Stack overflow

Creolabs Gravity version 1.0 is vulnerable to a stack overflow in the memcmp function...

CVE-2017-1000075

Creolabs Gravity 1.0 is vulnerable to a stack/buffer overflow in the memcmp function. CNVD-2017-27179 describes a buffer overflow in memcmp for Gravity 1.0, with an attacker able to exploit this vulnerability to terminate a process (infinite loop). No remediation details are provided in the conne...

CVE-2017-1000075

Creolabs Gravity version 1.0 is vulnerable to a stack overflow in the memcmp function...

CVE-2017-10769

XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at ntdll77df0000!memcmp+0x0000000000000018" without RPC...

CVE-2016-7957

In Wireshark 2.2.0, the Bluetooth L2CAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-btl2cap.c by avoiding use of a seven-byte memcmp for potentially shorter strings...

CVE-2016-7957

In Wireshark 2.2.0, the Bluetooth L2CAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-btl2cap.c by avoiding use of a seven-byte memcmp for potentially shorter strings...

Suricata 'MemcmpLowercase' Function Security Bypass Vulnerability

Suricata is a network intrusion detection system IDS, intrusion prevention system IPS and network security monitoring engine that supports multi-threading, built-in IPv6, the ability to load pre-defined rules, and more. A security vulnerability exists in Suricata's 'MemcmpLowercase' function. A...

Design/Logic Flaw

The MemcmpLowercase function in Suricata before 2.0.6 improperly excludes the first byte from comparisons, which might allow remote attackers to bypass intrusion-prevention functionality via a crafted HTTP request...

X.org Privilege Escalation / Use-After-Free / Weak Entropy Vulnerabilities

Exploit for windows platform in category local exploits Multiple Vulnerabilities in X.org ================================= Overview -------- Vendor: X.org/Freedesktop.org Vendor URL: https://www.x.org/wiki/ Credit: X41 D-Sec GmbH, Eric Sesterhenn Advisory-URL:...

CVE-2017-2624

It was found that xorg-x11-server before 1.19.0 including uses memcmp to check the received MIT cookie against a series of valid cookies. If the cookie is correct, it is allowed to attach to the Xorg session. Since most memcmp implementations return after an invalid byte is seen, this causes a ti...

X.org Privilege Escalation / Use-After-Free / Weak Entropy

X41 D-Sec GmbH Security Advisory: X41-2017-001 Multiple Vulnerabilities in X.org ================================= Overview -------- Vendor: X.org/Freedesktop.org Vendor URL: https://www.x.org/wiki/ Credit: X41 D-Sec GmbH, Eric Sesterhenn Advisory-URL:...

mysql: incorrect type cast in check_scramble() leading to authentication bypass

sql/password.c in Oracle MySQL 5.1.x before 5.1.63, 5.5.x before 5.5.24, and 5.6.x before 5.6.6, and MariaDB 5.1.x before 5.1.62, 5.2.x before 5.2.12, 5.3.x before 5.3.6, and 5.5.x before 5.5.23, when running in certain environments with certain implementations of the memcmp function, allows remo...

CVE-2012-2122

CVE-2012-2122 affects Oracle MySQL and MariaDB where memcmp-based environments allow remote authentication bypass by repeatedly attempting with the same wrong password; the bypass occurs due to an improperly-checked return value in token comparison. Affected products/versions include MySQL 5.1.x ...

mysql-vuln-cve2012-2122 NSE Script

Attempts to bypass authentication in MySQL and MariaDB servers by exploiting CVE2012-2122. If its vulnerable, it will also attempt to dump the MySQL usernames and password hashes. All MariaDB and MySQL versions up to 5.1.61, 5.2.11, 5.3.5, 5.5.22 are vulnerable but exploitation depends on whether...

CVE-2012-2122

sql/password.c in Oracle MySQL 5.1.x before 5.1.63, 5.5.x before 5.5.24, and 5.6.x before 5.6.6, and MariaDB 5.1.x before 5.1.62, 5.2.x before 5.2.12, 5.3.x before 5.3.6, and 5.5.x before 5.5.23, when running in certain environments with certain implementations of the memcmp function, allows remo...

PHP <= 5.2.1 substr_compare() Information Leak Exploit

Exploit for multiple platform in category local exploits ====================================================== PHP = 5.2.1 substrcompare Information Leak Exploit ====================================================== ?php //////////////////////////////////////////////////////////////////////// /...

PHP &lt;= 5.2.1 substr_compare() Information Leak Exploit

No description provided by source. ?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || \ // // | |/ || '|/ |/ -| ' \ / -/ |||| /| || / // // ||||,||| ,|||||||,| || |||||| // // // // Proof of concept code from the Hardened-PHP...