Binwalk 路径遍历漏洞

Binwalk is a fast and easy-to-use tool open sourced by ReFirm Labs. It is used for analysis, reverse engineering, and extracting firmware images. Versions of Binwalk 2.4.3 and earlier have a path traversal vulnerability. This vulnerability stems from improper handling of the parameter self.filena...

CVE-2024-5991

In function MatchDomainName, input param str is treated as a NULL terminated string despite being user provided and unchecked. Specifically, the function X509checkhost takes in a pointer and length to check against, with no requirements that it be NULL terminated. If a caller was attempting to do...

CVE-2024-5991

In function MatchDomainName, input param str is treated as a NULL terminated string despite being user provided and unchecked. Specifically, the function X509checkhost takes in a pointer and length to check against, with no requirements that it be NULL terminated. If a caller was attempting to do...

kernel: tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING

In the Linux kernel, the following vulnerability has been resolved: tipc: Change nlapolicy for bearer-related names to NLANULSTRING syzbot reported the following uninit-value access issue 1: ===================================================== BUG: KMSAN: uninit-value in strlen lib/string.c:418...

RHEL 8 : aspell (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - aspell: UCS-2 and UCS-4 null-terminated string handling OOB read CVE-2019-20433 - libaspell.a in GNU Aspe...

CVE-2021-1120

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin, where a string provided by the guest OS may not be properly null terminated. The guest OS or attacker has no ability to push content to the plugin through this vulnerability, which may lead to information...

UBUNTU-CVE-2020-23334

A WRITE memory access in the AP4NullTerminatedStringAtom::AP4NullTerminatedStringAtom component of Bento4 version 06c39d9 can lead to a segmentation fault...

Information Disclosure

kernel is vulnerable to information disclosure. The vulnerability exists through missing validations of null-terminated string data structure elements in the doreplace, compatdoreplace, doiptgetctl, doip6tgetctl, and doarptgetctl functions could allow a local user who has the CAPNETADMIN capabili...

Ubuntu 16.04 LTS : Linux kernel (HWE) vulnerabilities (USN-4068-2)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4068-2 advisory. USN-4068-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.04 LTS. This update provides the corresponding updates for the Linux Hardware Enableme...

OverByte ICS FTP Server - Remote Denial of Service

OverByte ICS FTP Server - Remote Denial of Service //--Exploit: //=========================================================== include include pragma commentlib, \"ws232.lib\" char Nonnullterminatedstring = \"AAAAAAAAAAAAAAAAAA\"; int mainint argc, char argv WSADATA wsaData; WORD...

OverByte ICS FTP Server - Remote Denial of Service

//--Exploit: //=========================================================== include include pragma commentlib, \"ws232.lib\" char Nonnullterminatedstring = \"AAAAAAAAAAAAAAAAAA\"; int mainint argc, char argv WSADATA wsaData; WORD wVersionRequested; struct hostent pTarget; struct sockaddrin...