73 matches found
Exploit for Out-of-bounds Write in Zeromq Libzmq
CVE-2019-13132 — libzmq CURVE INITIATE stack overflow → RCE la...
EUVD-2014-7076
Malware in sbrugna...
EUVD-2014-9527
Malware in sbrugna...
EUVD-2020-23928
Malware in sbrugna...
EUVD-2014-7077
Malware in sbrugna...
SUSE CVE-2014-7203
libzmq aka ZeroMQ/C++ 4.0.x before 4.0.5 does not ensure that nonces are unique, which allows man-in-the-middle attackers to conduct replay attacks via unspecified vectors...
SUSE CVE-2014-9721
libzmq before 4.0.6 and 4.1.x before 4.1.1 allows remote attackers to conduct downgrade attacks and bypass ZMTP v3 protocol security mechanisms via a ZMTP v2 or earlier header...
SUSE CVE-2019-13132
In ZeroMQ libzmq before 4.0.9, 4.1.x before 4.1.7, and 4.2.x before 4.3.2, a remote, unauthenticated client connecting to a libzmq application, running with a socket listening with CURVE encryption/authentication enabled, may cause a stack overflow and overwrite the stack with arbitrary data, due...
SUSE CVE-2020-36400
ZeroMQ libzmq 4.3.3 has a heap-based buffer overflow in zmq::tcpread, a different vulnerability than CVE-2021-20235...
ZeroMQ libzmq Buffer Overflow Vulnerability
ZeroMQ libzmq 0MQ is a lightweight distributed messaging engine core library. A buffer overflow vulnerability exists in ZeroMQ libzmq, which stems from the failure of zmq::tcp read in this product to validate memory boundaries during a call, resulting in an out-of-bounds read operation that can b...
CVE-2020-36400
ZeroMQ libzmq 4.3.3 has a heap-based buffer overflow in zmq::tcpread, a different vulnerability than CVE-2021-20235...
Heap overflow
ZeroMQ libzmq 4.3.3 has a heap-based buffer overflow in zmq::tcpread, a different vulnerability than CVE-2021-20235...
Out-of-bounds Write
Overview Affected versions of this package are vulnerable to Out-of-bounds Write. ZeroMQ libzmq 4.3.3 has a heap-based buffer overflow in zmq::tcpread, a different vulnerability than CVE-2021-20235. Remediation Upgrade zeromq to version 4.3.3 or higher. References - Github.com - GitHub Commit...
CVE-2020-36400
ZeroMQ libzmq 4.3.3 has a heap-based buffer overflow in zmq::tcpread, a different vulnerability than CVE-2021-20235...
CVE-2020-36400
CVE-2020-36400 affects ZeroMQ libzmq 4.3.3 and is a heap-based buffer overflow in zmq::tcp_read. Connected sources describe a remote, unauthenticated attacker triggering a buffer overflow on the zeromq server when receiving crafted input, potentially impacting availability, data integrity, and co...
ZeroMQ Denial of Service Vulnerability
ZeroMQ is a lightweight distributed messaging engine core library . A security vulnerability exists in versions prior to ZeroMQ 4.3.1-4+deb10u2. The vulnerability originates from a remote unauthenticated client running using the libzmq library to connect to an application and can be exploited by ...
libzmq:test_socket_options_fuzzer: Heap-buffer-overflow in zmq_z85_decode
Project: https://github.com/zeromq/libzmq.git Detailed Report: https://oss-fuzz.com/testcase?key=5458470013501440 Project: libzmq Fuzzing Engine: libFuzzer Fuzz Target: testsocketoptionsfuzzer Job Type: libfuzzerasanlibzmq Platform Id: linux Crash Type: Heap-buffer-overflow READ Crash Address:...
libzmq:test_socket_options_fuzzer: Heap-buffer-overflow in test_socket_options_fuzzer.cpp
Project: https://github.com/zeromq/libzmq.git Detailed Report: https://oss-fuzz.com/testcase?key=4903899407056896 Project: libzmq Fuzzing Engine: libFuzzer Fuzz Target: testsocketoptionsfuzzer Job Type: libfuzzerasani386libzmq Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 1 Crash...
libzmq:test_connect_ws_fuzzer: Use-of-uninitialized-value in zmq::stream_engine_base_t::out_event
Project: https://github.com/zeromq/libzmq.git Detailed Report: https://oss-fuzz.com/testcase?key=6326324676001792 Project: libzmq Fuzzing Engine: libFuzzer Fuzz Target: testconnectwsfuzzer Job Type: libfuzzermsanlibzmq Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash...
libzmq:test_bind_ws_fuzzer: Bad-cast to zmq::session_base_t from invalid vptr in zmq::stream_engine_base_t::in_event_internal
Project: https://github.com/zeromq/libzmq.git Detailed Report: https://oss-fuzz.com/testcase?key=5281118160158720 Project: libzmq Fuzzing Engine: libFuzzer Fuzz Target: testbindwsfuzzer Job Type: libfuzzerubsanlibzmq Platform Id: linux Crash Type: Bad-cast Crash Address: 0x7ff8280071a0 Crash Stat...