ALPINE-CVE-2019-8905

docorenote in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to fileprintable, a different vulnerability than CVE-2018-10360...

CVE-2019-8907

docorenote in readelf.c in libmagic.a in file 5.35 allows remote attackers to cause a denial of service stack corruption and application crash or possibly have unspecified other impact...

CVE-2019-8905

CVE-2019-8905 affects the file utility (libmagic.a) do_core_note in readelf.c, version 5.35, via a stack-based buffer over-read related to file_printable. This can allow information disclosure and may cause denial of service when processing crafted ELF files. Upstream fixes exist in file version ...

CVE-2019-8905

docorenote in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to fileprintable, a different vulnerability than CVE-2018-10360...

UBUNTU-CVE-2019-8906

docorenote in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused...

UBUNTU-CVE-2019-8905

docorenote in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to fileprintable, a different vulnerability than CVE-2018-10360...

UBUNTU-CVE-2019-8907

docorenote in readelf.c in libmagic.a in file 5.35 allows remote attackers to cause a denial of service stack corruption and application crash or possibly have unspecified other impact...

CVE-2019-8904

dobidnote in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to fileprintf and filevprintf...

PHP 5.6.x < 5.6.8 Multiple Vulnerabilities

According to its banner, the version of PHP 5.6.x running on the remote web server is prior to 5.6.8. It is, therefore, affected by multiple vulnerabilities : - An unspecified use-after-free error exists in the zendsharedmemdup function within file ext/opcache/zendsharedalloc.c that allows an...

Masc - A Web Malware Scanner

A malware web scanner developed during CyperCamp Hackathon 2017. Features At the moment, there are some features avaiable for any type of website custom or CMS and some of them only available for specific platforms: Scan any website for malware using OWASP WebMalwareScanner checksum, YARA rules...

CVE-2018-10360

The docorenote function in readelf.c in libmagic.a in file 5.33 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted ELF file...

file denial of service vulnerability (CNVD-2018-11360)

file is a set of tools maintained by software developer Christos Zoulas for viewing file formats on Unix-like systems. A security vulnerability exists in the 'docorenote' function in the readelf.c file of the libmagic.a static link library in file version 5.33. A remote attacker can exploit this...

DEBIAN-CVE-2018-10360

The docorenote function in readelf.c in libmagic.a in file 5.33 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted ELF file...

CVE-2018-10360

The docorenote function in readelf.c in libmagic.a in file 5.33 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted ELF file...

FreeBSD : FreeBSD -- Multiple vulnerabilities in file(1) and libmagic(3) (70140f20-6007-11e6-a6c3-14dae9d210b8)

A specifically crafted Composite Document File CDF file can trigger an out-of-bounds read or an invalid pointer dereference. CVE-2012-1571 A flaw in regular expression in the awk script detector makes use of multiple wildcards with unlimited repetitions. CVE-2013-7345 A malicious input file could...

Pattern Matching Swiss Knife: YARA

YARA is a tool aimed at but not limited to helping malware researchers to identify and classify malware samples. With YARA you can create descriptions of malware families or whatever you want to describe based on textual or binary patterns. Each description, a.k.a rule, consists of a set of strin...

v0lt - Security CTF Toy Tools

v0lt is an attempt to regroup every tool I used/use/will use in security CTF, Python style. A lot of exercises were solved using bash scripts but Python may be more flexible, that's why. Nothing to do with Gallopsled. It's a toy toolkit, with small but specific utils only. Requirements and...

SOL16875 - file vulnerability CVE-2012-1571

file before 5.11 and libmagic allow remote attackers to cause a denial of service crash via a crafted Composite Document File CDF file that triggers 1 an out-of-bounds read or 2 an invalid pointer dereference. CVE-2012-1571...

PHP libmagick 'libmagic/softmagic.c' denial of service vulnerability (CNVD-2015-03966)

PHP is a general-purpose scripting language. A security vulnerability in the PHP Fileinfo extension when handling constructed files allows remote attackers to exploit the vulnerability to crash the PHP process, resulting in a denial of service...

PHP 5.5.x < 5.5.24 Multiple Vulnerabilities

According to its banner, the version of PHP 5.5.x running on the remote web server is prior to 5.5.24. It is, therefore, affected by multiple vulnerabilities : - An unspecified use-after-free error exists in the zendsharedmemdup function within file ext/opcache/zendsharedalloc.c that allows an...