Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-8776

Malware in sbrugna...

5.5CVSS6.5AI score0.01917EPSS
Exploits0References20
Veracode
Veracode
added 2019/01/15 9:16 a.m.29 views

Arbitrary Code Execution

firefox and thunderbird is vulnerable to arbitrary code execution attacks. The vulnerability exists as the nameparse function in evdns.c in libevent before 2.1.6-beta allows remote attackers to have unspecified impact via vectors involving the labellen variable, which triggers an out-of-bounds...

9.8CVSS9.7AI score0.06681EPSS
Exploits3References18Affected Software2
RedhatCVE
RedhatCVE
added 2017/08/21 1:19 p.m.26 views

CVE-2017-12451

The bfdxcoffreadarhdr function in bfd/coff-rs6000.c and bfd/coff64-rs6000.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds stack read via a crafted COFF image file...

7.8CVSS5.6AI score0.01493EPSS
Exploits0References1
NVD
NVD
added 2017/08/04 3:29 p.m.20 views

CVE-2017-12451

The bfdxcoffreadarhdr function in bfd/coff-rs6000.c and bfd/coff64-rs6000.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds stack read via a crafted COFF image file...

7.8CVSS7.3AI score0.01493EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2017/08/04 3:29 p.m.34 views

CVE-2017-12451

The bfdxcoffreadarhdr function in bfd/coff-rs6000.c and bfd/coff64-rs6000.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds stack read via a crafted COFF image file...

7.8CVSS6.9AI score0.01493EPSS
Exploits0References3
Cvelist
Cvelist
added 2017/08/04 3:0 p.m.29 views

CVE-2017-12451

The bfdxcoffreadarhdr function in bfd/coff-rs6000.c and bfd/coff64-rs6000.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds stack read via a crafted COFF image file...

6AI score0.01493EPSS
Exploits0References1
CVE
CVE
added 2017/08/04 3:0 p.m.115 views

CVE-2017-12451

CVE-2017-12451 affects the GNU Binutils libbfd prior to 2.30. The vulnerability is in the _bfd_xcoff_read_ar_hdr function (files coff-rs6000.c and coff64-rs6000.c) and can cause an out-of-bounds stack read when processing a crafted COFF image. This could enable a remote attacker to read memory vi...

7.8CVSS5.8AI score0.01493EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2017/03/15 3:59 p.m.18 views

Out-of-bounds

The nameparse function in evdns.c in libevent before 2.1.6-beta allows remote attackers to have unspecified impact via vectors involving the labellen variable, which triggers an out-of-bounds stack read...

7.5CVSS7.3AI score0.06681EPSS
Exploits1References12Affected Software2
NVD
NVD
added 2017/03/15 3:59 p.m.23 views

CVE-2016-10195

The nameparse function in evdns.c in libevent before 2.1.6-beta allows remote attackers to have unspecified impact via vectors involving the labellen variable, which triggers an out-of-bounds stack read...

9.8CVSS9.6AI score0.06681EPSS
Exploits1References12
OSV
OSV
added 2017/03/15 3:59 p.m.36 views

CVE-2016-10195

The nameparse function in evdns.c in libevent before 2.1.6-beta allows remote attackers to have unspecified impact via vectors involving the labellen variable, which triggers an out-of-bounds stack read...

9.8CVSS7.1AI score
Exploits0References12
Cvelist
Cvelist
added 2017/03/15 3:0 p.m.23 views

CVE-2016-10195

The nameparse function in evdns.c in libevent before 2.1.6-beta allows remote attackers to have unspecified impact via vectors involving the labellen variable, which triggers an out-of-bounds stack read...

9.7AI score0.06681EPSS
Exploits1References12
AlpineLinux
AlpineLinux
added 2017/03/15 3:0 p.m.61 views

CVE-2016-10195

The nameparse function in evdns.c in libevent before 2.1.6-beta allows remote attackers to have unspecified impact via vectors involving the labellen variable, which triggers an out-of-bounds stack read...

9.8CVSS9.9AI score0.06681EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2016/12/31 12:0 a.m.37 views

CVE-2016-10195

The nameparse function in evdns.c in libevent before 2.1.6-beta allows remote attackers to have unspecified impact via vectors involving the labellen variable, which triggers an out-of-bounds stack read...

9.8CVSS7.2AI score0.06681EPSS
Exploits1References6
NVD
NVD
added 2016/09/20 2:15 p.m.18 views

CVE-2015-8920

The arreadheader function in archivereadsupportformatar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service out-of-bounds stack read via a crafted ar file...

5.5CVSS5.9AI score0.01917EPSS
Exploits0References12
Cvelist
Cvelist
added 2016/09/20 2:0 p.m.27 views

CVE-2015-8920

The arreadheader function in archivereadsupportformatar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service out-of-bounds stack read via a crafted ar file...

6AI score0.01917EPSS
Exploits0References12
CVE
CVE
added 2016/09/20 2:0 p.m.119 views

CVE-2015-8920

CVE-2015-8920 affects the libarchive project, specifically the _ar_read_header function in archive_read_support_format_ar.c. A crafted ar file can trigger an out-of-bounds stack read, enabling a denial of service. Public references consistently describe this as a vulnerability in libarchive versi...

5.5CVSS5.8AI score0.01917EPSS
Exploits0References12Affected Software3
Debian CVE
Debian CVE
added 2016/09/20 2:0 p.m.32 views

CVE-2015-8920

The arreadheader function in archivereadsupportformatar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service out-of-bounds stack read via a crafted ar file...

5.5CVSS6.3AI score0.01917EPSS
Exploits0
Mageia
Mageia
added 2016/07/26 10:11 p.m.28 views

Updated libidn packages fix security vulnerability

Out-of-bounds stack read in libidn before 1.33 in idnatoascii4i CVE-2016-6261. Out-of-bounds-read in libidn when reading one zero byte as input CVE-2015-8948, CVE-2016-6262. In libidn before 1.33, stringpreputf8nfkcnormalize would crash when presented with invalid UTF-8 CVE-2016-6263...

7.5CVSS7.7AI score0.06721EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2016/07/20 12:0 a.m.23 views

libidn -- multiple vulnerabilities

Simon Josefsson reports: libidn: Fix out-of-bounds stack read in idnatoascii4i. idn: Solve out-of-bounds-read when reading one zero byte as input. Also replaced fgets with getline. libidn: stringpreputf8nfkcnormalize reject invalid UTF-8. It was always documented to only accept UTF-8 data, but no...

7.5CVSS7.6AI score0.06721EPSS
Exploits0References2
Rows per page
Query Builder