17 matches found
CVE-2026-48095 GHSL-2026-140_7-Zip: 7-Zip has a heap buffer overflow via NTFS compressed stream buffer under-allocation
7-Zip is a file archiver with a high compression ratio. Versions 26.00 and prior contain a heap buffer overflow vulnerability caused by an under-allocation in the NTFS compressed stream buffer GetCuSize shift UB, potentially allowing attackers to cause arbitrary code execution or application...
CVE-2026-48095
7-Zip (NTFS archive handler) in versions <= 26.00 has a heap buffer overflow in GetCuSize() due to under-allocation of the compressed-stream buffer when processing crafted NTFS images with large ClusterSizeLog and CompressionUnit. For BlockSizeLog + CompressionUnit, (UInt32)1 <
freerdp: FreeRDP heap-buffer-overflow
A heap based buffer overflow has been discovered in FreeRDP. This heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap memory...
PT-2026-2932
Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.20.1 Description A heap-buffer-overflow can occur in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound. This allows an oversized re...
EUVD-2021-18466
Malware in sbrugna...
CVE-2021-31572
The kernel in Amazon Web Services FreeRTOS before 10.4.3 has an integer overflow in streambuffer.c for a stream buffer...
NVIDIA OTE Buffer Overflow Vulnerability
Nvidia NVIDIA OTE is a standalone, software-partitioned environment from Nvidia Corporation that provides trusted operations. NVIDIA OTE is vulnerable to a buffer error vulnerability stemming from a flaw in the NVIDIA OTE protocol message parsing code, where a faulty boundary check can lead to a...
NVIDIA OTE 缓冲区错误漏洞
Nvidia NVIDIA OTE is a standalone, software-partitioned environment from Nvidia Corporation that provides trusted operations. NVIDIA OTE is vulnerable to a buffer error vulnerability stemming from a flaw in the NVIDIA OTE protocol message parsing code, where a faulty boundary check can lead to a...
Amazon FreeRTOS Integer Overflow Vulnerability
Amazon FreeRTOS is an open source operating system for microcontrollers from Amazon USA. An integer overflow vulnerability exists in streambuffer.c in Amazon FreeRTOS versions prior to 10.4.3. No details of the vulnerability are provided at this time...
CVE-2021-31572
The kernel in Amazon Web Services FreeRTOS before 10.4.3 has an integer overflow in streambuffer.c for a stream buffer...
CVE-2021-31572
The kernel in Amazon Web Services FreeRTOS before 10.4.3 has an integer overflow in streambuffer.c for a stream buffer...
Integer overflow
The kernel in Amazon Web Services FreeRTOS before 10.4.3 has an integer overflow in streambuffer.c for a stream buffer...
CVE-2021-31572
The kernel in Amazon Web Services FreeRTOS before 10.4.3 has an integer overflow in streambuffer.c for a stream buffer...
亚马逊 Amazon FreeRTOS 输入验证错误漏洞
Amazon FreeRTOS is an open source operating system for microcontrollers from Amazon USA. An integer overflow vulnerability exists in streambuffer.c in Amazon FreeRTOS versions prior to 10.4.3. No details of the vulnerability are provided at this time...
CVE-2010-5109
Off-by-one error in the DecompressRTF function in ytnef.c in Yerase's TNEF Stream Reader allows remote attackers to cause a denial of service crash via a crafted TNEF file, which triggers a buffer overflow...
Mini-Stream 3.0.1.1 Buffer Overflow
This module exploits a stack buffer overflow in Mini-Stream 3.0.1.1 By creating a specially crafted pls file, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...
Mini-Stream 3.0.1.1 Buffer Overflow Exploit
Exploit for windows platform in category local exploits $Id: ministream.rb 14155 2011-11-04 08:20:43Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on...