Vulnerability in the Android operating system’s loader, allowing a hacker to gain access to resources

The vulnerability in the Android operating system’s loader is related to incorrect initialization of resources. Exploiting this vulnerability can allow a remote attacker to gain access to these resources...

UBUNTU-CVE-2017-7777

Use of uninitialized memory in Graphite2 library in Firefox before 54 in graphite2::GlyphCache::Loader::readglyph function...

CVE-2017-7777

Use of uninitialized memory in Graphite2 library in Firefox before 54 in graphite2::GlyphCache::Loader::readglyph function...

The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code

The vulnerability of the initial loader of the HTC Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to execute arbitrary code within the loader context, thereby executing a local malware application remotely. This issue ...

RW-4040 driver installer may insecurely load Dynamic Link Libraries

Overview RW-4040 driver installer for IC Card Reader/Writer devices provided by Sharp Corporation contains an issue with the DLL search path, which may lead to insecurely load Dynamic Link Libraries CWE-427. Yuji Tounai of NTT Communications Corporation and BlackWingCat of PinkFlyingWhale reporte...

The vulnerability of the initial loader of Qualcomm’s Android operating system allows a hacker to execute arbitrary code.

The vulnerability of the initial loader of the Qualcomm Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the initial loader of Qualcomm’s Android operating system allows a hacker to execute arbitrary code.

The vulnerability of the initial loader of the Qualcomm Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

UBUNTU-CVE-2017-8400

In SWFTools 0.9.2, an out-of-bounds write of heap data can occur in the function pngload in lib/png.c:755. This issue can be triggered by a malformed PNG file that is mishandled by png2swf. Attackers could exploit this issue for DoS; it might cause arbitrary code execution...

Chrome Universal XSS via reentrancy in FrameLoader::startLoad (CVE-2016-1697)

VULNERABILITY DETAILS From /thirdparty/WebKit/Source/core/loader/FrameLoader.cpp: void FrameLoader::startLoad... ASSERTclient-hasWebView; if mframe-document-pageDismissalEventBeingDispatched != Document::NoDismissal return; ... mframe-document-cancelParsing;...

Chrome Universal XSS via same document navigations (CVE-2016-1711)

VULNERABILITY DETAILS FrameLoader::loadInSameDocument is vulnerable to a problem similar to the one described in issue 613266: void FrameLoader::loadInSameDocumentconst KURL& url, ... ... // If we have a provisional request for a different document, a fragment scroll should cancel it...

The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code

The vulnerability of the Qualcomm Android operating system’s loader is related to the lack of protection for service data. Exploiting this vulnerability allows a remote attacker to execute arbitrary malicious code within the loader context. This issue is considered “high” because it represents a...

WordPress Simple Ads Manager 2.9.8.125 PHP Object Injection Vulnerability

Exploit for php platform in category web applications ------------------------------------------------------------------------ Simple Ads Manager WordPress plugin unauthenticated PHP Object injection vulnerability ------------------------------------------------------------------------ Yorick...

The vulnerability of the library that handles system calls and core functions, glibc, allows a attacker to execute arbitrary code.

The vulnerability of the elfgetdynamicinfo function in the elf/dynamic-link.h file of the ld.so library, which provides system calls and core functions, is related to integer overflow. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely using a specially crafted EL...

The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code

The vulnerability in the initial loader of the Qualcomm Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary code of a local malicious application within the kernel context. This issue is considered...

The vulnerability of the Android operating system, which allows a hacker to gain access to data

The vulnerability in the initial loader of the Android operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow a local attacker to access data beyond their authorized access level. This issue is considered “high” because it could be used to...

The vulnerability of the Android operating system, which allows a hacker to gain access to data

The vulnerability in the initial loader of the Android operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow a local attacker to access data beyond their authorized access level. This issue is considered “high” because it could be used to...

The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code

The vulnerability in the initial loader of the Qualcomm Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary code of a local malicious application within the kernel context. This issue is considered...

The vulnerability of the Android operating system, allowing a hacker to execute arbitrary commands

The vulnerability of the initial loader of the Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a local attacker to execute arbitrary commands on the device’s modem. This issue is considered “high” because it causes continuous service...

USN-3186-1 iucode-tool vulnerability

It was discovered that iucode-tool incorrectly handled certain microcodes when using the -tr loader. If a user were tricked into processing a specially crafted microcode, a remote attacker could use this issue to cause iucode-tool to crash, resulting in a denial of service, or possibly execute...

UBUNTU-CVE-2016-8694

The bmreadbodybmp function in bitmapio.c in potrace before 1.13 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted BMP image, a different vulnerability than CVE-2016-8695 and CVE-2016-8696...