146 matches found
CVE-2020-6007
Philips Hue Bridge model 2.X prior to and including version 1935144020 contains a Heap-based Buffer Overflow when handling a long ZCL string during the commissioning phase, resulting in a remote code execution...
PT-2019-5838 · Imagemagick +5 · Imagemagick +5
Name of the Vulnerable Software and Affected Versions: ImageMagick versions prior to 7.0.8-68 Description: The issue is related to a missing check for a 0 value of replace extent in the SubstituteString function, which can cause an offset p to overflow. This could be triggered by a crafted input...
DEBIAN-CVE-2018-11790
When loading a document with Apache Open Office 4.1.5 and earlier with smaller end line termination than the operating system uses, the defect occurs. In this case OpenOffice runs into an Arithmetic Overflow at a string length calculation...
UBUNTU-CVE-2018-5207
When using an incomplete variable argument, Irssi before 1.0.6 may access data beyond the end of the string...
Internet Bug Bounty: Memory corruption in _php_math_number_format_ex()
The fix of this bug has been committed: https://bugs.php.net/bug.php?id=73336 Description: -------------- I have found some vulnerable code at phpmathnumberformatex function. phpmathnumberformatex function is an internal function which is called from numberformat function. numberformat function...
OpenSSL BIO_printf Function Heap Memory Corruption Vulnerability
OpenSSL is a general-purpose open source cryptographic library that implements Secure Sockets Layer and Secure Transport Layer protocols and can support a variety of cryptographic algorithms, including symmetric ciphers, hashing algorithms, secure hashing algorithms, and so on. The BIOprintf...
Apache Subversion Integer Overflow Vulnerability
Apache Subversion is the United States Apache Apache Software Foundation, a set of open source version control system , the system can be compatible with concurrent versioning system CVS. An integer overflow vulnerability exists in the 'readstring' function in the libsvnrasvn/marshal.c file in...
DEBIAN-CVE-2015-5259
Integer overflow in the readstring function in libsvnrasvn/marshal.c in Apache Subversion 1.9.x before 1.9.3 allows remote attackers to execute arbitrary code via an svn:// protocol string, which triggers a heap-based buffer overflow and an out-of-bounds read...
SonicWALL E-Class SSL-VPN ActiveX Control Format String Overflow
No description provided by source...
SHOUTcast DNAS/win32 1.9.4 File Request Format String Overflow
No description provided by source. $Id: shoutcastformat.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...
UBUNTU-CVE-2013-4385
Buffer overflow in the "read-string!" procedure in the "extras" unit in CHICKEN stable before 4.8.0.5 and development snapshots before 4.8.3 allows remote attackers to cause a denial of service memory corruption and application crash and possibly execute arbitrary code via a "f" value in the NUM...
ComSndFTP Server Remote Format String Overflow Vulnerability
Title: ComSndFTP Server Remote Format String Overflow Vulnerability Software : ComSndFTP FTP Server Software Version : ComSndFTP 1.3.7 Beta Vendor: http://ftp.comsnd.com/ Vulnerability Published : 2012-06-07 Vulnerability Update Time : Status : Impact : MediumCVSS2 Base : 5.0,...
ComSndFTP 1.3.7 Beta Format String Overflow
Title: ComSndFTP Server Remote Format String Overflow Vulnerability Software : ComSndFTP FTP Server Software Version : ComSndFTP 1.3.7 Beta Vendor: http://ftp.comsnd.com/ Vulnerability Published : 2012-06-07 Vulnerability Update Time : Status : Impact : MediumCVSS2 Base : 5.0,...
ComSndFTP Server 1.3.7 Beta - Remote Format String Overflow
ComSndFTP Server 1.3.7 Beta - Remote Format String Overflow Title: ComSndFTP Server Remote Format String Overflow Vulnerability Software : ComSndFTP FTP Server Software Version : ComSndFTP 1.3.7 Beta Vendor: http://ftp.comsnd.com/ Vulnerability Published : 2012-06-07 Vulnerability Update Time :...
NSOADV-2010-005: SonicWALL E-Class SSL-VPN ActiveX Control format string overflow
-------------------------- NSOADV-2010-005 --------------------------- SonicWALL E-Class SSL-VPN ActiveX Control format string overflow 111101111 11111 00110 00110001111 111111 01 01 1 11111011111111 11111 0 11 01 0 11 1 1 111011001 11111111101 1 11 0110111 1 1111101111 1001 0 1 10 11 0 10 11...
SonicWALL E-Class SSL-VPN ActiveX Control Format String Overflow
-------------------------- NSOADV-2010-005 --------------------------- SonicWALL E-Class SSL-VPN ActiveX Control format string overflow 111101111 11111 00110 00110001111 111111 01 01 1 11111011111111 11111 0 11 01 0 11 1 1 111011001 11111111101 1 11 0110111 1 1111101111 1001 0 1 10 11 0 10 11...
SonicWALL E-Class SSL-VPN - ActiveX Control Format String Overflow
SonicWALL E-Class SSL-VPN - ActiveX Control Format String Overflow -------------------------- NSOADV-2010-005 --------------------------- SonicWALL E-Class SSL-VPN ActiveX Control format string overflow 111101111 11111 00110 00110001111 111111 01 01 1 11111011111111 11111 0 11 01 0 11 1 1 1110110...
SonicWALL E-Class SSL-VPN - ActiveX Control Format String Overflow
-------------------------- NSOADV-2010-005 --------------------------- SonicWALL E-Class SSL-VPN ActiveX Control format string overflow 111101111 11111 00110 00110001111 111111 01 01 1 11111011111111 11111 0 11 01 0 11 1 1 111011001 11111111101 1 11 0110111 1 1111101111 1001 0 1 10 11 0 10 11...
SonicWALL E-Class SSL-VPN ActiveX Control Format String Overflow
Exploit for windows platform in category dos / poc ================================================================ SonicWALL E-Class SSL-VPN ActiveX Control Format String Overflow ================================================================ Title: SonicWALL E-Class SSL-VPN ActiveX Control...
Moderate: Red Hat Security Advisory: postgresql security update
Updated postgresql packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings,...