CVE-2019-16512

CVE-2019-16512 affects ConnectWise Control (formerly ScreenConnect) 19.3.25270.7185, with a reported stored XSS in the Appearance modifier . The connected records confirm the issue but do not provide additional technical specifics beyond the vulnerability type and location. No explicit exploitati...

CVE-2019-16512

An issue was discovered in ConnectWise Control formerly known as ScreenConnect 19.3.25270.7185. There is stored XSS in the Appearance modifier...

The vulnerability of the `modifier_mdef_compact_influences` component in the software suite for creating 3D computer graphics in Blender allows a hacker to execute arbitrary code.

The vulnerability of the modifiermdefcompactinfluences component in the software suite used to create 3D computer graphics in Blender is due to a numerical overflow condition. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created blend file...

CVE-2019-7713

An issue was discovered in the Interpeak IPCOMShell TELNET server on Green Hills INTEGRITY RTOS 5.0.4. There is a heap-based buffer overflow in the function responsible for printing the shell prompt, when a custom modifier is used to display information such as a process ID, IP address, or curren...

Heap overflow

An issue was discovered in the Interpeak IPCOMShell TELNET server on Green Hills INTEGRITY RTOS 5.0.4. There is a heap-based buffer overflow in the function responsible for printing the shell prompt, when a custom modifier is used to display information such as a process ID, IP address, or curren...

PT-2019-18717 · Interpeak +1 · Interpeak Ipcomshell +1

Name of the Vulnerable Software and Affected Versions: Green Hills INTEGRITY RTOS version 5.0.4 Description: A heap-based buffer overflow issue exists in the Interpeak IPCOMShell TELNET server. This occurs when a custom modifier is used to display specific information, such as a process ID, IP...

The vulnerability of Juniper Advanced Threat Prevention’s microprogramming software, related to the use of the DES algorithm and a pre-installed password hashing modifier, allows attackers to gain access to protected information.

The vulnerability of Juniper Advanced Threat Prevention’s detection and prevention software lies in the use of the DES algorithm and a pre-installed modifier for password hashing. Exploiting this vulnerability could allow attackers to gain access to protected information...

xkbcommon null pointer dereference vulnerability (CNVD-2019-02670)

xkbcommon is a keyboard key mapping compiler and support library. A null pointer dereference vulnerability exists in the 'LookupModMask' function of the xkbcomp/expr.c file in versions of xkbcommon prior to xkbcommon 0.8.2, which can be exploited by a local attacker by submitting a specially...

Aurora IDEX Membership(IDXM), ERC20 Token, allows attackers to acquire contract ownership (CVE-2018–10666)

Abstract I found a new vulnerability in smart contract of IDXM Token CVE-2018–106661. Attackers can acquire contract ownership because the setOwner function is delcared as public. A new owner can subsequently bypass intended access restrictions by, for example, calling uploadBalances. Details In...

Foxit Reader Arbitrary Code Execution Vulnerability (CNVD-2018-11834)

Foxit Reader is China's Foxit Foxit Software Corporation, a PDF document reader. A remote code execution vulnerability exists in the parsing of Modifier Chain objects in Foxit Reader version 9.0.0.29935, which occurs when the program fails to verify the existence of an object before performing an...

CVE-2018-9977

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2018-10491

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2018-10491

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Design/Logic Flaw

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2018-10491

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Foxit Reader U3D Bone Weight Modifier Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D...

DEBIAN-CVE-2017-12105

An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c applies a particular object modifier to a Mesh. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context...

PT-2018-3111 · Blender +1 · Blender +1

Name of the Vulnerable Software and Affected Versions: Blender version 2.78c Description: An integer overflow exists in the 'modifier mdef compact influences' functionality, allowing for a buffer overflow that can enable code execution under the context of the application. This issue can be...

PT-2018-3114 · Blender +1 · Blender +1

Name of the Vulnerable Software and Affected Versions: Blender version 2.78c Description: An integer overflow exists in the way Blender applies a particular object modifier to a Mesh, which can be exploited by a specially crafted .blend file. This can cause a buffer overflow, allowing for code...

Blender modifier_mdef_compact_influences integer overflow vulnerability

Blender is an open source cross-platform all-in-one 3D animation software, providing a series of animated short film production solutions from modeling, animation, materials, rendering, to audio processing, video editing and so on. An integer overflow vulnerability exists in Blender...