list-sync 代码问题漏洞

List-Sync is a tool developed by WoahAI personal developers, used for automatically syncing media servers with viewing lists. Versions of List-Sync 0.6.6 and earlier have code vulnerabilities. These vulnerabilities stem from incorrect operations in the requests.post function of the component’s JS...

Linux Distros Unpatched Vulnerability : CVE-2022-41952

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Synapse before 1.52.0 with URL preview functionality enabled will attempt to generate URL previews for media stream URLs without properly limiting connection...

CVE-2020-36169

An issue was discovered in Veritas NetBackup through 8.3.0.1 and OpsCenter through 8.3.0.1. Processes using OpenSSL attempt to load and execute libraries from paths that do not exist by default on the Windows operating system. By default, on Windows systems, users can create directories under the...

Cybercriminals Now Using Plex Media Servers to Amplify DDoS Attacks

A new distributed denial-of-service attack DDoS vector has ensnared Plex Media Server systems to amplify malicious traffic against targets to take them offline. "Plex's startup processes unintentionally expose a Plex UPnP-enabled service registration responder to the general Internet, where it ca...

Default configuration

An issue was discovered in Veritas NetBackup through 8.3.0.1 and OpsCenter through 8.3.0.1. Processes using OpenSSL attempt to load and execute libraries from paths that do not exist by default on the Windows operating system. By default, on Windows systems, users can create directories under the...

Remote Code Execution (RCE)

RTMPDump is vulnerable to remote code execution. The vulnerability exist because the function in amf.c in RTMPDump allows remote RTMP Media servers to execute arbitrary code...

CVE-2015-8271

The AMF3CDAddProp function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to execute arbitrary code...

DEBIAN-CVE-2015-8271

The AMF3CDAddProp function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to execute arbitrary code...

Code injection

The AMF3CDAddProp function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to execute arbitrary code...

Null pointer dereference

The AMF3ReadString function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to cause a denial of service invalid pointer dereference and process crash...

CVE-2015-8270

The AMF3ReadString function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to cause a denial of service invalid pointer dereference and process crash...

CVE-2015-8270

The AMF3ReadString function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to cause a denial of service invalid pointer dereference and process crash...

CVE-2015-8270

The AMF3ReadString function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to cause a denial of service invalid pointer dereference and process crash...

CVE-2015-8270

CVE-2015-8270 affects RTMPDump 2.4, where the AMF3ReadString function in amf.c can trigger an invalid pointer dereference, causing remote DoS (process crash) when processing crafted RTMP streams. Public advisories confirm the vulnerability and provide fixes: Debian DSA-3850-1 notes kernel-level f...

CVE-2015-8271

The AMF3CDAddProp function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to execute arbitrary code...

CVE-2015-8270

The AMF3ReadString function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to cause a denial of service invalid pointer dereference and process crash...

UBUNTU-CVE-2015-8271

The AMF3CDAddProp function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to execute arbitrary code...

UBUNTU-CVE-2015-8270

The AMF3ReadString function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to cause a denial of service invalid pointer dereference and process crash...

Microsoft Windows动画光标ANI格式处理远程代码执行漏洞

Microsoft Internet Explorer是一款流行的WEB浏览器，Microsoft Windows是一款流行的操作系统。 Microsoft Windows在处理畸形的动画图标文件.ani时存在缓冲区溢出问题，远程攻击者可利用此漏洞以 当前用户进程权限执行任意指令。 Microsoft Windows在处理畸形动画光标文件.ani时没有正确地验证ANI头字段中所指定的大小，可导致基 于栈溢出漏洞。攻击者可以构建恶意WEB页或者包含ANI文件的EMAIL消息来触发，就会触发这个溢出，导致...

Microsoft Internet Explorer Drag and Drop TIF Folder Information Disclosure Vulnerability

Description Microsoft Internet Explorer is prone to an information-disclosure vulnerability. An attacker can exploit this issue to access sensitive information that may aid in further attacks. Technologies Affected Avaya Messaging Application Server Avaya S8100 Media Servers Avaya S8100 Media...