Lucene search
K

45 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 6:7 a.m.2 views

SUSE CVE-2008-3162

Stack-based buffer overflow in the strreadpacket function in libavformat/psxstr.c in FFmpeg before r13993 allows remote attackers to cause a denial of service application crash or execute arbitrary code via a crafted STR file that interleaves audio and video sectors...

9.3CVSS8.1AI score0.09251EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:45 a.m.3 views

SUSE CVE-2017-9109

An issue was discovered in adns before 1.5.2. It fails to ignore apparent answers before the first RR that was found the first time. when this is fixed, the second answer scan finds the same RRs at the first. Otherwise, adns can be confused by interleaving answers for the CNAME target, with the...

7.5CVSS6.9AI score0.0205EPSS
Exploits0References11
CNVD
CNVD
added 2022/12/23 12:0 a.m.23 views

OpenImageIO Information Disclosure Vulnerability

OpenImageIO is an image read/write library, along with a number of tools and applications. OpenImageIO suffers from an information disclosure vulnerability that is caused by a flaw in the IFFOutput channel interleaving function. An attacker can exploit this vulnerability to obtain sensitive...

5.9CVSS6AI score0.01132EPSS
Exploits1References1
OSV
OSV
added 2022/12/22 10:15 p.m.2 views

DEBIAN-CVE-2022-43596

An information disclosure vulnerability exists in the IFFOutput channel interleaving functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to leaked heap data. An attacker can provide malicious input to trigger this vulnerability...

5.9CVSS7.3AI score0.01132EPSS
Exploits1References1
NVD
NVD
added 2022/12/22 10:15 p.m.30 views

CVE-2022-43596

An information disclosure vulnerability exists in the IFFOutput channel interleaving functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to leaked heap data. An attacker can provide malicious input to trigger this vulnerability...

5.9CVSS0.01132EPSS
Exploits1References3
OSV
OSV
added 2022/12/22 10:15 p.m.3 views

UBUNTU-CVE-2022-43596

An information disclosure vulnerability exists in the IFFOutput channel interleaving functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to leaked heap data. An attacker can provide malicious input to trigger this vulnerability...

5.9CVSS7.3AI score0.01132EPSS
Exploits1References3
Prion
Prion
added 2022/12/22 10:15 p.m.22 views

Information disclosure

An information disclosure vulnerability exists in the IFFOutput channel interleaving functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to leaked heap data. An attacker can provide malicious input to trigger this vulnerability...

2.6CVSS5.5AI score0.01132EPSS
Exploits1References3Affected Software2
CNNVD
CNNVD
added 2022/12/22 12:0 a.m.3 views

OpenImageIO 缓冲区错误漏洞

OpenImageIO is an image read/write library, along with a number of tools and applications. OpenImageIO suffers from an information disclosure vulnerability that is caused by a flaw in the IFFOutput channel interleaving function. An attacker can exploit this vulnerability to obtain sensitive...

5.9CVSS6.1AI score0.01132EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2022/12/14 1:17 p.m.3 views

protobuf-java: potential DoS in the parsing procedure for binary data

A flaw was found in protobuf-java. Google Protocol Buffer protobuf-java allows the interleaving of com.google.protobuf.UnknownFieldSet fields. By persuading a victim to open specially-crafted content, a remote attacker could cause a timeout in the ProtobufFuzzer function, resulting in a denial of...

7.5CVSS7.2AI score0.01655EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2022/08/04 4:46 a.m.3 views

protobuf-java: potential DoS in the parsing procedure for binary data

A flaw was found in protobuf-java. Google Protocol Buffer protobuf-java allows the interleaving of com.google.protobuf.UnknownFieldSet fields. By persuading a victim to open specially-crafted content, a remote attacker could cause a timeout in the ProtobufFuzzer function, resulting in a denial of...

7.5CVSS7.2AI score0.01655EPSS
Exploits1References6
OSV
OSV
added 2022/01/10 2:10 p.m.42 views

CVE-2021-22569

An issue in protobuf-java allowed the interleaving of com.google.protobuf.UnknownFieldSet fields in such a way that would be processed out of order. A small malicious payload can occupy the parser for several minutes by creating large numbers of short-lived objects that cause frequent, repeated...

5.5CVSS5.5AI score
Exploits0References6
Kitploit
Kitploit
added 2020/01/10 12:30 p.m.54 views

LNAV - Log File Navigator

The log file navigator, lnav, is an enhanced log file viewer that takes advantage of any semantic information that can be gleaned from the files being viewed, such as timestamps and log levels. Using this extra semantic information, lnav can do things like interleaving messages from different...

7.2AI score
Exploits0References2
seebug.org
seebug.org
added 2017/12/15 12:0 a.m.147 views

MacOS/iOS multiple kernel UAFs due to incorrect IOKit object lifetime management in IOTimeSyncClockManagerUserClient(CVE-2017-13847)

IOTimeSyncClockManagerUserClient provides the userspace interface for the IOTimeSyncClockManager IOService. IOTimeSyncClockManagerUserClient overrides the IOUserClient::clientClose method but it treats it like a destructor. IOUserClient::clientClose is not a destructor and plays no role in the...

7.9AI score0.05028EPSS
Exploits2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.9 views

Firefox 3.6.8 - 3.6.11 Interleaving document.write and appendChild Exploit (From the Wild)

No description provided by source. !-- WARNING! This is exploit code from the wild. The original first 2 unicode chars at 'id=sun8' were ub8acu1029. Use, as always, at your own risk. body div style=visibility:hidden;width:0px;height:0px div...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2011/02/19 12:0 a.m.64 views

Mozilla Firefox Interleaving document.write / appendChild Code Execution

$Id: mozillainterleavedwrite.rb 11773 2011-02-18 02:23:10Z scriptjunkie $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

9.3CVSS0.7AI score0.83279EPSS
Exploits14
0day.today
0day.today
added 2010/10/30 12:0 a.m.21 views

Firefox 3.6.8 - 3.6.11 Interleaving document.write and appendChild

Exploit for windows platform in category remote exploits ================================================================== Firefox 3.6.8 - 3.6.11 Interleaving document.write and appendChild ==================================================================...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2010/10/29 12:0 a.m.7 views

Mozilla Firefox 3.6.8 3.6.11 - Interleaving document.write appendChild Remote Overflow

Mozilla Firefox 3.6.8 3.6.11 - Interleaving document.write appendChild Remote Overflow...

0.7AI score
Exploits0
0day.today
0day.today
added 2010/10/29 12:0 a.m.16 views

Firefox Interleaving document.write and appendChild Denial of Service

Exploit for windows platform in category dos / poc ===================================================================== Firefox Interleaving document.write and appendChild Denial of Service ===================================================================== Source:...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2010/10/29 12:0 a.m.30 views

Mozilla Firefox 3.6.8 < 3.6.11 - Interleaving 'document.write' / 'appendChild' Remote Overflow

uccccuccccu0d00u0d0du0d00u102du1000u0d00u102du1000u102du1000u2853u1000u0011u0000u116cu1000u0300u7ffeub459u1002u6b99u1000ub333udeaduffffuffffu57a8u13e8u0000u0000u57a0u13e8u1000u0000u0040u0000u2853u1000u0001u0000u2853u1000u0000u0000u1af1u1000u9090u0febu7be4u1005u2a49u1000u2a49u1000u2a49u1000u2a49u1...

7AI score
Exploits0
seebug.org
seebug.org
added 2010/10/29 12:0 a.m.20 views

Firefox Interleaving document.write and appendChild Denial of Service

No description provided by source. Source: https://bugzilla.mozilla.org/showbug.cgi?id=607222 htmlbody script function getattsstr var cobj=document.createElementstr; cobj.id="testcase"; document.body.appendChildcobj; var obj=document.getElementById"testcase"; var atts = new Array; forp in obj...

7.1AI score
Exploits0
Rows per page
Query Builder