Lucene search
K

36 matches found

ATTACKERKB
ATTACKERKB
added 2023/04/24 1:15 p.m.3 views

CVE-2023-29582

yasm 1.3.0.55.g101bc was discovered to contain a stack overflow via the function parseexpr1 at /nasm/nasm-parse.c. Note: This has been disputed by third parties who argue this is a bug and not a security issue because yasm is a standalone program not designed to run untrusted code...

5.5CVSS6AI score0.00345EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/04/24 12:0 a.m.8 views

yasm 缓冲区错误漏洞

yasm is a completely rewritten Netwide assembler from the yasm open source. A buffer error vulnerability exists in yasm version 1.3.0.55.g101bc, which stems from the discovery of a contained stack overflow vulnerability through the parseexpr1 function of /nasm/nasm-parse.c...

5.5CVSS5.9AI score0.00345EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:49 a.m.5 views

SUSE CVE-2017-6309

An issue was discovered in tnef before 1.4.13. Two type confusions have been identified in the parsefile function. These might lead to invalid read and write operations, controlled by an attacker...

7.8CVSS7.1AI score0.01411EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:29 a.m.4 views

SUSE CVE-2018-8002

In PoDoFo 0.9.5, there exists an infinite loop vulnerability in PdfParserObject::ParseFileComplete in PdfParserObject.cpp which may result in stack overflow. Remote attackers could leverage this vulnerability to cause a denial-of-service or possibly unspecified other impact via a crafted pdf file...

8.8CVSS9.3AI score0.08458EPSS
Exploits5References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:5 a.m.3 views

SUSE CVE-2019-19648

In the machoparsefile functionality in macho/macho.c of YARA 3.11.0, commandsize may be inconsistent with the real size. A specially crafted MachO file can cause an out-of-bounds memory access, resulting in Denial of Service application crash or potential code execution...

7.8CVSS7.9AI score0.01587EPSS
Exploits1References3
0day.today
0day.today
added 2021/11/08 12:0 a.m.356 views

zlog 1.2.15 - Buffer Overflow Exploit

Exploit Title: zlog 1.2.15 - Buffer Overflow Exploit Author: LIWEI Vendor Homepage: https://github.com/HardySimpson/zlog Software Link: https://github.com/HardySimpson/zlog Version: v1.2.15 Tested on: ubuntu 18.04.2 1.- compile the zlogv1.2.15 code to a library. 2.- Use the "zloginit" API to pars...

7.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2021/05/18 1:25 p.m.2 views

libarchive: Out-of-bounds read in parse_file_info

An out-of-bounds read flaw exists in parsefileinfo in archivereadsupportformatiso9660.c in libarchive 3.3.2 when extracting a specially crafted iso9660 iso file, related to archivereadformatiso9660readheader...

6.5CVSS6.6AI score0.02147EPSS
Exploits0References4
OSV
OSV
added 2019/12/09 1:15 a.m.3 views

DEBIAN-CVE-2019-19648

In the machoparsefile functionality in macho/macho.c of YARA 3.11.0, commandsize may be inconsistent with the real size. A specially crafted MachO file can cause an out-of-bounds memory access, resulting in Denial of Service application crash or potential code execution...

7.8CVSS7.1AI score0.01587EPSS
Exploits1References1
OSV
OSV
added 2019/02/22 12:0 a.m.3 views

UBUNTU-CVE-2019-9021

An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. A heap-based buffer over-read in PHAR reading functions in the PHAR extension may allow an attacker to read allocated or unallocated memory past the actual data when trying to parse the...

9.8CVSS6.8AI score0.10059EPSS
Exploits1References4
OSV
OSV
added 2018/05/07 2:29 a.m.3 views

DEBIAN-CVE-2018-10771

Stack-based buffer overflow in the getkey function in parse.c in abcm2ps through 8.13.20 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact...

9.8CVSS7.8AI score0.03073EPSS
Exploits1References1
OSV
OSV
added 2018/03/09 7:29 p.m.5 views

UBUNTU-CVE-2018-8002

In PoDoFo 0.9.5, there exists an infinite loop vulnerability in PdfParserObject::ParseFileComplete in PdfParserObject.cpp which may result in stack overflow. Remote attackers could leverage this vulnerability to cause a denial-of-service or possibly unspecified other impact via a crafted pdf file...

8.8CVSS7.4AI score0.08458EPSS
Exploits5References4
OSV
OSV
added 2017/09/17 6:29 p.m.6 views

ALPINE-CVE-2017-14501

An out-of-bounds read flaw exists in parsefileinfo in archivereadsupportformatiso9660.c in libarchive 3.3.2 when extracting a specially crafted iso9660 iso file, related to archivereadformatiso9660readheader...

6.5CVSS6.8AI score0.02147EPSS
Exploits0References1
OSV
OSV
added 2017/09/17 6:29 p.m.4 views

DEBIAN-CVE-2017-14501

An out-of-bounds read flaw exists in parsefileinfo in archivereadsupportformatiso9660.c in libarchive 3.3.2 when extracting a specially crafted iso9660 iso file, related to archivereadformatiso9660readheader...

6.5CVSS6.8AI score0.02147EPSS
Exploits0References1
OSV
OSV
added 2017/09/17 12:0 a.m.2 views

UBUNTU-CVE-2017-14501

An out-of-bounds read flaw exists in parsefileinfo in archivereadsupportformatiso9660.c in libarchive 3.3.2 when extracting a specially crafted iso9660 iso file, related to archivereadformatiso9660readheader...

6.5CVSS6.7AI score0.02147EPSS
Exploits0References3
OSV
OSV
added 2017/02/24 4:59 a.m.3 views

UBUNTU-CVE-2017-6309

An issue was discovered in tnef before 1.4.13. Two type confusions have been identified in the parsefile function. These might lead to invalid read and write operations, controlled by an attacker...

7.8CVSS7.1AI score0.01411EPSS
Exploits0References5
CNVD
CNVD
added 2017/02/24 12:0 a.m.7 views

tnef 'parse_file()' function denial of service vulnerability

tnef is a set of programs for decompressing MIME attachments. A security vulnerability in the tnef 'parsefile' function allows an attacker to exploit the vulnerability to submit a special file for a denial-of-service attack that could crash the application...

7.8CVSS6.8AI score0.01411EPSS
Exploits0References1
Rows per page
Query Builder