Input validation

An improper input validation vulnerability in sdfffdparsechunkPROP with Sample Rate Chunk in libsdffextractor library prior to SMR MAY-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor process...

SAMSUNG Mobile devices 缓冲区错误漏洞

The Samsung libsdffextractor library is a component for Samsung Samsung mobile devices. The Samsung libsdffextractor library suffers from an input validation error vulnerability that stems from improper input validation logic in the presence of a sample rate chunk in sdfffdparsechunkPROP in the...

PT-2021-16575 · Unknown · Libsdffextractor

Name of the Vulnerable Software and Affected Versions: libsdffextractor library versions prior to SMR MAY-2021 Release 1 Description: The issue is related to an improper input validation vulnerability in the sdfffd parse chunk PROP function, specifically with the Sample Rate Chunk. This could...

Accusoft ImageGear 缓冲区错误漏洞

Accusoft ImageGear is a multi-platform, multi-language document imaging developer toolkit. An out-of-bounds write vulnerability exists in the TIF bitspersample handling function in Accusoft ImageGear version 19.9. An attacker can exploit the vulnerability via a specially crafted file to cause...

New Pingback Malware Using ICMP Tunneling to Evade C&C Detection

Researchers on Tuesday disclosed a novel malware that uses a variety of tricks to stay under the radar and evade detection, while stealthily capable of executing arbitrary commands on infected systems. Called 'Pingback,' the Windows malware leverages Internet Control Message Protocol ICMP tunneli...

UBUNTU-CVE-2020-23912

An issue was discovered in Bento4 through v1.6.0-637. A NULL pointer dereference exists in the function AP4StszAtom::GetSampleSize located in Ap4StszAtom.cpp. It allows an attacker to cause Denial of Service...

DEBIAN-CVE-2021-30015

There is a Null Pointer Dereference in function filtercore/filterpck.c:gffilterpcknewallocinternal in GPAC 1.0.1. The pid comes from function av1dmxparseflushsample, the ctx.opid maybe NULL. The result is a crash in gffilterpcknewallocinternal...

DEBIAN-CVE-2021-31256

Memory leak in the stblGetSampleInfos function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file...

GPAC 缓冲区错误漏洞

GPAC is a multimedia framework for rich media and distributed under the LGPL license. A memory leak vulnerability exists in the stblGetSampleInfos function in MP4Box in GPAC version 1.0.1. An attacker can exploit this vulnerability to read memory via specially crafted files...

The leap of a Cycldek-related threat actor

Introduction In the nebula of Chinese-speaking threat actors, it is quite common to see tools and methodologies being shared. One such example of this is the infamous "DLL side-loading triad": a legitimate executable, a malicious DLL to be sideloaded by it, and an encoded payload, generally dropp...

DEBIAN-CVE-2021-3477

There's a flaw in OpenEXR's deep tile sample size calculations in versions before 3.0.0-beta. An attacker who is able to submit a crafted file to be processed by OpenEXR could trigger an integer overflow, subsequently leading to an out-of-bounds read. The greatest risk of this flaw is to...

CVE-2021-3477

There's a flaw in OpenEXR's deep tile sample size calculations in versions before 3.0.0-beta. An attacker who is able to submit a crafted file to be processed by OpenEXR could trigger an integer overflow, subsequently leading to an out-of-bounds read. The greatest risk of this flaw is to...

CVE-2021-3477

There's a flaw in OpenEXR's deep tile sample size calculations in versions before 3.0.0-beta. An attacker who is able to submit a crafted file to be processed by OpenEXR could trigger an integer overflow, subsequently leading to an out-of-bounds read. The greatest risk of this flaw is to...

LIM OpenEXR 输入验证错误漏洞

OpenEXR is an open-standard, high dynamic range image format that is widely used in computer graphics to store image data, but can also store some data needed for post-synthesis processing. An integer overflow vulnerability in the deep block sample size calculation in versions prior to LIM OpenEX...

CallObfuscator - Obfuscate Specific Windows Apis With Different APIs

Obfuscate hide the PE imports from static/dynamic analysis tools. Theory This's pretty forward, let's say I've used VirtualProtect and I want to obfuscate it with Sleep, the tool will manipulate the IAT so that the thunk that points to VirtualProtect will point instead to Sleep, now at executing...

PT-2024-11080 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue arises from the unconditional querying of the lockdown state in the Linux kernel's perf/core, specifically when the PERF SAMPLE REGS INTR bit is set in attr.sample type. This...

kari (=0.1.0), soos-sample-project (=1.0.1) potentially affected by CVE-2020-36513 +1 more via acc_reader (=2.0.0)

accreader CARGO version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on accreader and may be impacted: - kari =0.1.0 - soos-sample-project =1.0.1 Source cves: CVE-2020-36513, CVE-2020-36514 Source advisory: OSV:RUSTSEC-2020-0155...

h1-ctf: [ Hacky Holidays CTF ] Completely taken down the Grinch Networks

Day 1 - Robot flag We're presented with sample ui page without any function. So I guessed content discovery is the best way to find flag. And robots.txt came to my mind and found the flag. https://hackyholidays.h1ctf.com/robots.txt Response User-agent: Disallow: /s3cr3t-ar3a Flag:...

Use-After-Free

GPAC is vulnerable to use-after-free. The vulnerability existed because audiosampleentryRead in isomedia/boxcodebase.c is arbitrary on when to make gfisomboxdel calls...

Denial Of Service (DoS)

gpac is vulnerable to denial of service DoS. The vulnerability exists in audiosampleentryAddBox function in isomedia/boxcodebase.c, allowing a malicious user to cause an application crash via a crafted file...