Accusoft ImageGear TIF bits_per_sample processing out-of-bounds write vulnerability

Summary An out-of-bounds write vulnerability exists in the TIF bitspersample processing functionality of Accusoft ImageGear 19.9. A specially crafted malformed file can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability. Tested Versions Accusoft...

Moxa Camera VPort 06EC-2V Denial of Service Vulnerability (CNVD-2021-36219)

MOXA Moxa Camera VPort 06EC-2V is a camera device from Moxa Taiwan, China. A security vulnerability exists in the Moxa Camera VPort 06EC-2V. An attacker can cause a denial of service by passing a carefully crafted lldp packet to a negative number in the memcpy function...

CVE-2021-25846

Improper validation of the ChassisID TLV in userdisk/vportlldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows attackers to cause a denial of service due to a negative number passed to the memcpy function via a crafted lldp packet...

CVE-2021-25846

CVE-2021-25846 affects Moxa Camera VPort 06EC-2V Series (version 1.1) via improper validation of the ChassisID TLV in the LLDP handling path (userdisk/vport_lldpd). A crafted LLDP packet can pass a negative value to memcpy, triggering a denial of service. The vulnerability is documented across mu...

CVE-2021-25846

Improper validation of the ChassisID TLV in userdisk/vportlldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows attackers to cause a denial of service due to a negative number passed to the memcpy function via a crafted lldp packet...

Exploit for Incorrect Calculation in Google Android

...

CVE-2019-13171

Some Xerox printers such as the Phaser 3320 V53.006.16.000 were affected by one or more stack-based buffer overflow vulnerabilities in the Google Cloud Print implementation that would allow an unauthenticated attacker to execute arbitrary code on the device. This was caused by an insecure handlin...

Stack overflow

Some Xerox printers such as the Phaser 3320 V53.006.16.000 were affected by one or more stack-based buffer overflow vulnerabilities in the Google Cloud Print implementation that would allow an unauthenticated attacker to execute arbitrary code on the device. This was caused by an insecure handlin...

Remote code execution

A Code Execution vulnerability exists in the memcpy function when processing AMF requests in Ezhometech EzServer 7.0, which could let a remote malicious user execute arbitrary code or cause a Denial of Service...

CVE-2019-18609

An issue was discovered in amqphandleinput in amqpconnection.c in rabbitmq-c 0.9.0. There is an integer overflow that leads to heap memory corruption in the handling of CONNECTIONSTATEHEADER. A rogue server could return a malicious frame header that leads to a smaller targetsize value than needed...

CVE-2019-18609

An issue was discovered in amqphandleinput in amqpconnection.c in rabbitmq-c 0.9.0. There is an integer overflow that leads to heap memory corruption in the handling of CONNECTIONSTATEHEADER. A rogue server could return a malicious frame header that leads to a smaller targetsize value than needed...

Integer overflow

An issue was discovered in amqphandleinput in amqpconnection.c in rabbitmq-c 0.9.0. There is an integer overflow that leads to heap memory corruption in the handling of CONNECTIONSTATEHEADER. A rogue server could return a malicious frame header that leads to a smaller targetsize value than needed...

SweetScape 010 Editor Arbitrary Memory Overwrite Vulnerability

010 Editor is a professional text editor and hexadecimal editor for quickly and easily editing the contents of any file on your computer. An arbitrary memory overwrite vulnerability exists in SweetScape 010 Editor 9.0.1. The vulnerability stems from improper validation of parameters in the intern...

CVE-2019-12551

In SweetScape 010 Editor 9.0.1, improper validation of arguments in the internal implementation of the Memcpy function provided by the scripting engine allows an attacker to overwrite arbitrary memory, which could lead to code execution...

CVE-2017-10724

Recently it was discovered as a part of the research on IoT devices in the most recent firmware for Shekar Endoscope that an attacker connected to the device Wi-Fi SSID can exploit a memory corruption issue and execute remote code on the device. This device acts as an Endoscope camera that allows...

UBUNTU-CVE-2018-16885

A flaw was found in the Linux kernel that allows the userspace to call memcpyfromiovecend and similar functions with a zero offset and buffer length which causes the read beyond the buffer boundaries, in certain cases causing a memory access fault and a system halt by accessing invalid memory...

Buffer overflow

A Buffer Error vulnerability exists in PowerSuite 2, all released versions VW3A8104 & Patches, which could cause an overflow in the memcpy function, leading to corruption of data and program instability...

CVE-2018-17582

Tcpreplay v4.3.0 beta1 contains a heap-based buffer over-read. The getnextpacket function in the sendpackets.c file uses the memcpy function unsafely to copy sequences from the source buffer pktdata to the destination prevpacket-pktdata. This will result in a Denial of Service DoS and potentially...

CVE-2018-17582

Tcpreplay v4.3.0 beta1 contains a heap-based buffer over-read. The getnextpacket function in the sendpackets.c file uses the memcpy function unsafely to copy sequences from the source buffer pktdata to the destination prevpacket-pktdata. This will result in a Denial of Service DoS and potentially...

CVE-2018-11265

In all android releases Android for MSM, Firefox OS for MSM, QRD Android from CAF using the linux kernel, possible buffer overflow while incrementing the logbuf of type uint64t in memcpy function, since the logbuf pointer can access the memory beyond the size to store the data after pointer...