CVE-2019-11412

An issue was discovered in Artifex MuJS 1.0.5. jscompile.c can cause a denial of service invalid stack-frame jump because it lacks an ENDTRY opcode call...

CVE-2019-11412

An issue was discovered in Artifex MuJS 1.0.5. jscompile.c can cause a denial of service invalid stack-frame jump because it lacks an ENDTRY opcode call...

sistemas.anac.gov.br XSS vulnerability

Open Bug Bounty ID: OBB-713200 Description| Value ---|--- Affected Website:| sistemas.anac.gov.br Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:|...

CVE-2018-7115

HPE Intelligent Management Center IMC prior to IMC PLAT 7.3 E0605P06 is vulnerable to a remote buffer overflow in dbman.exe opcode 10001 on Windows. This problem is resolved in IMC PLAT 7.3 E0605P06 or subsequent versions...

Buffer overflow

HPE Intelligent Management Center IMC prior to IMC PLAT 7.3 E0605P06 is vulnerable to a remote buffer overflow in dbman.exe opcode 10001 on Windows. This problem is resolved in IMC PLAT 7.3 E0605P06 or subsequent versions...

CVE-2018-7116

HPE Intelligent Management Center IMC prior to IMC PLAT 7.3 E0605P06 is vulnerable to a remote denial of service via dbman Opcode 10003 'Filename'. This problem is resolved in IMC PLAT 7.3 E0605P06 or subsequent versions...

CVE-2018-7116

CVE-2018-7116 affects HPE Intelligent Management Center (iMC) PLAT prior to 7.3 E0605P06. The vulnerability lies in the dbman process, where improper validation of the length of user-supplied data in a Filename-related request can be exploited remotely to cause a denial of service. Affected versi...

HPE Intelligent Management Center Buffer Overflow Vulnerability (CNVD-2019-00114)

HPE Intelligent Management Center iMC PLAT is a suite of network intelligent management center solutions from Hewlett Packard Enterprise HPE. The solution provides network-wide visibility and enables comprehensive management of resources, services and users. A security vulnerability exists in Dbm...

GHSA-VQGP-4JGJ-5J64 Py-EVM is vulnerable to arbitrary bytecode injection

Py-EVM v0.2.0-alpha.33 allows attackers to make a vm.executebytecode call that triggers computation.stack.values with '"stack": 100, 100, 0' where b'\x' was expected, resulting in an execution failure because of an invalid opcode. This is reportedly related to "smart contracts can be executed...

CVE-2018-18920

Py-EVM v0.2.0-alpha.33 allows attackers to make a vm.executebytecode call that triggers computation.stack.values with '"stack": 100, 100, 0' where b'\x' was expected, resulting in an execution failure because of an invalid opcode. This is reportedly related to "smart contracts can be executed...

PYSEC-2018-96

Py-EVM v0.2.0-alpha.33 allows attackers to make a vm.executebytecode call that triggers computation.stack.values with '"stack": 100, 100, 0' where b'\x' was expected, resulting in an execution failure because of an invalid opcode. This is reportedly related to "smart contracts can be executed...

PYSEC-2018-96

Py-EVM v0.2.0-alpha.33 allows attackers to make a vm.executebytecode call that triggers computation.stack.values with '"stack": 100, 100, 0' where b'\x' was expected, resulting in an execution failure because of an invalid opcode. This is reportedly related to "smart contracts can be executed...

CVE-2018-18920

Py-EVM v0.2.0-alpha.33 allows attackers to make a vm.executebytecode call that triggers computation.stack.values with '"stack": 100, 100, 0' where b'\x' was expected, resulting in an execution failure because of an invalid opcode. This is reportedly related to "smart contracts can be executed...

PYSEC-2018-155

Py-EVM v0.2.0-alpha.33 allows attackers to make a vm.executebytecode call that triggers computation.stack.values with '"stack": 100, 100, 0' where b'\x' was expected, resulting in an execution failure because of an invalid opcode. This is reportedly related to "smart contracts can be executed...

PYSEC-2018-155

Py-EVM v0.2.0-alpha.33 allows attackers to make a vm.executebytecode call that triggers computation.stack.values with '"stack": 100, 100, 0' where b'\x' was expected, resulting in an execution failure because of an invalid opcode. This is reportedly related to "smart contracts can be executed...

CVE-2018-18920

CVE-2018-18920 concerns Py-EVM v0.2.0-alpha.33, where a crafted vm.execute_bytecode call can manipulate computation._stack.values (e.g., "stack": [100, 100, 0]) in a way that expects a certain byte (b'\x') and results in an invalid opcode, causing execution failure. The description ties this to a...

Sandsifter - The X86 Processor Fuzzer

The sandsifter audits x86 processors for hidden instructions and hardware bugs, by systematically generating machine code to search through a processor's instruction set, and monitoring execution for anomalies. Sandsifter has uncovered secret processor instructions from every major vendor;...

Epee Levin Packet Deserialization Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the Levin deserialization functionality of the epee library. A specially crafted network packet can cause a logic flaw, resulting in code execution. An attacker can send a packet to trigger this vulnerability. Tested Versions Monero...

(0Day) Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10010 Arbitrary File Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center.Authentication is not required to exploit this vulnerability. The specific flaw exists within the dbman service, which listens on TCP port...

Schneider Electric InduSoft Web Studio / InTouch Machine Edition Opcode 50 mbstowcs() Stack Overflow

Binary data scadaschneiderelectriciwsitmeopcode50stackoverflow.nbin...