Lucene search
+L

185 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:42 a.m.6 views

SUSE CVE-2017-11577

FontForge 20161012 is vulnerable to a buffer over-read in getsid parsettf.c resulting in DoS or code execution via a crafted otf file...

6.3CVSS8.9AI score0.01224EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2022/01/21 11:20 p.m.23 views

Out-of-bounds Read in Onionshare

Between September 26, 2021 and October 8, 2021, Radically Open Security conducted a penetration test of OnionShare 2.4, funded by the Open Technology Fund's Red Team lab. This is an issue from that penetration test. - Vulnerability ID: OTF-014 - Vulnerability type: Out-of-bounds Read - Threat...

7.5CVSS0.3AI score0.00787EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2022/01/21 11:20 p.m.23 views

Denial of Service in Onionshare

Between September 26, 2021 and October 8, 2021, Radically Open Security conducted a penetration test of OnionShare 2.4, funded by the Open Technology Fund's Red Team lab. - Vulnerability ID: OTF-012 - Vulnerability type: Denial of Service - Threat level: Moderate Description: The receive mode...

7.5CVSS7.2AI score0.01374EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2022/01/21 11:20 p.m.18 views

GHSA-CH22-X2V3-V6VQ OTF-001: Improper Input Sanitation: The path parameter of the requested URL is not sanitized before being passed to the QT frontend

Between September 26, 2021 and October 8, 2021, Radically Open Security conducted a penetration test of OnionShare 2.4, funded by the Open Technology Fund's Red Team lab. This is an issue from that penetration test. - Vulnerability ID: OTF-001 - Vulnerability type: Improper Input Sanitization -...

8.7CVSS7.1AI score0.00789EPSS
Exploits1References5
OSV
OSV
added 2022/01/21 11:20 p.m.23 views

GHSA-JGM9-XPFJ-4FQ6 Path traversal in Onionshare

Between September 26, 2021 and October 8, 2021, Radically Open Security conducted a penetration test of OnionShare 2.4, funded by the Open Technology Fund's Red Team lab. This is an issue from that penetration test. - Vulnerability ID: OTF-013 - Vulnerability type: Improper Hardening - Threat...

6.3CVSS6.2AI score0.01129EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2022/01/21 11:20 p.m.31 views

Improper Access Control in Onionshare

Between September 26, 2021 and October 8, 2021, Radically Open Security conducted a penetration test of OnionShare 2.4, funded by the Open Technology Fund's Red Team lab. This is an issue from that penetration test. - Vulnerability ID: OTF-009 - Vulnerability type: Improper Access Control - Threa...

5.3CVSS1.1AI score0.00849EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2022/01/18 10:20 p.m.41 views

CVE-2022-21694 OTF-006: Broken Website Hardening Control: The CSP can be turned on or off but not configured for the specific needs of the website

OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. The website mode of the onionshare allows to use a hardened CSP, which will block any scripts and external resources. It is not possible to configure...

3.7CVSS5.5AI score0.01248EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2021/05/20 12:0 a.m.65 views

Apple macOS libFontParser OTF Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the GetFDIndex...

4.3CVSS3.4AI score0.01421EPSS
Exploits0References1
0day.today
0day.today
added 2019/11/12 12:0 a.m.130 views

Adobe Acrobat Reader DC for Windows - Use of Uninitialized Pointer due to Malformed OTF Font

We have observed the following access violation exception in the latest version of Adobe Acrobat Reader DC for Windows, when opening a malformed PDF file: --- cut --- 5708.4564: Access violation - code c0000005 first chance First chance exceptions are reported before any exception handling. This...

9.8CVSS9.6AI score0.22886EPSS
Exploits1
exploitpack
exploitpack
added 2019/11/11 12:0 a.m.31 views

Adobe Acrobat Reader DC for Windows - Use of Uninitialized Pointer due to Malformed OTF Font (CFF Table)

Adobe Acrobat Reader DC for Windows - Use of Uninitialized Pointer due to Malformed OTF Font CFF Table We have observed the following access violation exception in the latest version of Adobe Acrobat Reader DC for Windows, when opening a malformed PDF file: --- cut --- 5708.4564: Access violation...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/11 12:0 a.m.285 views

Adobe Acrobat Reader DC for Windows - Use of Uninitialized Pointer due to Malformed OTF Font (CFF Table)

We have observed the following access violation exception in the latest version of Adobe Acrobat Reader DC for Windows, when opening a malformed PDF file: --- cut --- 5708.4564: Access violation - code c0000005 first chance First chance exceptions are reported before any exception handling. This...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2019/02/18 12:0 a.m.14 views

Oracle Java Runtime Environment - Heap Out-of-Bounds Read During OTF Font Rendering in glyph_CloseContour

Oracle Java Runtime Environment - Heap Out-of-Bounds Read During OTF Font Rendering in glyphCloseContour A heap-based out-of-bounds read was observed in Oracle Java Runtime Environment version 8u202 latest at the time of this writing while fuzz-testing the processing of OpenType fonts. It manifes...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2019/02/18 12:0 a.m.53 views

Oracle Java Runtime Environment - Heap Out-of-Bounds Read During OTF Font Rendering in glyph_CloseContour

A heap-based out-of-bounds read was observed in Oracle Java Runtime Environment version 8u202 latest at the time of this writing while fuzz-testing the processing of OpenType fonts. It manifests itself in the form of the following crash with AFL's libdislocator: --- cut --- gdb$ c Continuing...

7.4AI score
Exploits0
Veracode
Veracode
added 2018/05/28 10:12 a.m.20 views

Remote Code Execution (RCE)

libfontforge.so is vulnerable to remote code execution RCE attacks. A malicious user can pass an otf file to the PSCharStringToSplines function in psread.c to cause a buffer overflow that can crash the application or cause arbitrary code execution...

7.8CVSS8.1AI score0.01339EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2018/05/28 9:58 a.m.23 views

Remote Code Execution (RCE)

libfontforge.so is vulnerable to remote code execution RCE attacks. A malicious user can pass an otf file to the umodenc function in parsettf.c to cause a buffer overflow and crash the application or cause arbitrary code to be executed...

7.8CVSS8.2AI score0.01276EPSS
Exploits0References1Affected Software1
Veracode
Veracode
added 2018/05/28 8:32 a.m.17 views

Remote Code Execution (RCE)

libfontforge.so is vulnerable to remote code execution RCE attacks. A malicious user can pass a otf file to the ValidatePostScriptFontName function in parsettf.c file to cause a buffer overflow and crash the application or cause arbitrary code to be executed...

7.8CVSS8.2AI score0.01208EPSS
Exploits0References1Affected Software1
Veracode
Veracode
added 2018/04/13 4:39 a.m.18 views

Denial Of Service (DoS)

libfontforge.so is vulnerable to denial of service DoS through stack-based under flow attacks. The vulnerability exists as it failed to check if the weight vector in the readcfftopdict function of parsettf.c is positive, allowing a malicious otf file to cause a denial of service DoS through...

5.5CVSS5.8AI score0.00707EPSS
Exploits0References5Affected Software1
Source Incite
Source Incite
added 2018/01/23 12:0 a.m.23 views

SRC-2018-0008 : Adobe Digital Editions ePub otf Font Parsing TableRecord offset Out-of-Bounds Read Information Disclosure Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Adobe Digital Editions. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specif...

7.5CVSS7.4AI score0.03973EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2017/08/28 12:0 a.m.24 views

Debian DLA-1065-1 : fontforge security update

FontForge is vulnerable to heap-based buffer over-read in several functions, resulting in DoS or code execution via a crafted otf file : For Debian 7 'Wheezy', these problems have been fixed in version 0.0.20120101+git-2+deb7u1. We recommend that you upgrade your fontforge packages. NOTE: Tenable...

7.8CVSS7.4AI score0.0144EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2017/07/26 2:51 p.m.17 views

CVE-2017-11577

FontForge 20161012 is vulnerable to a buffer over-read in getsid parsettf.c resulting in DoS or code execution via a crafted otf file...

7.8CVSS4.9AI score0.01224EPSS
Exploits0References1
Rows per page
Query Builder