnerabilities

FreeBSD 5.x - I386SetLDT Multiple Local Denial of Service Vulnerabilities // source: https://www.securityfocus.com/bid/20158/info FreeBSD is prone to multiple local denial-of-service vulnerabilities. These issues occur because of input-validation flaws related to the handling of integers. An...

FreeBSD 5.x - 'I386_Set_LDT()' Multiple Local Denial of Service Vulnerabilities

// source: https://www.securityfocus.com/bid/20158/info FreeBSD is prone to multiple local denial-of-service vulnerabilities. These issues occur because of input-validation flaws related to the handling of integers. An attacker may leverage these issues to cause the affected computer to crash,...

CVE-2004-1018

Multiple integer handling errors in PHP before 4.3.10 allow attackers to bypass safe mode restrictions, cause a denial of service, or execute arbitrary code via 1 a negative offset value to the shmopwrite function, 2 an "integer overflow/underflow" in the pack function, or 3 an "integer...

CVE-2004-1018

Multiple integer handling errors in PHP before 4.3.10 allow attackers to bypass safe mode restrictions, cause a denial of service, or execute arbitrary code via 1 a negative offset value to the shmopwrite function, 2 an "integer overflow/underflow" in the pack function, or 3 an "integer...

security flaw

Multiple integer handling errors in PHP before 4.3.10 allow attackers to bypass safe mode restrictions, cause a denial of service, or execute arbitrary code via 1 a negative offset value to the shmopwrite function, 2 an "integer overflow/underflow" in the pack function, or 3 an "integer...

PHP 4.x5.0 Shared Memory Module - Offset Memory Corruption

PHP 4.x5.0 Shared Memory Module - Offset Memory Corruption source: https://www.securityfocus.com/bid/12045/info PHP shared memory module shmop is reported prone to an integer handling vulnerability. The issue exists in the PHPFUNCTIONshmopwrite function and is as a result of a lack of sufficient...

PHP 4.x/5.0 Shared Memory Module - Offset Memory Corruption

source: https://www.securityfocus.com/bid/12045/info PHP shared memory module shmop is reported prone to an integer handling vulnerability. The issue exists in the PHPFUNCTIONshmopwrite function and is as a result of a lack of sufficient sanitization performed on 'offset' data. This vulnerability...

CVE-2004-1018

CVE-2004-1018 affects PHP versions before 4.3.10, due to integer handling errors in shmop_write, pack, and unpack. These flaws could allow a remote attacker to bypass safe mode restrictions, cause denial of service, or execute arbitrary code. Several advisories (Ubuntu USN-99-1, Red Hat RHSA advi...