Lucene search
K

553 matches found

ossfuzz
ossfuzz
added 2020/02/17 4:42 p.m.15 views

mysql-server:fuzz_real_query: Memcpy-param-overlap in read_ok_ex

Detailed Report: https://oss-fuzz.com/testcase?key=5111911572307968 Project: mysql-server Fuzzing Engine: libFuzzer Fuzz Target: fuzzrealquery Job Type: libfuzzerasanmysql-server Platform Id: linux Crash Type: Memcpy-param-overlap Crash Address: 0x7f0132daf848,0x999a189acc73fd41 and 0x62700000942...

6.8AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2020/02/13 9:49 p.m.14 views

arrow:parquet-arrow-fuzz: Negative-size-param in parquet::ColumnReaderImplBase<parquet::PhysicalType<

Project: https://github.com/apache/arrow.git Detailed Report: https://oss-fuzz.com/testcase?key=5761340172140544 Project: arrow Fuzzing Engine: libFuzzer Fuzz Target: parquet-arrow-fuzz Job Type: libfuzzerasanarrow Platform Id: linux Crash Type: Negative-size-param Crash Address: Crash State:...

6.8AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2020/02/10 6:34 p.m.19 views

mysql-server:fuzz_real_query: Memcpy-param-overlap in read_ok_ex

Detailed Report: https://oss-fuzz.com/testcase?key=6322724899389440 Project: mysql-server Fuzzing Engine: libFuzzer Fuzz Target: fuzzrealquery Job Type: libfuzzerasanmysql-server Platform Id: linux Crash Type: Memcpy-param-overlap Crash Address: 0x7ff545cea848,0x2037ff447d7aa51 and 0x625000059913...

6.8AI score
Exploits0Affected Software1
Kitploit
Kitploit
added 2020/02/08 9:0 p.m.114 views

FockCache - Minimalized Test Cache Poisoning

FockCache - Minimalized Test Cache Poisoning Detail For Cache Poisoning : https://portswigger.net/research/practical-web-cache-poisoning FockCache FockCache tries to make cache poisoning by trying X-Forwarded-Host and X-Forwarded-Scheme headers on web pages. After successful result, it gives you ...

7.3AI score
Exploits0References1
Prion
Prion
added 2020/01/29 6:15 p.m.12 views

Command injection

A Command Injection vulnerability exists in Zavio IP Cameras through 1.6.3 in the General.Time.NTP.Server parameter to the subC8C8 function of the binary /opt/cgi/view/param, which could let a remove malicious user execute arbitrary code...

7.5CVSS7.9AI score0.26582EPSS
Exploits6References4Affected Software2
ossfuzz
ossfuzz
added 2020/01/06 2:31 p.m.22 views

njs:njs_process_script_fuzzer: Memcpy-param-overlap in njs_chb_join_to

Project: http://hg.nginx.org/njs Detailed Report: https://oss-fuzz.com/testcase?key=5742835815153664 Project: njs Fuzzing Engine: libFuzzer Fuzz Target: njsprocessscriptfuzzer Job Type: libfuzzerasannjs Platform Id: linux Crash Type: Memcpy-param-overlap Crash Address: 0x62500008b700,0x62500008b8...

6.8AI score
Exploits0Affected Software1
UbuntuCve
UbuntuCve
added 2019/12/30 5:15 p.m.37 views

CVE-2019-17558

Apache Solr 5.0.0 to Apache Solr 8.3.1 are vulnerable to a Remote Code Execution through the VelocityResponseWriter. A Velocity template can be provided through Velocity templates in a configset velocity/ directory or as a parameter. A user defined configset could contain renderable, potentially...

7.5CVSS7AI score0.98567EPSS
Exploits12References5
Hacker One
Hacker One
added 2019/12/28 1:7 a.m.101 views

Stripo Inc: my.stripo.emai email verification bypassed and also create email templates

Summary: According to the Stripo.emai When the new user sign up Stripo.email allow to create email templates after the verification of the email of Your stripo account. Until your email get verified You are not able to create a email templates in your acc. User need to verified their email...

1.1AI score
Exploits0
ossfuzz
ossfuzz
added 2019/12/21 3:44 p.m.16 views

mysql-server:fuzz_real_query: Memcpy-param-overlap in cli_read_rows

Project: https://github.com/mysql/mysql-server.git Detailed Report: https://oss-fuzz.com/testcase?key=5672257833926656 Project: mysql-server Fuzzing Engine: libFuzzer Fuzz Target: fuzzrealquery Job Type: libfuzzerasanmysql-server Platform Id: linux Crash Type: Memcpy-param-overlap Crash Address:...

6.8AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2019/12/21 2:6 p.m.21 views

njs:njs_process_script_fuzzer: Memcpy-param-overlap in njs_chb_join_to

Project: http://hg.nginx.org/njs Detailed Report: https://oss-fuzz.com/testcase?key=5683698955714560 Project: njs Fuzzing Engine: libFuzzer Fuzz Target: njsprocessscriptfuzzer Job Type: libfuzzerasannjs Platform Id: linux Crash Type: Memcpy-param-overlap Crash Address: 0x625000075b00,0x625000075c...

6.8AI score
Exploits0Affected Software1
OSV
OSV
added 2019/11/19 3:15 p.m.2 views

UBUNTU-CVE-2016-1000006

hhvm before 3.12.11 has a use-after-free in the serializememoizeparam and ResourceBundle::construct functions...

9.8CVSS5.8AI score0.01568EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2019/10/25 7:21 p.m.33 views

CVE-2019-17546

tifgetimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image, related to a "Negative-size-param" condition...

8.8CVSS5.2AI score0.03356EPSS
Exploits0References3
ossfuzz
ossfuzz
added 2019/10/18 3:55 p.m.20 views

gdal:fgb_fuzzer: Negative-size-param in OGRSimpleCurve::setPoints

Project: https://github.com/OSGeo/gdal.git Detailed Report: https://oss-fuzz.com/testcase?key=5664944388833280 Project: gdal Fuzzing Engine: libFuzzer Fuzz Target: fgbfuzzer Job Type: libfuzzerasani386gdal Platform Id: linux Crash Type: Negative-size-param Crash Address: Crash State:...

6.8AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2019/10/17 5:47 a.m.19 views

mysql-server:fuzz_real_query: Memcpy-param-overlap in read_ok_ex

Project: https://github.com/mysql/mysql-server.git Detailed Report: https://oss-fuzz.com/testcase?key=5745581829390336 Project: mysql-server Fuzzing Engine: libFuzzer Fuzz Target: fuzzrealquery Job Type: libfuzzerasanmysql-server Platform Id: linux Crash Type: Memcpy-param-overlap Crash Address:...

6.8AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2019/10/14 3:49 a.m.18 views

imagemagick:encoder_heic_fuzzer: Memcpy-param-overlap in NAL_unit::set_data

Project: https://github.com/imagemagick/imagemagick.git Detailed Report: https://oss-fuzz.com/testcase?key=5698815994101760 Project: imagemagick Fuzzing Engine: libFuzzer Fuzz Target: encoderheicfuzzer Job Type: libfuzzerasani386imagemagick Platform Id: linux Crash Type: Memcpy-param-overlap Cras...

6.8AI score
Exploits0Affected Software1
OSV
OSV
added 2019/10/14 2:15 a.m.26 views

CVE-2019-17546

tifgetimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image, related to a "Negative-size-param" condition...

8.8CVSS8.9AI score
Exploits0References12
Prion
Prion
added 2019/10/14 2:15 a.m.28 views

Integer overflow

tifgetimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image, related to a "Negative-size-param" condition...

6.8CVSS8.5AI score0.03356EPSS
Exploits0References11Affected Software2
UbuntuCve
UbuntuCve
added 2019/10/14 2:15 a.m.26 views

CVE-2019-17546

tifgetimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image, related to a "Negative-size-param" condition...

8.8CVSS7AI score0.03356EPSS
Exploits0References4
Cvelist
Cvelist
added 2019/10/14 1:7 a.m.21 views

CVE-2019-17546

tifgetimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image, related to a "Negative-size-param" condition...

8.7AI score0.03356EPSS
Exploits0References11
ossfuzz
ossfuzz
added 2019/10/09 9:19 a.m.19 views

gdal:fgb_fuzzer: Negative-size-param in OGRSimpleCurve::setPoints

Project: https://github.com/OSGeo/gdal.git Detailed Report: https://oss-fuzz.com/testcase?key=5676931189571584 Project: gdal Fuzzing Engine: libFuzzer Fuzz Target: fgbfuzzer Job Type: libfuzzerasani386gdal Platform Id: linux Crash Type: Negative-size-param Crash Address: Crash State:...

6.8AI score
Exploits0Affected Software1
Rows per page
Query Builder