650 matches found
sqlite3 -- heap-buffer overflow
Google reports: A heap-buffer overflow sometimes a crash can arise when running a SQL request on malformed sqlite3 databases...
Updated sqlite3 packages fix security vulnerability
Pointer disclosure in SQLite CVE-2017-7000. The getNodeSize function in ext/rtree/rtree.c in SQLite mishandles undersized RTree blobs in a crafted database, leading to a heap-based buffer over-read or possibly unspecified other impact CVE-2017-10989. Note: the CVE-2017-10989 issue only affected...
MGASA-2017-0238 Updated sqlite3 packages fix security vulnerability
Pointer disclosure in SQLite CVE-2017-7000. The getNodeSize function in ext/rtree/rtree.c in SQLite mishandles undersized RTree blobs in a crafted database, leading to a heap-based buffer over-read or possibly unspecified other impact CVE-2017-10989. Note: the CVE-2017-10989 issue only affected...
Debian DLA-1018-1 : sqlite3 security update
It was discovered that there was a heap-based buffer over-read vulnerability in SQLite, a lightweight database engine. The getNodeSize function in ext/rtree/rtree.c mishandled undersized RTree blobs in a specially crafted database, For Debian 7 'Wheezy', this issue has been fixed in sqlite3 versi...
[SECURITY] [DLA 1018-1] sqlite3 security update
Package : sqlite3 Version : 3.7.13-1+deb7u4 CVE ID : CVE-2017-10989 Debian Bug : 867618 It was discovered that there was a heap-based buffer over-read vulnerability in SQLite, a lightweight database engine. The getNodeSize function in ext/rtree/rtree.c mishandled undersized RTree blobs in a...
DLA-1018-1 sqlite3 - security update
Bulletin has no description...
Emby MediaServer 3.2.5 - SQL Injection Vulnerability
Exploit for multiple platform in category web applications Emby MediaServer 3.2.5 Boolean-based Blind SQL Injection Vulnerability Vendor: Emby LLC Product web page: https://www.emby.media Affected version: 3.2.5 3.1.5 3.1.2 3.1.1 3.1.0 3.0.0 Summary: Emby formerly Media Browser is a media server...
Emby MediaServer 3.2.5 Boolean-based Blind SQL Injection
Emby MediaServer 3.2.5 Boolean-based Blind SQL Injection Vulnerability Vendor: Emby LLC Product web page: https://www.emby.media Affected version: 3.2.5 3.1.5 3.1.2 3.1.1 3.1.0 3.0.0 Summary: Emby formerly Media Browser is a media server designed to organize, play, and stream audio and video to a...
Emby MediaServer 3.2.5 - SQL Injection
Emby MediaServer 3.2.5 Boolean-based Blind SQL Injection Vulnerability Vendor: Emby LLC Product web page: https://www.emby.media Affected version: 3.2.5 3.1.5 3.1.2 3.1.1 3.1.0 3.0.0 Summary: Emby formerly Media Browser is a media server designed to organize, play, and stream audio and video to a...
Updated firefox packages fix security vulnerability
Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox CVE-2017-5398, CVE-2017-5400, CVE-2017-5401, CVE-2017-5402,...
sqlite3: Global-buffer-overflow in sqlite3VdbeMemPrettyPrint
Detailed report: https://oss-fuzz.com/testcase?key=6749820112863232 Project: sqlite3 Fuzzer: libFuzzersqlite3ossfuzz Fuzz target binary: ossfuzz Job Type: libfuzzerasansqlite3 Platform Id: linux Crash Type: Global-buffer-overflow READ 1 Crash Address: 0x000002b188a8 Crash State:...
sqlite3: Global-buffer-overflow in sqlite3VdbeMemPrettyPrint
Detailed report: https://oss-fuzz.com/testcase?key=6475706777206784 Project: sqlite3 Fuzzer: libFuzzersqlite3ossfuzz Fuzz target binary: ossfuzz Job Type: libfuzzerasansqlite3 Platform Id: linux Crash Type: Global-buffer-overflow READ 8 Crash Address: 0x000000860150 Crash State:...
sqlite3: Global-buffer-overflow in translateColumnToCopy
Detailed report: https://oss-fuzz.com/testcase?key=4848090467008512 Project: sqlite3 Fuzzer: libFuzzersqlite3ossfuzz Fuzz target binary: ossfuzz Job Type: libfuzzerasansqlite3 Platform Id: linux Crash Type: Global-buffer-overflow READ 4 Crash Address: 0x000002a01c3c Crash State:...
Nozes - PeTest CMD Manager [Automate Your PenTest Attacks In One Click]
Nozes is a Pentest cmd manager. You can automate your pentest attacks in one click and get results... Read the docs: https://github.com/CoolerVoid/nozes/blob/master/doc/nozesapresentation1.pdf Install To install: Need: httpd server with TLS/SSL SQLite3 php5 and php5-sqlite and PDO driver of sqlit...
sqlite3: Heap-buffer-overflow in instrFunc
Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=5694101458518016 Project: sqlite3 Fuzzer: libFuzzersqlite3ossfuzz Fuzz target binary: ossfuzz Job Type: libfuzzerasansqlite3 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x63400001dcc0 Crash State:...
sqlite3: Crash in sqlite3DbMallocRawNN
Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=6739028850245632 Project: sqlite3 Fuzzer: libFuzzersqlite3ossfuzz Fuzz target binary: ossfuzz Job Type: libfuzzerasansqlite3 Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x630000524f22 Crash State:...
PHP 5.6.29 releases, security vulnerability fixes-bug warning-the black bar safety net
The PHP development team announced PHP 5.6.29 available. This is a safe version that fixes several security vulnerabilities. Suggested that all PHP 5.6 users upgrade to this version. Update content: Mysqlnd: Fixed bug 64526 the missing mysqlnd. Add parameters to the php. ini-. Opcache: Fixed bug...
OS X Gather Messages
This module will collect the Messages sqlite3 database files and chat logs from the victim's machine. There are four actions you may choose: DBFILE, READABLE, LATEST, and ALL. DBFILE and READABLE will retrieve all messages, and LATEST will retrieve the last X number of messages useful with 2FA...
sqlite3: Heap-use-after-free in exprAnalyze
Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=4603622180519936 Target: sqlite3 Fuzzer: libFuzzersqlite3ossfuzz Fuzzer binary: ossfuzz Job Type: libfuzzerasansqlite3 Platform Id: linux Crash Type: Heap-use-after-free READ 8 Crash Address: 0x619000000e30 Crash State:...
sqlite3: Heap-use-after-free in sqlite3StrAccumAppend
Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=5770842466156544 Target: sqlite3 Fuzzer: libFuzzersqlite3ossfuzz Fuzzer binary: ossfuzz Job Type: libfuzzerasansqlite3 Platform Id: linux Crash Type: Heap-use-after-free READ 1 Crash Address: 0x60c000000813 Crash State:...