Lucene search
+L

378 matches found

redhat
redhat
added 2022/12/15 4:30 p.m.5 views

Mozilla: Drag and Dropped Filenames could have been truncated to malicious extensions

The Mozilla Foundation Security Advisory describes this flaw as: A file with a long filename could have had its filename truncated to remove the valid extension, leaving a malicious extension in its place. This could potentially led to user confusion and the execution of malicious code...

8.8CVSS7.5AI score0.00884EPSS
Exploits0References7
redhat
redhat
added 2022/12/15 4:27 p.m.7 views

Mozilla: Drag and Dropped Filenames could have been truncated to malicious extensions

The Mozilla Foundation Security Advisory describes this flaw as: A file with a long filename could have had its filename truncated to remove the valid extension, leaving a malicious extension in its place. This could potentially led to user confusion and the execution of malicious code...

8.8CVSS7.5AI score0.00884EPSS
Exploits0References7
redhat
redhat
added 2022/12/15 4:21 p.m.11 views

Mozilla: Drag and Dropped Filenames could have been truncated to malicious extensions

The Mozilla Foundation Security Advisory describes this flaw as: A file with a long filename could have had its filename truncated to remove the valid extension, leaving a malicious extension in its place. This could potentially led to user confusion and the execution of malicious code...

8.8CVSS7.5AI score0.00884EPSS
Exploits0References7
veracode
veracode
added 2021/10/12 12:25 p.m.25 views

Denial Of Service (DoS)

unrar-free is vulnerable to denial of service. The vulnerability exists when DEBUGLOG mode is enabled, allows an attacker to crash the system by via an RAR archive containing a long filename...

7.8CVSS3.7AI score0.01019EPSS
Exploits0References2Affected Software1
redhat
redhat
added 2021/05/18 2:20 p.m.2 views

libvncserver: buffer overflow in ConnectClientToUnixSock()

libvncclient/sockets.c in LibVNCServer before 0.9.13 has a buffer overflow via a long socket filename...

7.5CVSS6AI score0.03589EPSS
Exploits0References4
veracode
veracode
added 2020/12/06 4:37 a.m.19 views

Arbitrary Code Execution

ncompress is vulnerable to arbitrary code execution. A stack-based buffer overflow in the comprexx function allows remote attackers to execute arbitrary code via a long filename argument...

7.5CVSS8AI score0.04775EPSS
Exploits0References6Affected Software1
cnvd
cnvd
added 2020/11/24 12:0 a.m.19 views

WinSCP Buffer Overflow Vulnerability

WinSCP is a free open source SFTP, FTP, WebDAV, Amazon S3 and SCP client for Microsoft Windows. A buffer overflow vulnerability exists in WinSCP 5.17.8. An attacker can exploit this vulnerability to cause a denial of service via a malicious FTP server via a long filename...

9.8CVSS7.1AI score0.02813EPSS
Exploits0References1
osv
osv
added 2020/10/27 9:21 a.m.5 views

OPENSUSE-SU-2020:1752-1 Recommended update for mailman

This update for mailman to version 2.1.34 fixes the following issues: - The fix for lp1859104 can result in ValueError being thrown on attempts to subscribe to a list. This is fixed and extended to apply REFUSESECONDPENDING to unsubscription as well. lp1878458 - DMARC mitigation no longer misses ...

6.5CVSS5.7AI score0.02698EPSS
Exploits1References6
cnvd
cnvd
added 2020/05/18 12:0 a.m.1 views

PHP Input Validation Error Vulnerability (CNVD-2020-33148)

PHP PHP: Hypertext Preprocessor, PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language jointly maintained by the PHPGroup and the open source community. The language is mainly used for Web development, supports a variety of databases and operating systems. An...

5.3CVSS9.2AI score0.06264EPSS
Exploits1References1
redhatcve
redhatcve
added 2020/01/30 3:57 a.m.36 views

CVE-2018-10858

A heap-buffer overflow was found in the way samba clients processed extra long filename in a directory listing. A malicious samba server could use this flaw to cause arbitrary code execution on a samba client...

8.8CVSS3.8AI score0.04302EPSS
Exploits0References2
redhatcve
redhatcve
added 2019/10/04 10:2 p.m.14 views

CVE-2008-1488

Stack-based buffer overflow in apc.c in Alternative PHP Cache APC 3.0.11 through 3.0.16 allows remote attackers to execute arbitrary code via a long filename...

6.8CVSS8.4AI score0.07811EPSS
Exploits1References3
cvelist
cvelist
added 2019/09/14 5:1 p.m.47 views

CVE-2019-16318

In Pimcore before 5.7.1, an attacker with limited privileges can bypass file-extension restrictions via a 256-character filename, as demonstrated by the failure of automatic renaming of .php to .php.txt for long filenames, a different vulnerability than CVE-2019-10867 and CVE-2019-16317...

8.6AI score0.01399EPSS
Exploits0References2
osv
osv
added 2019/08/06 11:15 p.m.4 views

CVE-2019-14706

A denial of service issue in HTTPD was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. An attacker without authorization can upload a file to upload.php with a filename longer than 256 bytes. This will be placed in the updownload area. It will not be deleted, because...

7.5CVSS7.4AI score0.02087EPSS
Exploits0References3
redhat
redhat
added 2018/09/12 11:2 a.m.7 views

Mozilla: Out-of-bounds write with malicious MAR file

When the Mozilla Updater opens a MAR format file which contains a very long item filename, an out-of-bounds write can be triggered, leading to a potentially exploitable crash. This requires running the Mozilla Updater manually on the local system with the malicious MAR file in order to occur. Thi...

7.8CVSS7.3AI score0.00393EPSS
Exploits0References5
redhat
redhat
added 2018/09/12 11:1 a.m.3 views

Mozilla: Out-of-bounds write with malicious MAR file

When the Mozilla Updater opens a MAR format file which contains a very long item filename, an out-of-bounds write can be triggered, leading to a potentially exploitable crash. This requires running the Mozilla Updater manually on the local system with the malicious MAR file in order to occur. Thi...

7.8CVSS7.3AI score0.00393EPSS
Exploits0References5
cnvd
cnvd
added 2018/06/26 12:0 a.m.4 views

Redatam7 path traversal vulnerability (CNVD-2018-17903)

Redatam 7 formerly known as Redatam WebServer is a computerized data processing system. The system is primarily used for processing and analyzing census, administrative records and national/regional data, among others. A directory traversal vulnerability exists in Redatam7. A remote attacker can...

5.3CVSS5.5AI score0.01447EPSS
Exploits1References1
cnvd
cnvd
added 2018/04/08 12:0 a.m.4 views

Ffmpeg Denial of Service Vulnerability (CNVD-2018-08525)

FFmpeg is a set of open source computer programs that can be used to record, convert digital audio and video to streams under the LGPL or GPL license. A denial of service vulnerability exists in the export function of libavfilter/vfsignature.c in Ffmpeg 3.4.2 and earlier versions. A remote attack...

8.8CVSS7AI score0.01763EPSS
Exploits0References1
prion
prion
added 2018/04/07 7:29 a.m.10 views

Code injection

The export function in libavfilter/vfsignature.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service out-of-array access or possibly have unspecified other impact via a long filename...

6.8CVSS9AI score0.01763EPSS
Exploits0References2Affected Software1
osv
osv
added 2018/04/07 7:29 a.m.2 views

DEBIAN-CVE-2018-9841

The export function in libavfilter/vfsignature.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service out-of-array access or possibly have unspecified other impact via a long filename...

8.8CVSS9AI score0.01763EPSS
Exploits0References1
ubuntucve
ubuntucve
added 2018/04/07 7:29 a.m.19 views

CVE-2018-9841

The export function in libavfilter/vfsignature.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service out-of-array access or possibly have unspecified other impact via a long filename...

8.8CVSS7.3AI score0.01763EPSS
Exploits0References2
Rows per page
Query Builder