CVE-2021-36531

ngiflib 0.4 has a heap overflow in GetByte at ngiflib.c:70 in NGIFLIBNOFILE mode, GetByte reads memory buffer without checking the boundary...

CVE-2021-36531

NGIFLIB 0.4 has a heap overflow in GetByte() at ngiflib.c:70 in NGIFLIB_NO_FILE mode, where GetByte() reads beyond the memory buffer. Documented as CVE-2021-36531 . NVD reports CVSSv3.1 base score 8.8 (Network, High impact on confidentiality, integrity, availability). No remediation/patch details...

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat, and Adobe Acrobat Reader involve issues related to writing beyond the buffer in memory, allowing attackers to execute arbitrary code.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat, and Adobe Acrobat Reader are related to writing beyond the buffer limits in memory. Exploiting these vulnerabilities can allow an attacker to execute...

The vulnerability of the Adobe Framemaker desktop publishing system, related to writing beyond the buffer boundaries in memory, allows a hacker to execute arbitrary code.

The vulnerability of the Adobe Framemaker desktop publishing system lies in the writing of code beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user...

The vulnerability of the Adobe Media Encoder application, related to reading beyond the buffer in memory, allows an attacker to disclose protected information.

The vulnerability of the Adobe Media Encoder application relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information...

The vulnerability of the Adobe Photoshop graphic editor lies in the ability to write beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Adobe Photoshop graphic editor is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Adobe Photoshop graphic editor lies in the ability to write beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Adobe Photoshop graphic editor is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Adobe Framemaker desktop publishing system, related to writing beyond the buffer boundaries in memory, allows a hacker to execute arbitrary code.

The vulnerability of the Adobe Framemaker desktop publishing system lies in the writing of code beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user...

The vulnerability of the Adobe Framemaker desktop publishing system arises from the possibility of an operation going beyond the buffer boundaries in memory, allowing a hacker to execute arbitrary code.

The vulnerability of the Adobe Framemaker desktop publishing system lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code on the target system remotely...

Emerson Deltav Improper Restriction of Operations within the Bounds of a Memory Buffer

DeltaV Versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, and R5 is vulnerable to a buffer overflow exploit through an open communication port to allow arbitrary code execution. File data ot500397.nasl...

Emerson Deltav Improper Restriction of Operations within the Bounds of a Memory Buffer

Buffer overflow in Emerson DeltaV 9.3.1 and 10.3 through 11.3.1 allows remote attackers to cause a denial of service daemon crash via a long string to an unspecified port. File data ot500444.nasl...

Schneider-electric Somachine Improper Restriction of Operations within the Bounds of a Memory Buffer

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists in Modicon M258 Firmware All versions prior to V5.0.4.11 and SoMachine/SoMachine Motion software All versions, that could cause a buffer overflow when the length of a file transferred to the...

Rockwellautomation Factorytalk Improper Restriction of Operations within the Bounds of a Memory Buffer

In all versions of FactoryTalk View SE, after bypassing memory corruption mechanisms found in the operating system, a local, authenticated attacker may corrupt the associated memory space allowing for arbitrary code execution. Rockwell Automation recommends applying patch 1126290. Before installi...

Siemens Simatic Improper Restriction of Operations within the Bounds of a Memory Buffer

A vulnerability has been identified in SIMATIC Drive Controller family All versions V2.9.2, SIMATIC ET 200SP Open Controller CPU 1515SP PC incl. SIPLUS variants All versions, SIMATIC ET 200SP Open Controller CPU 1515SP PC2 incl. SIPLUS variants All versions, SIMATIC S7-1200 CPU family incl. SIPLU...

The vulnerability of Cisco SD-WAN router microprogramming software, related to reading beyond the buffer in memory, allows a intruder to gain unauthorized access to the device.

The vulnerability of Cisco SD-WAN router microprogramming software relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to the device through a specially crafted MPLS packet...

Siemens Simatic Improper Restriction of Operations within the Bounds of a Memory Buffer

The 1 TLS and 2 DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys,...

Emerson Deltav Improper Restriction of Operations within the Bounds of a Memory Buffer

PORTSERV.exe in Emerson DeltaV and DeltaV Workstations 9.3.1, 10.3.1, 11.3, and 11.3.1 and DeltaV ProEssentials Scientific Graph 5.0.0.6 allows remote attackers to cause a denial of service daemon crash via a crafted 1 TCP or 2 UDP packet to port 111. File data ot500464.nasl...

Rockwellautomation Rslinx Improper Restriction of Operations within the Bounds of a Memory Buffer

A denial-of-service vulnerability exists in the Ethernet/IP server functionality of Rockwell Automation RSLinx Classic 2.57.00.14 CPR 9 SR 3. A specially crafted network request can lead to a denial of service. An attacker can send a sequence of malicious packets to trigger this vulnerability. Fi...

The vulnerability of the ANGLE library in Google Chrome browser allows a hacker to induce a service failure.

The vulnerability of the ANGLE library in the Google Chrome browser is related to memory buffer overflow attacks. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

The vulnerabilities of PDF viewing and editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, and Adobe Acrobat 2017/Adobe Acrobat Reader 2017 involve reading data beyond the buffer in memory, allowing attackers to disclose protected information.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, and Adobe Acrobat Reader 2017 are related to reading data beyond the buffer in memory. Exploiting these vulnerabilities can allow attackers to...