3252 matches found
CVE-2017-7299
The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has an invalid read of size 8 because the code to emit relocs bfdelffinallink function in bfd/elflink.c does not check the format of the input file before trying to read the ELF reloc section header. The...
CVE-2017-6068
Subrion CMS 4.0.5 has CSRF in admin/blocks/add/. The attacker can create any block, and can optionally insert XSS via the content parameter...
CVE-2017-7209
The dumpsectionasbytes function in readelf in GNU Binutils 2.28 accesses a NULL pointer while reading section contents in a corrupt binary, leading to a program crash...
Null pointer dereference
The dumpsectionasbytes function in readelf in GNU Binutils 2.28 accesses a NULL pointer while reading section contents in a corrupt binary, leading to a program crash...
KLA10974 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet Explorer. For details look at KLA10973. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: disable Adobe Flash Player, prevent Adobe FP from...
CVE-2016-5044
The WRITEUNALIGNED function in dwarfelfaccess.c in libdwarf before 20160923 allows remote attackers to cause a denial of service out-of-bounds write and crash via a crafted DWARF section...
CVE-2016-5043
The dwarfdealloc function in libdwarf before 20160923 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted DWARF section...
Design/Logic Flaw
The dwarfgetarangeslist function in libdwarf before 20160923 allows remote attackers to cause a denial of service infinite loop and crash via a crafted DWARF section...
Out-of-bounds
The dwarfdealloc function in libdwarf before 20160923 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted DWARF section...
CVE-2016-5043
The dwarfdealloc function in libdwarf before 20160923 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted DWARF section...
CVE-2016-5042
The dwarfgetarangeslist function in libdwarf before 20160923 allows remote attackers to cause a denial of service infinite loop and crash via a crafted DWARF section...
DEBIAN-CVE-2016-5037
The dwarfloadsection function in libdwarf before 20160923 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted file...
CVE-2016-5042
The dwarfgetarangeslist function in libdwarf before 20160923 allows remote attackers to cause a denial of service infinite loop and crash via a crafted DWARF section...
Out-of-bounds
The WRITEUNALIGNED function in dwarfelfaccess.c in libdwarf before 20160923 allows remote attackers to cause a denial of service out-of-bounds write and crash via a crafted DWARF section...
CVE-2016-5044
The WRITEUNALIGNED function in dwarfelfaccess.c in libdwarf before 20160923 allows remote attackers to cause a denial of service out-of-bounds write and crash via a crafted DWARF section...
CVE-2016-5042
The dwarfgetarangeslist function in libdwarf before 20160923 allows remote attackers to cause a denial of service infinite loop and crash via a crafted DWARF section...
DEBIAN-CVE-2016-5043
The dwarfdealloc function in libdwarf before 20160923 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted DWARF section...
UBUNTU-CVE-2016-5044
The WRITEUNALIGNED function in dwarfelfaccess.c in libdwarf before 20160923 allows remote attackers to cause a denial of service out-of-bounds write and crash via a crafted DWARF section...
DEBIAN-CVE-2016-5044
The WRITEUNALIGNED function in dwarfelfaccess.c in libdwarf before 20160923 allows remote attackers to cause a denial of service out-of-bounds write and crash via a crafted DWARF section...
CVE-2016-5044
The WRITEUNALIGNED function in dwarfelfaccess.c in libdwarf before 20160923 allows remote attackers to cause a denial of service out-of-bounds write and crash via a crafted DWARF section...