UBUNTU-CVE-2017-1000185

In SWFTools, a memcpy buffer overflow was found in gif2swf...

CVE-2017-1000176

CVE-2017-1000176 affects SWFTools, specifically the swfc component, where a memcpy buffer overflow is reported. The root cause is a memcpy-based overflow in swfc, and multiple sources describe it as enabling a denial-of-service scenario. The CVSS data from NVD indicates a Medium base score (4.3) ...

CVE-2017-1000176

In SWFTools, a memcpy buffer overflow was found in swfc...

CVE-2017-1000176

Removed by vendor...

CVE-2017-1000185

Removed by vendor...

SWFTools memcpy buffer overflow vulnerability

SWFTools is a suite of open source software tools for creating and manipulating SWF files. A memcpy buffer overflow vulnerability exists in gif2swf in SWFTools. An attacker could exploit this vulnerability to cause a denial of service...

Microsoft Internet Explorer 11 jscript!JsErrorToString Use-After-Free

Microsoft IE11: use-after-free in jscript!JsErrorToString CVE-2017-11810 There is a use-after-free in jscript.dll library that can be exploited in IE11. jscript.dll is an old JavaScript library that was used in IE 8 and back. However, IE11 can still load it if put into IE8 compatibility mode and ...

wxwidgets/zip: Memcpy-param-overlap in wxZipInputStream::FindEndRecord

Project: https://github.com/wxWidgets/wxWidgets.git Detailed report: https://oss-fuzz.com/testcase?key=6189258093101056 Project: wxwidgets Fuzzer: libFuzzerwxwidgetszip Fuzz target binary: zip Job Type: libfuzzerasanwxwidgets Platform Id: linux Crash Type: Memcpy-param-overlap Crash Address:...

IBM Domino KeyView PDF Filter Stream Length Code Execution Vulnerability(CVE-2016-0278)

Description An integer overflow vulnerability present in the PDF filter of KeyView as used by Domino can lead to process crash and possible arbitrary code execution. Tested Versions KeyView 10.16 as used by IBM Domino 9.0.1 Product URLs http://www-03.ibm.com/software/products/en/ibmdomino Details...

Microsoft Windows Kernel Pool nt!RtlpCopyLegacyContextX86 Memory Disclosure Vulnerability

The Microsoft Windows kernel pool suffers from a nt!RtlpCopyLegacyContextX86 related memory disclosure vulnerability. Windows Kernel pool memory disclosure in nt!RtlpCopyLegacyContextX86 CVE-2017-11784 One kernel memory disclosure in the exception handling code has already been discovered and...

ffmpeg: Memcpy-param-overlap in xan_wc3_copy_pixel_run

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=6393461273001984 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDXANWC3fuzzer Fuzz target binary: ffmpegAVCODECIDXANWC3fuzzer Job Type: libfuzzerasanffmpeg Platform Id: linux Crash Type:...

haneWIN DNS Server 1.5.3 Buffer Overflow Exploit

This Metasploit module exploits a buffer overflow vulnerability found in haneWIN DNS Server versions 1.5.3 and below. The vulnerability is triggered by sending an overly long packet to the victim server. A memcpy function blindly copies user supplied data to a fixed size buffer leading to remote...

KingScada AlarmServer 3.1.2.13 Buffer Overflow

require 'msf/core' class MetasploitModule 'KingScada AlarmServer Stack Buffer Overflow', 'Description' = %q This module exploits a stack based buffer overflow found in KingScada 'James Fitts' , 'License' = MSFLICENSE, 'References' = 'CVE', '2014-0787' , 'ZDI', '14-071' , 'URL',...

openSUSE Security Update : mpg123 (openSUSE-2017-1035)

This update for mpg123 fixes the following issues : - Update to version 1.25.6 - Hotfix for bug 255: Overflow reading frame data bits in layer II decoding. Now, all-zero data is returned if the frame data is exhausted. This might have a slight impact on performance, but not easily measurable so...

CVE-2017-12601

OpenCV Open Source Computer Vision Library through 3.3 has a buffer overflow in the cv::BmpDecoder::readData function in modules/imgcodecs/src/grfmtbmp.cpp when reading an image file by using cv::imread, as demonstrated by the 4-buf-overflow-readData-memcpy test case...

Google Android Qualcomm Component Video Driver Memory Corruption Vulnerability

Android is a Linux-based open source operating system developed by Google and the Open Handheld Alliance OHA, and Qualcomm Video driver is a video driver developed by Qualcomm. A security vulnerability exists in the Qualcomm Video driver in Android, which stems from the lack of bounds detection i...

CVE-2017-9678

In all Qualcomm products with Android releases from CAF using the Linux kernel, in a video driver, memory corruption can potentially occur due to lack of bounds checking in a memcpy...

CVE-2017-9678

In all Qualcomm products with Android releases from CAF using the Linux kernel, in a video driver, memory corruption can potentially occur due to lack of bounds checking in a memcpy...

CVE-2017-9678

In all Qualcomm products with Android releases from CAF using the Linux kernel, in a video driver, memory corruption can potentially occur due to lack of bounds checking in a memcpy...

WebKit: JSC: JSArray::appendMemcpy uninitialized memory copy(CVE-2017-7064)

WebKit: JSC: JSArray::appendMemcpy uninitialized memory copy Here's a snippet of JSArray::appendMemcpy. bool JSArray::appendMemcpyExecState exec, VM& vm, unsigned startIndex, JSC::JSArray otherArray auto scope = DECLARETHROWSCOPEvm; if !canFastCopyvm, otherArray return false; IndexingType type =...