CVE-2017-8181

CVE-2017-8181 affects Huawei smartphones with MTK-based camera driver prior to Nice-AL00C00B155. The vulnerability stems from insufficient input verification in the MTK camera driver, enabling an attacker to trick a user into installing a malicious app with elevated privileges and send a specific...

Microsoft Windows EngLockSurface Time-Of-Check Time-Of-Use Race Condition Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on vulnerable installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

Cesanta Mongoose MQTT Payload Length Remote Code Execution

Summary An exploitable arbitrary memory read vulnerability exists in the MQTT packet parsing functionality of Cesanta Mongoose 6.8. A specially crafted MQTT packet can cause an arbitrary out-of-bounds memory read and write potentially resulting in information disclosure, denial of service and...

Linux kernel local memory corruption vulnerability (CNVD-2017-34130)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A local memory corruption vulnerability exists in the Linux kernel. A local attacker could exploit this vulnerability with arbitrary values to overwrite arbitrary locations or...

The vulnerability of the imlib2 graphic library, caused by integer overflow, allows an attacker to execute arbitrary code.

The vulnerability of the imlib2 graphic library for 32-bit platforms arises from integer overflows memory writes beyond the boundaries of the memory buffer. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially created large-sized image...

Artifex MuPDF Numeric Error Vulnerability

Artifex MuPDF is a free, lightweight PDF reader from Artifex Software. An integer overflow vulnerability exists in the pdfreadnewxrefsection of the pdf/pdf-xref.c file in Artifex MuPDF version 1.11. A remote attacker can exploit this vulnerability to write data to an arbitrary memory location...

Code injection

In CPUID CPU-Z before 1.43, there is an arbitrary memory write that results directly in elevation of privileges, because any program running on the local machine while CPU-Z is running can issue an ioctl 0x9C402430 call to the kernel-mode driver e.g., cpuz141x64.sys for version 1.41...

CVE-2017-15303

In CPUID CPU-Z before 1.43, there is an arbitrary memory write that results directly in elevation of privileges, because any program running on the local machine while CPU-Z is running can issue an ioctl 0x9C402430 call to the kernel-mode driver e.g., cpuz141x64.sys for version 1.41...

CVE-2017-15303

In CPUID CPU-Z before 1.43, there is an arbitrary memory write that results directly in elevation of privileges, because any program running on the local machine while CPU-Z is running can issue an ioctl 0x9C402430 call to the kernel-mode driver e.g., cpuz141x64.sys for version 1.41...

CVE-2017-15303

In CPUID CPU-Z before 1.43, there is an arbitrary memory write that results directly in elevation of privileges, because any program running on the local machine while CPU-Z is running can issue an ioctl 0x9C402430 call to the kernel-mode driver e.g., cpuz141x64.sys for version 1.41...

CVE-2017-15303

CVE-2017-15303 affects CPUID CPU-Z prior to 1.43. The flaw allows an arbitrary memory write via an ioctl 0x9C402430 to the kernel-mode driver (cpuz141_x64.sys for v1.41), enabling local elevation of privileges on the same host. This is a kernel-space write condition originating from userland inte...

Oracle OIT ContentAccess libvs_mwkd VwStreamReadRecord Memory Corruption Vulnerability(CVE-2016-3591)

Description Partially controlled memory write vulnerability exists in Mac Works Database file format parsing code of Oracle Outside In Technology Content Access SDK. An unchecked pointer arithmetic causes an out of bounds memory write which can lead to denial of service or possibly code execution...

Oracle OIT ContentAccess libvs_word+63AC Code Execution Vulnerability(CVE-2016-3592)

Description Partially controlled memory write vulnerability exists in Mac Word file format parsing code of Oracle Outside In Technology Content Access SDK. An unchecked pointer arithmetic leads to an out of bounds memory overwrite resulting in code execution. Tested Versions Oracle Outside In...

CVE-2015-1206

Heap-based buffer overflow in Google Chrome before M40 allows remote attackers to cause a denial of service unpaged memory write and process crash via a crafted MP4 file...

CVE-2015-1206

Removed by vendor...

ARM Trusted Firmware Authentication Vulnerability

ARM Trusted Firmware is an implementation of multiple ARM interface standards. A security vulnerability exists in the BL1 FWU SMC handling code in ARM Trusted Firmware versions prior to 1.4. The vulnerability can be exploited by an attacker with the help of a specially crafted AArch32 image to...

Security Advisory - Multiple Vulnerabilities in MTK Platform

There are two buffer overflow vulnerabilities and one arbitrary memory write vulnerability in the camera driver of MTK platform in some Huawei smart phones. Due to the insufficient input verification, an attacker tricks a user into installing a malicious application which has special privilege an...

Design/Logic Flaw

An invalid memory write was discovered in copymp in interface.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes a denial of service segmentation fault and application crash or possibly unspecified other impact...

CVE-2017-14412

An invalid memory write was discovered in copymp in interface.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes a denial of service segmentation fault and application crash or possibly unspecified other impact...

CVE-2017-14412

An invalid memory write was discovered in copymp in interface.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes a denial of service segmentation fault and application crash or possibly unspecified other impact...