Lucene search
K

53 matches found

Prion
Prion
added 2019/10/12 8:15 p.m.20 views

Null pointer dereference

Hydra through 0.1.8 has a NULL pointer dereference and daemon crash when processing POST requests that lack a Content-Length header. read.c, request.c, and util.c contribute to this. The processheaderend function calls boaatoi, which ultimately calls atoi on a NULL pointer...

5CVSS7.5AI score0.01704EPSS
Exploits1References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/05/28 12:0 a.m.23 views

openSUSE Security Update : transfig (openSUSE-2019-1455)

This update for transfig fixes the following issues : Security issue fixed : - CVE-2018-16140: Fixed a buffer underwrite vulnerability in getline in read.c, which allowed an attacker to write prior to the beginning of the buffer via specially crafted .fig file bsc1106531 This update was imported...

7.8CVSS6.4AI score0.01381EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/08/30 1:0 a.m.18 views

CVE-2018-16140

A buffer underwrite vulnerability in getline read.c in fig2dev 3.2.7a allows an attacker to write prior to the beginning of the buffer via a crafted .fig file...

6AI score0.01381EPSS
Exploits0References3
CVE
CVE
added 2018/08/30 1:0 a.m.146 views

CVE-2018-16140

CVE-2018-16140 : A buffer underwrite in get_line() (read.c) of fig2dev 3.2.7a allows writing before the start of the target buffer via a crafted .fig file. The vulnerability is triggered by parsing a FIG file and results in memory corruption (no remediation details provided in the supplied docume...

7.8CVSS5.9AI score0.01381EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2018/08/30 12:0 a.m.26 views

fig2dev buffer overflow vulnerability

fig2dev is used to convert .fig files to various graphics languages and formats. A buffer underflow vulnerability exists in getline in read.c in fig2dev 3.2.7a. An attacker could exploit this vulnerability by writing before the buffer starts via a specially crafted .fig file...

6.8CVSS3.7AI score0.01381EPSS
Exploits0
OSV
OSV
added 2018/08/29 12:0 a.m.6 views

UBUNTU-CVE-2018-16140

A buffer underwrite vulnerability in getline read.c in fig2dev 3.2.7a allows an attacker to write prior to the beginning of the buffer via a crafted .fig file...

7.8CVSS6.8AI score0.01381EPSS
Exploits0References4
Veracode
Veracode
added 2018/08/01 2:5 a.m.21 views

Denial Of Service (DoS)

libarchive.so is vulnerable to denial of service DoS attacks. A malicious user can pass a cab file to the readarchive function in read.c to cause a NULL pointer dereference that can crash the application...

7.5CVSS7.1AI score0.04297EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2018/07/06 12:0 a.m.6 views

libming denial of service vulnerability (CNVD-2018-12759)

libming is a Flash SWF output library written in C for use in systems developed in PHP, Perl, etc. It can be used to output Flash SWF files to the system. A security vulnerability exists in the 'readBytes' function of the util/read.c file in libming version 0.4.8, which originates from a program...

6.5CVSS6.4AI score0.01456EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2018/05/30 1:0 p.m.35 views

CVE-2018-11432

The mobiparsemobiheader function in read.c in Libmobi 0.3 allows remote attackers to cause information disclosure heap-based buffer over-read via a crafted mobi file...

6.5CVSS6.3AI score0.01434EPSS
Exploits1
Cvelist
Cvelist
added 2017/11/20 6:0 p.m.41 views

CVE-2017-16899

An array index error in the fig2dev program in Xfig 3.2.6a allows remote attackers to cause a denial-of-service attack or information disclosure with a maliciously crafted Fig format file, related to a negative font value in dev/gentikz.c, and the readtextobject functions in read.c and read13.c...

6.6AI score0.0135EPSS
Exploits0References1
OSV
OSV
added 2017/02/17 2:59 a.m.3 views

UBUNTU-CVE-2016-9828

The dumpBuffer function in read.c in the listswf tool in libming 0.4.7 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted SWF file...

5.5CVSS6.8AI score0.01949EPSS
Exploits1References5
CVE
CVE
added 2017/02/16 6:0 p.m.72 views

CVE-2016-9828

CVE-2016-9828 affects the libming project (version 0.4.7) via the listswf tool. The vulnerability is in the dumpBuffer function (read.c) and allows a crafted SWF file to trigger a denial of service through a NULL pointer dereference. The provided connected documents confirm the affected component...

5.5CVSS5.7AI score0.01949EPSS
Exploits1References4Affected Software1
CNVD
CNVD
added 2016/12/07 12:0 a.m.7 views

libming 'read.c' Denial of Service Vulnerability

libming is a Flash SWF output library. A denial of service vulnerability exists in 'read.c' in libming version 0.4.7, which can be exploited by an attacker to cause a denial of service...

5.5CVSS5.6AI score0.01949EPSS
Exploits1References1
Rows per page
Query Builder