1085 matches found
Code injection
util.c in runV 1.0.0 for Docker mishandles a numeric username, which allows attackers to obtain root access by leveraging the presence of an initial numeric value on an /etc/passwd line, and then issuing a "docker exec" command with that value in the -u argument, a similar issue to CVE-2016-3697...
CVE-2018-9862
util.c in runV 1.0.0 for Docker mishandles a numeric username, which allows attackers to obtain root access by leveraging the presence of an initial numeric value on an /etc/passwd line, and then issuing a "docker exec" command with that value in the -u argument, a similar issue to CVE-2016-3697...
CVE-2018-9862
util.c in runV 1.0.0 for Docker mishandles a numeric username, which allows attackers to obtain root access by leveraging the presence of an initial numeric value on an /etc/passwd line, and then issuing a "docker exec" command with that value in the -u argument, a similar issue to CVE-2016-3697...
Vanilla: A user can comment in private discussions without having permission to access the discussion
Hello team, I have found a vulnerability which allows a user who does not have access to a discussion to comment on it and thus avoid the control applied. http://littleguy.vanillastaging.com/ Proof Of Concept ============= For this proof of concept I have used 3 users. User A creates a PRIVATE...
CVE-2017-17300
Huawei S12700 V200R008C00, V200R009C00, S5700 V200R007C00, V200R008C00, V200R009C00, S6700 V200R008C00, V200R009C00, S7700 V200R008C00, V200R009C00, S9700 V200R008C00, V200R009C00 have a numeric errors vulnerability. An unauthenticated, remote attacker may send specific TCP messages with keychain...
CVE-2017-17300
Huawei S12700 V200R008C00, V200R009C00, S5700 V200R007C00, V200R008C00, V200R009C00, S6700 V200R008C00, V200R009C00, S7700 V200R008C00, V200R009C00, S9700 V200R008C00, V200R009C00 have a numeric errors vulnerability. An unauthenticated, remote attacker may send specific TCP messages with keychain...
Input validation
Huawei S12700 V200R008C00, V200R009C00, S5700 V200R007C00, V200R008C00, V200R009C00, S6700 V200R008C00, V200R009C00, S7700 V200R008C00, V200R009C00, S9700 V200R008C00, V200R009C00 have a numeric errors vulnerability. An unauthenticated, remote attacker may send specific TCP messages with keychain...
CVE-2017-17300
The CVE-2017-17300 entry describes a numeric errors vulnerability affecting Huawei routing switches, including S12700, S5700, S6700, S7700, and S9700 series (V200R00xC00). An unauthenticated, remote attacker can send specially crafted TCP messages with the keychain authentication option; improper...
CVE-2017-17300
Huawei S12700 V200R008C00, V200R009C00, S5700 V200R007C00, V200R008C00, V200R009C00, S6700 V200R008C00, V200R009C00, S7700 V200R008C00, V200R009C00, S9700 V200R008C00, V200R009C00 have a numeric errors vulnerability. An unauthenticated, remote attacker may send specific TCP messages with keychain...
The vulnerability of the Flash Player software, caused by a full overflow of data, allows attackers to execute arbitrary code.
The vulnerability of the Flash Player software arises from a numerical overflow that occurs during the creation of raster images. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...
Numerical Calculation Error Vulnerability in Multiple Huawei Router Products
Huawei S12700 and others are intelligent routing switches from Huawei China. A numeric miscalculation vulnerability exists in several Huawei router products, which stems from the program failing to adequately validate messages. The vulnerability can be exploited to cause a reset of the affected...
Security Advisory - Numeric Errors Vulnerability in Some Huawei Routers
Some Huawei routers have a numeric errors vulnerability. An unauthenticated, remote attacker may send specific TCP messages with keychain authentication option to the affected products. Due to the improper validation of the messages, it will cause numeric errors when handling the messages...
The vulnerability of the ImagingResampleHorizontal function (libImaging/Resample.c) in the Pillow image processing library allows an attacker to compromise the confidentiality, integrity, and accessibility of data.
The vulnerability of the ImagingResampleHorizontal function libImaging/Resample.c in the Pillow image processing library is due to a numerical overflow issue. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of data by setting t...
UBUNTU-CVE-2017-16872
An issue was discovered in Teluu pjproject pjlib and pjlib-util in PJSIP before 2.7.1. Parsing the numeric header fields in a SIP message like cseq, ttl, port, etc. all had the potential to overflow, either causing unintended values to be captured or, if the values were subsequently converted bac...
CVE-2017-16872
An issue was discovered in Teluu pjproject pjlib and pjlib-util in PJSIP before 2.7.1. Parsing the numeric header fields in a SIP message like cseq, ttl, port, etc. all had the potential to overflow, either causing unintended values to be captured or, if the values were subsequently converted bac...
CVE-2017-16872
CVE-2017-16872 affects Teluu pjproject (pjlib and pjlib-util) in PJSIP before 2.7.1. The issue arises when parsing numeric SIP header fields (e.g., CSeq, ttl, port); values can overflow and may be captured incorrectly or cause a buffer overrun if converted back to strings, enabling a potential ex...
PT-2017-14609
Name of the Vulnerable Software and Affected Versions PJSIP versions prior to 2.7.1 Description An issue was discovered in the parsing of numeric header fields in a SIP message, such as cseq, ttl, and port. This could lead to a buffer overflow, causing unintended values to be captured or a buffer...
The vulnerability of the decode_digit function in the puny_decode.c library allows a hacker to trigger a service failure or exert other effects.
The vulnerability of the decodedigit function in the punydecode.c library is caused by a numerical overflow. Exploiting this vulnerability could allow an attacker to cause service interruptions or other adverse effects from a remote location...
The vulnerability of the media_server component of the Android operating system, which allows a hacker to trigger a service failure
The vulnerability of the mediaserver component in the Android operating system is caused by a numerical overflow condition. Exploiting this vulnerability allows an attacker to cause a service failure through a specially created application...
CVE-2017-5063
A numeric overflow in Skia in Google Chrome prior to 58.0.3029.81 for Linux, Windows, and Mac, and 58.0.3029.83 for Android, allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...