CVE-2026-25971

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, Magick fails to check for circular references between two MSLs, leading to a stack overflow. Versions 7.1.2-15 and 6.9.13-40 contain a patch...

CVE-2012-10035

CVE-2012-10035 affects Turbo FTP Server versions 1.30.823 and 1.30.826. The issue is a buffer overflow in handling the FTP PORT command that allows an unauthenticated remote attacker to overwrite memory and execute arbitrary code with SYSTEM privileges. Documented implications include full compro...

The vulnerability of the xbean-reflect/JNDI library component from Jackson-databind allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the xbean-reflect/JNDI library component related to Jackson-databind involves the restoration of unreliable data structures in memory. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

The vulnerability of the Jackson-databind library in the FasterXML project, related to the restoration of unreliable data structures in memory, allows attackers to execute arbitrary code.

The vulnerability of the Jackson-databind library in the FasterXML project is related to the restoration of unreliable data structures in memory. Exploiting this vulnerability could allow a malicious actor, operating remotely, to execute arbitrary code...

Cisco IOS XR gRPC Software Denial of Service Vulnerability

According to its self-reported version, Cisco IOS Software is affected by a denial of service DoS vulnerability exists in Ident protocol handler of Cisco IOS and IOS XE Software due to incorrectly handling memory structures, leading to a NULL pointer dereference. An unauthenticated, remote attack...

CVE-2019-12647 Cisco IOS and IOS XE Software IP Ident Denial of Service Vulnerability

A vulnerability in the Ident protocol handler of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability exists because the affected software incorrectly handles memory structures, leading to a NULL pointer dereference...

The vulnerability of the TopoMsgServlet component in the HPE Intelligent Management Center PLAT software platform, related to the restoration of unreliable data structures in memory, allows a attacker to execute arbitrary code.

The vulnerability of the TopoMsgServlet component in the HPE Intelligent Management Center PLAT software platform is related to the restoration of unreliable data structures in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Schneider Electric ProClima F1BookView ActiveX Control CopyRange/SwapTables Methods Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric ProClima. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaws exist within the...

Ubuntu: Security Advisory (USN-2756-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 14.04 LTS : rpcbind vulnerability (USN-2756-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-2756-1 advisory. It was discovered that rpcbind incorrectly handled certain memory structures. A remote attacker could use this issue to cause rpcbind to crash, resulting in a...

SuSE 11.3 Security Update : lzo (SAT Patch Number 9506)

lzo was updated to fix a potential denial of service issue or possible remote code execution by allowing an attacker, if the LZO decompression algorithm is used in a threaded or kernel context, to corrupt memory structures that control the flow of execution in other contexts. CVE-2014-4607...

tinyproxy tinyproxy 1.3.2/1.3.3 Heap Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2217/info Versions 1.3.2 and 1.3.3 of tinyproxy, a small HTTP proxy, exhibit a vulnerability to heap overflow attacks. A failure to properly validate user-supplied input which arguments a call to sprintf can allow...

SonicWALL Format String Vulnerability

aushack.com - Vulnerability Advisory ----------------------------------------------- Release Date: 29-May-2009 Software: SonicWALL - SSL-VPN Remote Access http://www.sonicwall.com/ Description: "SonicWALL SSL VPN appliances provide small and mid-size organizations an easy-to-use, secure and...

CVE-2005-1978

COM+ in Microsoft Windows does not properly "create and use memory structures," which allows local users or remote attackers to execute arbitrary code...

CVE-2005-1978

COM+ in Microsoft Windows does not properly "create and use memory structures," which allows local users or remote attackers to execute arbitrary code...