87 matches found
Mongodb Server Input Validation Error Vulnerability (CNVD-2020-67315)
Mongodb Server is the United States Mongodb company's set of open source NoSQL database . The database provides collection-oriented storage , dynamic query , data replication and automatic failover and other functions . A security vulnerability exists in MongoDB Server that originates from the...
UBUNTU-CVE-2019-2392
A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries, which use the $mod operator to overflow negative values. This issue affects: MongoDB Inc. MongoDB Server v4.4 versions prior to 4.4.1; v4.2 versions prior to 4.2.9; v4.0 versions prio...
Input validation
A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries, which use the $mod operator to overflow negative values. This issue affects: MongoDB Inc. MongoDB Server v4.4 versions prior to 4.4.1; v4.2 versions prior to 4.2.9; v4.0 versions prio...
CVE-2019-2392
CVE-2019-2392 affects MongoDB Server. A user authorized to perform database queries can cause a denial of service by sending specially crafted queries that use the $mod operator to overflow negative values. Affected versions include MongoDB Server v4.4 prior to 4.4.1; v4.2 prior to 4.2.9; v4.0 pr...
OpenConnect Input Validation Error Vulnerability
OpenConnect is an open source application for connecting to virtual private networks. A security vulnerability exists in OpenConnect 8.08 and earlier versions, which stems from the program failing to properly handle negative values returned by calls to the 'X509check' function. An attacker could...
Integer Overflows
Poppler vulnerable to integer overflows. The attack is possible because it doesn't check for negative values of stream length, leading to an Integer Overflow...
PHP has an unspecified vulnerability (CNVD-2019-42542)
PHP PHP: Hypertext Preprocessor, PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language jointly maintained by the PHPGroup and the open source community. The language is mainly used for Web development, supports a variety of databases and operating systems. A...
QEMU integer overflow vulnerability (CNVD-2018-25188)
QEMU aka Quick Emulator is a set of simulation processor software developed by French programmer Fabrice Bellard. The software is fast and cross-platform. An integer overflow vulnerability exists in the Bluetooth subsystem in QEMU, which stems from the program's failure to properly handle negativ...
DEBIAN-CVE-2018-19623
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbitrary data to any memory locations before the packet-scoped memory. This was addressed in epan/dissectors/packet-lbmpdm.c by disallowing certain negative values...
CVE-2018-19623
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbitrary data to any memory locations before the packet-scoped memory. This was addressed in epan/dissectors/packet-lbmpdm.c by disallowing certain negative values...
UBUNTU-CVE-2018-19623
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbitrary data to any memory locations before the packet-scoped memory. This was addressed in epan/dissectors/packet-lbmpdm.c by disallowing certain negative values...
Design/Logic Flaw
xfind/search in Ximdex 4.0 has XSS via the filternvalue parameters for non-negative values of n, as demonstrated by n equal to 0 through 12...
CVE-2017-13195
In the ihevcdparsesps function of ihevcdparseheaders.c, several parameter values could be negative which could lead to negative indexes which could lead to an infinite loop. This could lead to a remote denial of service of a critical system process with no additional execution privileges needed...
Design/Logic Flaw
In the ihevcdparsesps function of ihevcdparseheaders.c, several parameter values could be negative which could lead to negative indexes which could lead to an infinite loop. This could lead to a remote denial of service of a critical system process with no additional execution privileges needed...
Memory corruption
The socksetsockopt function in net/core/sock.c in the Linux kernel before 4.8.14 mishandles negative values of sksndbuf and skrcvbuf, which allows local users to cause a denial of service memory corruption and system crash or possibly have unspecified other impact by leveraging the CAPNETADMIN...
SUSE SLED12 / SLES12 Security Update : libvirt (SUSE-SU-2016:2053-1)
This update for libvirt fixes one security issue : - CVE-2016-5008: Empty VNC password disables authentication. bsc987527 Additionally, the update includes the following non-security fixes : - Improve waiting for block job readines in virsh. bsc989755 - Parse negative values in augeas lenses...
CVE-2016-2414
The Minikin library in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not properly consider negative size values in font data, which allows remote attackers to cause a denial of service memory corruption and reboot loop via a crafted font, aka internal bug 26413177...
Enter: Potential for financial loss, negative Values for "Buy fee" and "Sell Fee"
Issue It is possible to set negative values for the Buy Fee and Sell Fee, which will cause unexpected transfers etc. as these settings override the settings at the location. PoC 1. Go to the Operator Wallet's Settings. 2. Click on the users tab. 3. Select any user. 4. Go to settings tab of that...
freetype: integer overflow in pcf_get_encodings() leading to NULL pointer dereference
Multiple integer signedness errors in the pcfgetencodings function in pcf/pcfread.c in FreeType before 2.5.4 allow remote attackers to cause a denial of service integer overflow, NULL pointer dereference, and application crash via a crafted PCF file that specifies negative values for the first...
DEBIAN-CVE-2014-9670
Multiple integer signedness errors in the pcfgetencodings function in pcf/pcfread.c in FreeType before 2.5.4 allow remote attackers to cause a denial of service integer overflow, NULL pointer dereference, and application crash via a crafted PCF file that specifies negative values for the first...