json: Heap-buffer-overflow in nlohmann::basic_json<std::__1::map, std::__1::vector, std::__1::basic_string<cha

Project: https://github.com/nlohmann/json.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=5229771923390464 Project: json Fuzzer: libFuzzerjsonparsecborfuzzer Fuzz target binary: parsecborfuzzer Job Type: libfuzzerasanjson Platform Id: linux Crash Type:...

McAfee VirusScan Enterprise for Linux authentication token brute force

Added: 12/23/2016 CVE: CVE-2016-8023 BID: 94823 Background McAfee VirusScan Enterprise for Linux is real-time, anti-malware software for Linux. Problem McAfee VirusScan Enterprise for Linux allows remote attackers to execute arbitrary commands by exploiting multiple vulnerabilities, including the...

DEBIAN-CVE-2016-8826

All versions of NVIDIA GPU Display Driver contain a vulnerability in the kernel mode layer nvlddmkm.sys for Windows or nvidia.ko for Linux where a user can cause a GPU interrupt storm, leading to a denial of service...

expat: Use-of-uninitialized-value in _start

Project: https://github.com/libexpat/libexpat.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=4717026396340224 Project: expat Fuzzer: libFuzzerexpatparsefuzzer Fuzz target binary: expatparsefuzzer Job Type: libfuzzermsanexpat Platform Id: linux Crash Type:...

angr:python-based binary analysis framework-vulnerability warning-the black bar safety net

Foreword Take a look at this Integrated Framework in binary code analysis of the CTF, to solve what the problem it, here is the git are listed in the solution to the CTF game: ! ! Wherein, HackCon 2016 - angry-reverser takes 31 min, SecurityFest 2016 – it takes 20s, Defcamp CTF Qualification...

libass: Heap-buffer-overflow in parse_tag

Project: https://github.com/libass/libass.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=4693221439438848 Target: libass Fuzzer: libFuzzerlibassfuzzer Fuzzer binary: libassfuzzer Job Type: libfuzzerasanlibass Platform Id: linux Crash Type: Heap-buffer-overflow READ 1...

file: Heap-buffer-overflow in mcopy

Project: https://github.com/file/file.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=6349141718335488 Target: file Fuzzer: libFuzzerfilemagicfuzzer Fuzzer binary: magicfuzzer Job Type: libfuzzerasanfile Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash...

Solaris 7/8/9 CDE libDtHelp - Buffer Overflow Non-Exec Stack Privilege Escalation Exploit

Exploit for linux platform in category local exploits...

Brave Software: Denial of service(POP UP Recursion) on Brave browser

Summary: Basically I have found a denial of service attack on brave browser in Linux platform.In this bug when we open the html file or visiting www.tiks.host-ed.me then click on pop up dos.html ,which contains a recurring pop up code,the Pop up freezes the entire browser window except for minimi...

libchewing: Heap-buffer-overflow in _Inner_InternalSpecialSymbol

Project: https://github.com/chewing/libchewing.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=4564616034123776 Fuzzer: libFuzzerchewingdynamicconfigfuzzer Job Type: libfuzzerasanlibchewing Platform Id: linux Crash Type: Heap-buffer-overflow READ Crash Address:...

Brave Software: Denial of service attack(window object) on brave browser

Summary: hey there, The Brave browser is vulnerable to window object based denial of service attack. The brave browser fails to sanitize a check when window.close function is called in number of dynamically generated events.. The function is called in a suppressed manner and kills the parent wind...

Brave Software: Denial of service attack on Brave Browser.

Summary: Hey there, Basically,an HTML sent by an attacker to a victim can cause dos attackwhole system log's out when that file is opened by the victim in his brave browser.This vulnerability is occurring because browser is not able to handle the input passed in alert JavaScript function.This bug...

CVE-2016-6987

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-6981...

CVE-2016-6985

Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2016-4273,...

CVE-2016-6930

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X and before 11.2.202.635 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4272, CVE-2016-4279,...

CVE-2016-4283

Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X and before 11.2.202.635 on Linux allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2016-4274,...

CVE-2016-4276

Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X and before 11.2.202.635 on Linux allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2016-4274,...

CVE-2016-4276

Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X and before 11.2.202.635 on Linux allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2016-4274,...

chromium-browser: address bar spoofing

The bidirectional-text implementation in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux does not ensure left-to-right LTR rendering of URLs, which allows remote attackers to spoof the address bar via crafted right-to-left RTL Unicode text, related to...

UBUNTU-CVE-2016-5149

The extensions subsystem in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux relies on an IFRAME source URL to identify an associated extension, which allows remote attackers to conduct extension-bindings injection attacks by leveraging script access to a...