91 matches found
The vulnerability of the Android operating system’s NAS component, which allows a hacker to trigger a service failure
The vulnerability of the Android operating system’s NAS component arises from an operation that occurs outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service failure remotely...
From zero to start to learn the Win32 platform buffer overflow(Part1)-bug warning-the black bar safety net
Buffer overflow is a common and we often heard of software security vulnerabilities, buffer overflow, i.e. that the data is too much to write into the memory or buffer, when a buffer within the write data is full, if you continue to write data, the data will overflow into other buffer, it will...
USN-2305-1 samba vulnerability
Volker Lendecke discovered that the Samba NetBIOS name service daemon incorrectly handled certain memory operations. A remote attacker could use this issue to execute arbitrary code as the root user...
Ubuntu 12.04 LTS : djvulibre vulnerability (USN-2056-1)
It was discovered that DjVuLibre incorrectly handled certain memory operations. If a user or automated system were tricked into processing a specially crafted DjVu file, applications could be made to crash, resulting in a denial of service, or possibly execute arbitrary code. Note that Tenable...
Ubuntu Update for djvulibre USN-2056-1
Check for the Version of djvulibre OpenVAS Vulnerability Test $Id: gbubuntuUSN20561.nasl 7958 2017-12-01 06:47:47Z santu $ Ubuntu Update for djvulibre USN-2056-1 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free...
3S CODESYS Gateway-Server Vulnerabilities
Overview This updated advisory is a follow-up to the original advisory titled ICSA-13-050-01, 3S CODESYS Gateway-Server Vulnerabilities that was published February 19, 2013, on the ICS-CERT Web page. This updated advisory provides mitigation details for five vulnerabilities in the 3S-Smart Softwa...
[ MDVSA-2013:258 ] icu
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:258 http://www.mandriva.com/en/support/security/ Package : icu Date : October 28, 2013 Affected: Business Server 1.0, Enterprise Server 5.0 Problem Description: Updated icu packages fix security...
Microsoft Internet Explorer Ref Counting释放后重用远程代码执行漏洞(MS12-077)
BUGTRAQ ID: 56830 CVECAN ID: CVE-2012-4787 Microsoft Internet Explorer是微软公司推出的一款网页浏览器,使用相当广泛。 Microsoft Internet Explorer 6、7、8、9、10在处理恶意HTML内容时,Ref Counting存在错误的内存操作,通过引诱用户浏览恶意网站,未经身份验证的远程攻击者可利用此漏洞以当前用户权限执行任意代码。 0 Microsoft Internet Explorer 9.x Microsoft Internet Explorer 8.x Microsoft Internet...
Apple QuickTime Player MP4A Uninitialized Pointer Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the...
Outpost Insufficient validation of 'SandBox' driver input buffer
Hello, We would like to inform you about a vulnerability in Outpost Firewall PRO 4.0. Description: Outpost insufficiently protects its driver DeviceSandBox against a manipulation by malicious applications and it fails to validate its input buffer. It is possible to open this driver and send...
CVE-2006-0294
Mozilla Firefox before 1.5.0.1, Thunderbird 1.5 if running Javascript in mail, and SeaMonkey before 1.0 allow remote attackers to execute arbitrary code by changing an element's style from position:relative to position:static, which causes Gecko to operate on freed memory...