EUVD-1999-1567

Malware in sbrugna...

CVE-2021-26392

A flaw was found in hw. Insufficient verification of missing size checks in the 'LoadModule' may lead to an out-of-bounds write, potentially allowing an attacker with privileges to gain code execution of the OS/kernel by loading a malicious Trusted Application TA. Mitigation Please contact AMD fo...

CVE-2021-26392

Insufficient verification of missing size check in 'LoadModule' may lead to an out-of-bounds write potentially allowing an attacker with privileges to gain code execution of the OS/kernel by loading a malicious TA...

Out-of-bounds

Insufficient verification of missing size check in 'LoadModule' may lead to an out-of-bounds write potentially allowing an attacker with privileges to gain code execution of the OS/kernel by loading a malicious TA...

CVE-2021-26392

Insufficient verification of missing size check in 'LoadModule' may lead to an out-of-bounds write potentially allowing an attacker with privileges to gain code execution of the OS/kernel by loading a malicious TA...

CVE-2021-26392

CVE-2021-26392 involves insufficient verification of a missing size check in LoadModule, leading to an out-of-bounds write that could enable code execution in the OS/kernel via loading a malicious TA. AMD’s related bulletin (AMD-SB-5001) labels this CVE as Medium and provides mitigations through ...

AMD Radeon 缓冲区错误漏洞

AMD Radeon is a device driver and utility package for Advanced Micro Devices graphics cards and GPUs from UltraMicro Semiconductor AMD. A security vulnerability exists in AMD Radeon that stems from an insufficient validation of missing size checks in LoadModule, which could lead to out-of-bounds...

PT-2022-9756 · Amd · Amd Radeon Rx 5000 Series & Pro W5000 Series +66

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to insufficient verification of a missing size check in the 'LoadModule' function, which may lead to an out-of-bounds write. This...

CVE-2021-38592

Wasm3 0.5.0 has a heap-based buffer overflow in opConst64 called from EvaluateExpression and m3LoadModule...

Security update for cobbler (moderate)

openSUSE Security Update: Security update for cobbler Announcement ID: openSUSE-SU-2021:0046-1 Rating: moderate References: 1020376 1029276 1048183 1074594 1075014 1081714 1081739 1090205 1097733 1101670 1104189 1104190 1104287 1105440 1105442 1113747 1128754 1128926 1130658 1134588 1149075 11518...

The vulnerabilities in the LoadModule, GetModInfo, and GetModPathInfo functions from src/Modules.cpp of the client disconnection mechanism from the IRC server or the selected channel allow a malicious user to elevate their privileges and execute arbitrary code.

The vulnerabilities of the LoadModule, GetModInfo, and GetModPathInfo functions in src/Modules.cpp, which allow for disabling clients from connecting to IRC servers or the selected channel, are related to a lack of mechanism for controlling user privileges. Exploiting these vulnerabilities could...

CVE-2018-17292

An issue was discovered in WAVM before 2018-09-16. The loadModule function in Include/Inline/CLI.h lacks checking of the file length before a file magic comparison, allowing attackers to cause a Denial of Service application crash caused by out-of-bounds read by crafting a file that has fewer tha...

Design/Logic Flaw

An issue was discovered in WAVM before 2018-09-16. The loadModule function in Include/Inline/CLI.h lacks checking of the file length before a file magic comparison, allowing attackers to cause a Denial of Service application crash caused by out-of-bounds read by crafting a file that has fewer tha...

CVE-2018-17292

An issue was discovered in WAVM before 2018-09-16. The loadModule function in Include/Inline/CLI.h lacks checking of the file length before a file magic comparison, allowing attackers to cause a Denial of Service application crash caused by out-of-bounds read by crafting a file that has fewer tha...

CVE-2018-17292

An issue was discovered in WAVM before 2018-09-16. The loadModule function in Include/Inline/CLI.h lacks checking of the file length before a file magic comparison, allowing attackers to cause a Denial of Service application crash caused by out-of-bounds read by crafting a file that has fewer tha...

PPLive URI处理器LoadModule参数多个代码执行漏洞

BUGTRAQ ID: 34128 PPLive是非常流行的P2P网络视频客户端。 PPLive的synacast://、Play://、pplsv://和ppvod:// URI处理器在评估命令行参数时没有正确地验证URI参数，如果用户受骗跟随的链接中包含有特制的/LoadModule参数的话，就可能导致Internet Explorer加载远程VNC路径所指定的dll。 聚力传媒 PPLive = 1.9.21 厂商补丁： 聚力传媒 -------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...

PPLive 1.9.21 - LoadModule URI Handlers Argument Injection

PPLive 1.9.21 - LoadModule URI Handlers Argument Injection -------------------------------------------------------------------------------- PPLive = 1.9.21 uri handlers "/LoadModule" remote argument injection by Nine:Situations:Group::strawdog...

Code injection

The loadModule function in lib/WebGUI/Asset.pm in WebGUI before 7.5.30 stable allows remote attackers to execute arbitrary code by uploading a Perl module and accessing it via a crafted URL...

CVE-2008-4798

The CVE concerns WebGUI prior to version 7.5.30 (stable). The loadModule function in lib/WebGUI/Asset.pm allows remote attackers to execute arbitrary code by uploading a Perl module and accessing it via a crafted URL. This enables remote code execution on the affected server. According to the pro...

CVE-2008-4798

The loadModule function in lib/WebGUI/Asset.pm in WebGUI before 7.5.30 stable allows remote attackers to execute arbitrary code by uploading a Perl module and accessing it via a crafted URL...