20 matches found
CVE-2026-5745
A flaw was found in libarchive. A NULL pointer dereference vulnerability exists in the ACL parsing logic, specifically within the archiveaclfromtextnl function. When processing a malformed ACL string such as a bare "d" or "default" tag without subsequent fields, the function fails to perform...
CVE-2026-5745 Libarchive: a null pointer dereference vulnerability exists in the acl parser of libarchive
A flaw was found in libarchive. A NULL pointer dereference vulnerability exists in the ACL parsing logic, specifically within the archiveaclfromtextnl function. When processing a malformed ACL string such as a bare "d" or "default" tag without subsequent fields, the function fails to perform...
CVE-2026-4371
A flaw was found in Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer. If a mail server or connection to a mail server were...
DEBIAN-CVE-2026-4371
A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer. If a mail server or connection to a mail server were compromised, an attacker could cause the parser to malfunction, potentially crashing Thunderbird or leaking...
PT-2026-27517
Name of the Vulnerable Software and Affected Versions Thunderbird versions prior to 149 Thunderbird versions prior to 140.9 Description A specially crafted email could contain malformed strings with negative lengths, leading to a memory read outside of the intended buffer. Successful exploitation...
Security Vulnerabilities fixed in Thunderbird 140.9 — Mozilla
A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer. If a mail server or connection to a mail server were compromised, an attacker could cause the parser to malfunction, potentially crashing Thunderbird or leaking...
Security Vulnerabilities fixed in Thunderbird 149 — Mozilla
A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer. If a mail server or connection to a mail server were compromised, an attacker could cause the parser to malfunction, potentially crashing Thunderbird or leaking...
EUVD-2004-1912
Malware in sbrugna...
EUVD-2022-42805
Malicious code in bioql PyPI...
CVE-2022-3429
A denial-of-service vulnerability was found in the firmware used in Lenovo printers, where users send illegal or malformed strings to an open port, triggering a denial of service that causes a display error and prevents the printer from functioning properly...
CVE-2022-3429
A denial-of-service vulnerability was found in the firmware used in Lenovo printers, where users send illegal or malformed strings to an open port, triggering a denial of service that causes a display error and prevents the printer from functioning properly...
Denial of service
A denial-of-service vulnerability was found in the firmware used in Lenovo printers, where users send illegal or malformed strings to an open port, triggering a denial of service that causes a display error and prevents the printer from functioning properly...
PT-2023-13356 · Lenovo · Lenovo Printers
Name of the Vulnerable Software and Affected Versions: Lenovo printers affected versions not specified Description: A denial-of-service issue was found in the firmware used in Lenovo printers. It occurs when users send illegal or malformed strings to an open port, triggering a denial of service...
CVE-2017-2296
In Puppet Enterprise 2017.1.x and 2017.2.1, using specially formatted strings with certain formatting characters as Classifier node group names or RBAC role display names causes errors, effectively causing a DOS to the service. This was resolved in Puppet Enterprise 2017.2.2...
Microsoft Office File Malformed String Parsing Buffer Overflow (MS06-038) - ver 2 (CVE-2006-1540)
Microsoft Office is a popular productivity application suite released by Microsoft Corporation. It includes a word processor, a spreadsheet application, a presentation editor, and a number of other applications and components. A memory corruption vulnerability has been reported in several Microso...
Microsoft Office File Malformed String Parsing Buffer Overflow(MS06-038; CVE-2006-1540)
Microsoft Office is a popular productivity application suite released by Microsoft Corporation. It includes a word processor, a spreadsheet application, a presentation editor, and a number of other applications and components. A memory corruption vulnerability has been reported in several Microso...
(0Day) IBM Lotus Notes cai URI Handler Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Lotus Notes. User interaction is required to exploit this vulnerability. The specific flaw exists within the handling of malformed strings within cai:// URIs. The '--launcher.library' switch ca...
Microsoft Office fails to properly parse malformed strings
Overview A vulnerability in the way Microsoft Office parses files with malformed strings may lead to execution of arbitrary code. Description Microsoft Office contains a vulnerability that could be exploited when parsing specially crafted strings. According to Microsoft Security Bulletin...
CVE-2004-1919
The hashstrcmp function in hasch.c in Crackalaka 1.0.8 allows remote attackers to cause a denial of service crash via large malformed strings...
CVE-1999-0784
Denial of service in Oracle TNSLSNR SQLNet Listener via a malformed string to the listener port, aka NERP...