378 matches found
Mozilla: Drag and Dropped Filenames could have been truncated to malicious extensions
The Mozilla Foundation Security Advisory describes this flaw as: A file with a long filename could have had its filename truncated to remove the valid extension, leaving a malicious extension in its place. This could potentially led to user confusion and the execution of malicious code...
Mozilla: Drag and Dropped Filenames could have been truncated to malicious extensions
The Mozilla Foundation Security Advisory describes this flaw as: A file with a long filename could have had its filename truncated to remove the valid extension, leaving a malicious extension in its place. This could potentially led to user confusion and the execution of malicious code...
Mozilla: Drag and Dropped Filenames could have been truncated to malicious extensions
The Mozilla Foundation Security Advisory describes this flaw as: A file with a long filename could have had its filename truncated to remove the valid extension, leaving a malicious extension in its place. This could potentially led to user confusion and the execution of malicious code...
Denial Of Service (DoS)
unrar-free is vulnerable to denial of service. The vulnerability exists when DEBUGLOG mode is enabled, allows an attacker to crash the system by via an RAR archive containing a long filename...
libvncserver: buffer overflow in ConnectClientToUnixSock()
libvncclient/sockets.c in LibVNCServer before 0.9.13 has a buffer overflow via a long socket filename...
Arbitrary Code Execution
ncompress is vulnerable to arbitrary code execution. A stack-based buffer overflow in the comprexx function allows remote attackers to execute arbitrary code via a long filename argument...
WinSCP Buffer Overflow Vulnerability
WinSCP is a free open source SFTP, FTP, WebDAV, Amazon S3 and SCP client for Microsoft Windows. A buffer overflow vulnerability exists in WinSCP 5.17.8. An attacker can exploit this vulnerability to cause a denial of service via a malicious FTP server via a long filename...
OPENSUSE-SU-2020:1752-1 Recommended update for mailman
This update for mailman to version 2.1.34 fixes the following issues: - The fix for lp1859104 can result in ValueError being thrown on attempts to subscribe to a list. This is fixed and extended to apply REFUSESECONDPENDING to unsubscription as well. lp1878458 - DMARC mitigation no longer misses ...
PHP Input Validation Error Vulnerability (CNVD-2020-33148)
PHP PHP: Hypertext Preprocessor, PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language jointly maintained by the PHPGroup and the open source community. The language is mainly used for Web development, supports a variety of databases and operating systems. An...
CVE-2018-10858
A heap-buffer overflow was found in the way samba clients processed extra long filename in a directory listing. A malicious samba server could use this flaw to cause arbitrary code execution on a samba client...
CVE-2008-1488
Stack-based buffer overflow in apc.c in Alternative PHP Cache APC 3.0.11 through 3.0.16 allows remote attackers to execute arbitrary code via a long filename...
CVE-2019-16318
In Pimcore before 5.7.1, an attacker with limited privileges can bypass file-extension restrictions via a 256-character filename, as demonstrated by the failure of automatic renaming of .php to .php.txt for long filenames, a different vulnerability than CVE-2019-10867 and CVE-2019-16317...
CVE-2019-14706
A denial of service issue in HTTPD was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. An attacker without authorization can upload a file to upload.php with a filename longer than 256 bytes. This will be placed in the updownload area. It will not be deleted, because...
Mozilla: Out-of-bounds write with malicious MAR file
When the Mozilla Updater opens a MAR format file which contains a very long item filename, an out-of-bounds write can be triggered, leading to a potentially exploitable crash. This requires running the Mozilla Updater manually on the local system with the malicious MAR file in order to occur. Thi...
Mozilla: Out-of-bounds write with malicious MAR file
When the Mozilla Updater opens a MAR format file which contains a very long item filename, an out-of-bounds write can be triggered, leading to a potentially exploitable crash. This requires running the Mozilla Updater manually on the local system with the malicious MAR file in order to occur. Thi...
Redatam7 path traversal vulnerability (CNVD-2018-17903)
Redatam 7 formerly known as Redatam WebServer is a computerized data processing system. The system is primarily used for processing and analyzing census, administrative records and national/regional data, among others. A directory traversal vulnerability exists in Redatam7. A remote attacker can...
Ffmpeg Denial of Service Vulnerability (CNVD-2018-08525)
FFmpeg is a set of open source computer programs that can be used to record, convert digital audio and video to streams under the LGPL or GPL license. A denial of service vulnerability exists in the export function of libavfilter/vfsignature.c in Ffmpeg 3.4.2 and earlier versions. A remote attack...
Code injection
The export function in libavfilter/vfsignature.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service out-of-array access or possibly have unspecified other impact via a long filename...
DEBIAN-CVE-2018-9841
The export function in libavfilter/vfsignature.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service out-of-array access or possibly have unspecified other impact via a long filename...
CVE-2018-9841
The export function in libavfilter/vfsignature.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service out-of-array access or possibly have unspecified other impact via a long filename...