9 matches found
EUVD-2011-0235
Malware in sbrugna...
WordPress Core External Entity Injection (CVE-2021-29447)
An XXE vulnerability exists in WordPress Core. The vulnerability is due to insufficient validation of XML data when parsing RIFF WAV file metadata...
Fedora 28 : SDL (2019-918aad6bd5)
This release fixes a buffer overflow when processing RIFF/WAV files with in invalid MS ADPCM predictor. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as mu...
Fedora 29 : SDL (2019-bf531902c8)
This release fixes a buffer overflow when processing RIFF/WAV files with in invalid MS ADPCM predictor. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as mu...
Apple QuickTime RIFF fmt Chunk Parsing Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the...
CVE-2011-0209
Integer overflow in QuickTime in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted RIFF WAV file...
Integer overflow
Integer overflow in QuickTime in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted RIFF WAV file...
CVE-2011-0209
Integer overflow in QuickTime in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted RIFF WAV file...
CVE-2011-0209
CVE-2011-0209 : An integer overflow in QuickTime’s handling of RIFF WAV files on Mac OS X before 10.6.8 can be exploited remotely to achieve arbitrary code execution or cause a denial of service (application crash) via a crafted WAV file. The issue is documented in the Apple advisory and is addre...