Lucene search
+L

321 matches found

Prion
Prion
added 2019/06/17 10:15 p.m.13 views

Stack overflow

Recently it was discovered as a part of the research on IoT devices in the most recent firmware for Shekar Endoscope that the desktop application used to connect to the device suffers from a stack overflow if more than 26 characters are passed to it as the Wi-Fi password. This application is...

4.6CVSS8AI score0.00735EPSS
Exploits1References3
Cvelist
Cvelist
added 2019/06/17 9:41 p.m.23 views

CVE-2017-10720

Recently it was discovered as a part of the research on IoT devices in the most recent firmware for Shekar Endoscope that the desktop application used to connect to the device suffers from a stack overflow if more than 26 characters are passed to it as the Wi-Fi name. This application is installe...

8AI score0.00735EPSS
Exploits1References3
CVE
CVE
added 2019/06/17 9:39 p.m.68 views

CVE-2017-10722

CVE-2017-10722 concerns a stack overflow in the Shekar Endoscope’s desktop controller when a Wi‑Fi password longer than 26 characters is processed. The vulnerable path involves the avilib.dll routine that handles a change-password action via sendchangepass, with the input length contributing to a...

7.8CVSS8AI score0.00735EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2019/04/24 12:0 a.m.2 views

PT-2021-4581 · Lz4 +9 · Lz4 +9

Name of the Vulnerable Software and Affected Versions: lz4 affected versions not specified Description: The issue is related to an integer overflow in lz4, which can be triggered by submitting a crafted file to an application linked with lz4. This overflow leads to calling memmove on a negative...

9.8CVSS7AI score0.09116EPSS
Exploits0References79
BDU FSTEC
BDU FSTEC
added 2019/02/19 12:0 a.m.7 views

The vulnerability of the __memmove_avx_unaligned_erms function in the library, which is used by system calls and core glibc functions, allows a attacker to cause a crash in the application’s behavior.

The vulnerability of the memmoveavxunalignederms function sysdeps/x8664/multiarch/memmove-vec-unaligned-erms.S in the library, which handles system calls and core functions of glibc, is related to resource leak errors. Exploiting this vulnerability can allow an attacker to cause errors in...

3.3CVSS7.2AI score0.00436EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2019/02/12 12:0 a.m.27 views

LIVE555 Buffer Overflow Vulnerability

LIVE555 is a set of open source C++ libraries for multimedia streaming. Live555 suffers from a buffer overflow vulnerability. The vulnerability stems from handleRequestBytes having an unrestricted memmove, which can be exploited to cause a denial of service via a large integer in the Content-Leng...

7.5CVSS8.4AI score0.0158EPSS
Exploits1References1
NVD
NVD
added 2019/02/11 5:29 p.m.29 views

CVE-2019-7733

In Live555 0.95, there is a buffer overflow via a large integer in a Content-Length HTTP header because handleRequestBytes has an unrestricted memmove...

7.5CVSS7.9AI score0.0158EPSS
Exploits1References2
OSV
OSV
added 2019/02/11 5:29 p.m.1 views

CVE-2019-7733

In Live555 0.95, there is a buffer overflow via a large integer in a Content-Length HTTP header because handleRequestBytes has an unrestricted memmove...

7.5CVSS7.4AI score0.0158EPSS
Exploits1References2
Prion
Prion
added 2019/02/11 5:29 p.m.24 views

Buffer overflow

In Live555 0.95, there is a buffer overflow via a large integer in a Content-Length HTTP header because handleRequestBytes has an unrestricted memmove...

5CVSS7.7AI score0.0158EPSS
Exploits1References2Affected Software1
UbuntuCve
UbuntuCve
added 2019/02/11 5:29 p.m.39 views

CVE-2019-7733

In Live555 0.95, there is a buffer overflow via a large integer in a Content-Length HTTP header because handleRequestBytes has an unrestricted memmove...

7.5CVSS7.3AI score0.0158EPSS
Exploits1References2
OSV
OSV
added 2019/02/11 5:29 p.m.2 views

UBUNTU-CVE-2019-7733

In Live555 0.95, there is a buffer overflow via a large integer in a Content-Length HTTP header because handleRequestBytes has an unrestricted memmove...

7.5CVSS7.4AI score0.0158EPSS
Exploits1References3
Cvelist
Cvelist
added 2019/02/11 5:0 p.m.28 views

CVE-2019-7733

In Live555 0.95, there is a buffer overflow via a large integer in a Content-Length HTTP header because handleRequestBytes has an unrestricted memmove...

8.8AI score0.0158EPSS
Exploits1References2
OSV
OSV
added 2019/01/18 7:29 p.m.5 views

DEBIAN-CVE-2019-6488

The string component in the GNU C Library aka glibc or libc6 through 2.28, when running on the x32 architecture, incorrectly attempts to use a 64-bit register for sizet in assembly codes, which can lead to a segmentation fault or possibly unspecified other impact, as demonstrated by a crash in...

7.8CVSS8.9AI score0.00436EPSS
Exploits0References1
OSV
OSV
added 2019/01/18 7:29 p.m.5 views

UBUNTU-CVE-2019-6488

The string component in the GNU C Library aka glibc or libc6 through 2.28, when running on the x32 architecture, incorrectly attempts to use a 64-bit register for sizet in assembly codes, which can lead to a segmentation fault or possibly unspecified other impact, as demonstrated by a crash in...

7.8CVSS7.1AI score0.00436EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.47 views

SUSE SLED15 / SLES15 Security Update : glibc (SUSE-SU-2018:1991-1)

This update for glibc fixes the following security issues : - CVE-2017-18269: An SSE2-optimized memmove implementation for i386 did not correctly perform the overlapping memory check if the source memory range spaned the middle of the address space, resulting in corrupt data being produced by the...

9.8CVSS7.8AI score0.074EPSS
Exploits3References12
NVD
NVD
added 2018/12/26 9:29 p.m.14 views

CVE-2018-20404

ETKE900.sys, a SmartETK driver for VIA Technologies EPIA-E900 system board, is vulnerable to denial of service attack via IOCTL 0x9C402048, which calls memmove and constantly fails on an arbitrary uncontrollable address, resulting in an eternal hang or a BSoD...

7.8CVSS7.5AI score0.01477EPSS
Exploits1References1
Prion
Prion
added 2018/12/26 9:29 p.m.8 views

Code injection

ETKE900.sys, a SmartETK driver for VIA Technologies EPIA-E900 system board, is vulnerable to denial of service attack via IOCTL 0x9C402048, which calls memmove and constantly fails on an arbitrary uncontrollable address, resulting in an eternal hang or a BSoD...

7.8CVSS7.5AI score0.01477EPSS
Exploits1References1
CVE
CVE
added 2018/12/26 8:0 p.m.35 views

CVE-2018-20404

CVE-2018-20404 affects the ETK_E900.sys SmartETK driver for VIA Technologies EPIA-E900 system boards. The vulnerability is triggered by IOCTL 0x9C402048, which calls memmove and may fail on an arbitrary, uncontrollable address, leading to an eternal hang or a blue screen (DoS). Exploitation detai...

7.8CVSS7.4AI score0.01477EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/12/26 8:0 p.m.17 views

CVE-2018-20404

ETKE900.sys, a SmartETK driver for VIA Technologies EPIA-E900 system board, is vulnerable to denial of service attack via IOCTL 0x9C402048, which calls memmove and constantly fails on an arbitrary uncontrollable address, resulting in an eternal hang or a BSoD...

7.5AI score0.01477EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2018/11/22 5:49 p.m.25 views

CVE-2018-19416

An issue was discovered in sysstat 12.1.1. The remapstruct function in sacommon.c has an out-of-bounds read during a memmove call, as demonstrated by sadf...

7.8CVSS3AI score0.01715EPSS
Exploits1References2
Rows per page
Query Builder