The media player can lead to millions of systems suffer from subtitles attack-vulnerability warning-the black bar safety net

Experts pointed out that, as long as the attacker can make the target user in which a vulnerable media player to open a malicious subtitle file will be able to fully control the device. For automatically from the Internet to get the caption of the application, without any user interaction it can...

CVE-2017-9152

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the pnmloadraw function in input-pnm.c:346:41...

CVE-2017-9156

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service invalid write and SEGV, related to the pnmloadascii function in input-pnm.c:303:12...

CVE-2017-9153

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the pnmloadrawpbm function in input-pnm.c:391:13...

CVE-2017-9157

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service invalid write and SEGV, related to the pnmloadascii function in input-pnm.c:306:14...

UBUNTU-CVE-2017-9157

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service invalid write and SEGV, related to the pnmloadascii function in input-pnm.c:306:14...

UBUNTU-CVE-2017-9158

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service invalid write and SEGV, related to the pnmloadraw function in input-pnm.c:336:11...

UBUNTU-CVE-2017-9152

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the pnmloadraw function in input-pnm.c:346:41...

UBUNTU-CVE-2017-9153

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the pnmloadrawpbm function in input-pnm.c:391:13...

PT-2017-18741 · None +1 · Autotrace +1

Name of the Vulnerable Software and Affected Versions: AutoTrace version 0.31.1 Description: The issue allows remote attackers to cause a denial of service, resulting in an invalid write and SEGV. This is related to the pnm load rawpbm function in input-pnm.c. Recommendations: For AutoTrace versi...

PT-2017-18733 · Autotrace +1 · Autotrace +1

Name of the Vulnerable Software and Affected Versions: AutoTrace version 0.31.1 Description: The issue is related to a heap-based buffer overflow in the pnm load ascii function, located in the input-pnm.c file. This function is part of the libautotrace.a library in AutoTrace. Recommendations: For...

PT-2017-18739 · Autotrace Team +1 · Autotrace +1

Name of the Vulnerable Software and Affected Versions: AutoTrace version 0.31.1 Description: The issue is related to the pnm load ascii function in input-pnm.c, which can cause a denial of service due to an invalid write and SEGV. This is a result of a problem in the libautotrace.a library...

PT-2017-18734 · Autotrace +1 · Autotrace +1

Name of the Vulnerable Software and Affected Versions: AutoTrace version 0.31.1 Description: The issue is related to a heap-based buffer over-read in the pnm load raw function, located in the input-pnm.c file. This function is part of the libautotrace.a library in AutoTrace. The over-read occurs ...

PT-2017-18735 · Autotrace +1 · Autotrace +1

Name of the Vulnerable Software and Affected Versions: AutoTrace version 0.31.1 Description: The issue is related to a heap-based buffer overflow in the pnm load rawpbm function, located in the input-pnm.c file. This function is part of the libautotrace.a library in AutoTrace. The overflow occurs...

PT-2017-18740 · None +1 · Autotrace +1

Name of the Vulnerable Software and Affected Versions: AutoTrace version 0.31.1 Description: The issue allows remote attackers to cause a denial of service, resulting in an invalid write and SEGV. This is related to the pnm load raw function in input-pnm.c. Recommendations: For AutoTrace version...

PT-2017-18738 · Autotrace +1 · Autotrace +1

Name of the Vulnerable Software and Affected Versions: AutoTrace version 0.31.1 Description: The issue is related to the pnm load ascii function in input-pnm.c, which allows remote attackers to cause a denial of service, resulting in an invalid write and SEGV. Recommendations: For AutoTrace versi...

Pegasus winpm-32.exe v4.72 Mailto: Link Remote Code Execution Vulnerability

Exploit for windows platform in category remote exploits + Credits: John Page AKA hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/PEGASUS-MAILTO-LINK-REMOTE-CODE-EXECUTION.txt + ISR: APPARITIONSEC Vendor: ============= www.pmail.com Product:...

Pegasus 4.72 Build 572 Remote Code Execution

Credits: John Page AKA hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/PEGASUS-MAILTO-LINK-REMOTE-CODE-EXECUTION.txt + ISR: APPARITIONSEC Vendor: ============= www.pmail.com Product: ===================== Pegasus "winpm-32.exe" v4.72 build 572...

DEBIAN-CVE-2017-7475

Cairo version 1.15.4 is vulnerable to a NULL pointer dereference related to the FTLoadGlyph and FTRenderGlyph resulting in an application crash...

OpenJDK: untrusted extension directories search path in Launcher (JCE, 8163528)

An untrusted library search path flaw was found in the JCE component of OpenJDK. A local attacker could possibly use this flaw to cause a Java application using JCE to load an attacker-controlled library and hence escalate their privileges...