Lucene search
K

229 matches found

0day.today
0day.today
added 2016/11/01 12:0 a.m.96 views

NVIDIA Driver - UVMLiteController ioctl Handling Unchecked Input/Output Lengths Privilege Escalation

Exploit for windows platform in category local exploits / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=880 The \.\UVMLiteController device is created by the nvlddmkm.sys driver, and can be opened by any user. The driver handles various control codes for this device, but there...

7.2CVSS7.4AI score0.01465EPSS
Exploits2
OSV
OSV
added 2016/10/28 2:59 p.m.2 views

DEBIAN-CVE-2016-8339

A buffer overflow in Redis 3.2.x prior to 3.2.4 causes arbitrary code execution when a crafted command is sent. An out of bounds write vulnerability exists in the handling of the client-output-buffer-limit option during the CONFIG SET command for the Redis data structure store. A crafted CONFIG S...

9.8CVSS8.6AI score0.14834EPSS
Exploits2References1
UbuntuCve
UbuntuCve
added 2016/10/28 2:59 p.m.28 views

CVE-2016-8339

A buffer overflow in Redis 3.2.x prior to 3.2.4 causes arbitrary code execution when a crafted command is sent. An out of bounds write vulnerability exists in the handling of the client-output-buffer-limit option during the CONFIG SET command for the Redis data structure store. A crafted CONFIG S...

9.8CVSS7.1AI score0.14834EPSS
Exploits2References2
Talos
Talos
added 2016/09/30 12:0 a.m.467 views

Redis CONFIG SET client-output-buffer-limit command Code Execution Vulnerability

Summary An out of bounds write vulnerability exists in the handling of the client-output-buffer-limit option during the CONFIG SET command for the Redis data structure store. A crafted CONFIG SET command can lead to an out of bounds write potentially resulting in code execution. Tested Versions...

9.8CVSS0.3AI score0.14834EPSS
Exploits2
OSV
OSV
added 2016/09/25 10:59 a.m.5 views

CVE-2016-4711

CCrypt in corecrypto in CommonCrypto in Apple iOS before 10 and OS X before 10.12 allows attackers to discover cleartext information by leveraging a function call that specifies the same buffer for input and output...

7.5CVSS7.5AI score0.01608EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2015/07/27 1:31 p.m.7 views

qemu: ide: atapi: heap overflow during I/O buffer memory access

A heap buffer overflow flaw was found in the way QEMU's IDE subsystem handled I/O buffer access while processing certain ATAPI commands. A privileged guest user in a guest with the CDROM drive enabled could potentially use this flaw to execute arbitrary code on the host with the privileges of the...

7.2CVSS7.9AI score0.0063EPSS
Exploits0References4
CNVD
CNVD
added 2015/07/07 12:0 a.m.2 views

HAProxy Information Disclosure Vulnerability

HAProxy is an open source TCP/HTTP load balancing server . The server provides 4-layer , 7-layer proxy , and can support tens of thousands of level of connections with high efficiency , stability and other characteristics . A security vulnerability exists in HAProxy's 'bufferslowrealign' function...

5CVSS6.8AI score0.04274EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2014/09/20 10:55 a.m.31 views

CVE-2014-6431

Buffer overflow in the SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 allows remote attackers to cause a denial of service application crash via a crafted file that triggers writes of uncompressed bytes...

5CVSS7.2AI score0.03409EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2014/09/20 10:0 a.m.19 views

CVE-2014-6431

Buffer overflow in the SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 allows remote attackers to cause a denial of service application crash via a crafted file that triggers writes of uncompressed bytes...

5CVSS5.5AI score0.03409EPSS
Exploits0
Rows per page
Query Builder