Microsoft Word Code Execution Vulnerability (CNVD-2025-18826)

Microsoft Word is a word processing software in the Office suite of the U.S. company Microsoft Microsoft. Microsoft Word Code Execution Vulnerability, the vulnerability is caused due to incorrect conversion between number types. An attacker could exploit this vulnerability to execute arbitrary co...

CVE-2023-23556

An error in BigInt conversion to Number in Hermes prior to commit a6dcafe6ded8e61658b40f5699878cd19a481f80 could have been used by a malicious attacker to execute arbitrary code due to an out-of-bound write. Note that this bug is only exploitable in cases where Hermes is used to execute untrusted...

Huawei HarmonyOS 输入验证错误漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. HarmonyOS prior to version 2.0 suffers from an integer overflow vulnerability that arises from a networked system or product that does not properly compute o...

Debian Security Advisory DSA 2810-1 (ruby1.9.1 - heap overflow)

Charlie Somerville discovered that Ruby incorrectly handled floating point number conversion. If an application using Ruby accepted untrusted input strings and converted them to floating point numbers, an attacker able to provide such input could cause the application to crash or, possibly, execu...

Ubuntu Update for ruby1.8 USN-2035-1

Check for the Version of ruby1.8 OpenVAS Vulnerability Test $Id: gbubuntuUSN20351.nasl 8672 2018-02-05 16:39:18Z teissa $ Ubuntu Update for ruby1.8 USN-2035-1 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free softwar...

[USN-2035-1] Ruby vulnerabilities

========================================================================== Ubuntu Security Notice USN-2035-1 November 27, 2013 ruby1.8, ruby1.9.1 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its...

Sun Solaris多个libc库数字转换函数缓冲区溢出漏洞

BUGTRAQ ID: 40309 Solaris是一款由Sun开发和维护的商业UNIX操作系统。 Solaris操作系统的libc库中所使用的econvert、ecvt、fcvt和gcvt等函数在执行数字转换操作时存在缓冲区溢出漏洞，攻击者提交恶意请求就可以触发这些溢出，导致执行任意指令。 Sun Solaris 10.0x86 Sun Solaris 10.0 厂商补丁： Sun --- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://sunsolve.sun.com/security - --- 1. Sun Solar...

mozilla -- multiple vulnerabilities

Mozilla Project reports: MFSA 2010-07 Fixes for potentially exploitable crashes ported to the legacy branch MFSA 2010-06 Scriptable plugin execution in SeaMonkey mail MFSA 2009-68 NTLM reflection vulnerability MFSA 2009-62 Download filename spoofing with RTL override MFSA 2009-59 Heap buffer...

Heap buffer overflow in string to number conversion

Passing very long strings through the string to number conversion using JavaScript in Opera may result in heap buffer overflows. This also affects the dtoa routine, and was reported in CVE-2009-0689. In most cases Opera will just freeze or terminate, but in some cases this could lead to a crash...