CVE-2015-7055

AppleMobileFileIntegrity in Apple iOS before 9.2 and tvOS before 9.1 does not prevent changes to access-control structures, which allows attackers to execute arbitrary code in a privileged context via a crafted app...

Schneider Electric ProClima F1BookView ActiveX Control CopyRange/SwapTables Methods Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric ProClima. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaws exist within the...

The vulnerability of the microprogramming software in Janitza UMG 508, 509, 511, 604, 605 power supply monitoring systems allows a intruder to inject arbitrary web or HTML code.

The vulnerability of the web interface of Microprogramming Software for Control Systems of Power Supply Networks Janitza UMG 508, 509, 511, 604, 605 exists due to the lack of measures taken to protect the structure of the web pages. Exploiting this vulnerability allows a malicious actor to inject...

Scientific Linux Security Update : nss and nspr on SL5.x i386/x86_64 (20151104)

A use-after-poison flaw and a heap-based buffer overflow flaw were found in the way NSS parsed certain ASN.1 structures. An attacker could use these flaws to cause NSS to crash or execute arbitrary code with the permissions of the user running an application compiled against the NSS library...

Critical: nspr, nss-util, nss, jss

Issue Overview: Network Security Services NSS is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Netscape Portable Runtime NSPR provides platform independence for non-GUI operating system facilities. A use-after-poison flaw and...

Scientific Linux Security Update : nss, nss-util, and nspr on SL6.x, SL7.x i386/x86_64 (20151104)

A use-after-poison flaw and a heap-based buffer overflow flaw were found in the way NSS parsed certain ASN.1 structures. An attacker could use these flaws to cause NSS to crash or execute arbitrary code with the permissions of the user running an application compiled against the NSS library...

[SECURITY] Fedora 22 Update: seqan-1.4.2-21.fc22

SeqAn is an open source C++ library of efficient algorithms and data struct ures for the analysis of sequences with the focus on biological data. Our library applies a unique generic design that guarantees high performanc e, generality, extensibility, and integration with other libraries...

[SECURITY] Fedora 23 Update: seqan-1.4.2-21.fc23

SeqAn is an open source C++ library of efficient algorithms and data struct ures for the analysis of sequences with the focus on biological data. Our library applies a unique generic design that guarantees high performanc e, generality, extensibility, and integration with other libraries...

CVE-2010-3848

Stack-based buffer overflow in the econetsendmsg function in net/econet/afeconet.c in the Linux kernel before 2.6.36.2, when an econet address is configured, allows local users to gain privileges by providing a large number of iovec structures...

Vulnerabilities of the SAP HANA database management system, allowing attackers to execute arbitrary SQL commands

The multiple vulnerabilities of the Development Workbench component of the SAP HANA database management system are related to the lack of protection for SQL query structures. Exploiting these vulnerabilities allows a malicious actor to execute arbitrary SQL commands remotely...

OpenJDK: inefficient use of hash tables and lists during XML parsing (JAXP, 8068842)

Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2015-4893 and CVE-2015-4911...

Ubuntu 14.04 LTS : rpcbind vulnerability (USN-2756-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-2756-1 advisory. It was discovered that rpcbind incorrectly handled certain memory structures. A remote attacker could use this issue to cause rpcbind to crash, resulting in a...

Ubuntu: Security Advisory (USN-2756-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Design/Logic Flaw

The swsinitcontext function in libswscale/utils.c in FFmpeg before 2.7.2 does not initialize certain pixbuf data structures, which allows remote attackers to cause a denial of service segmentation violation or possibly have unspecified other impact via crafted video data...

win2003/x64 - Token Stealing shellcode - 59 bytes

;token stealing shellcode Win 2003 x64 ;based on the widely available x86 version ;syntax for NASM ;Author: Csaba Fitzl, @theevilbit ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; ;important structures and offsets; ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; ;kd dt -r1 nt!TEB ; +0x110 SystemReserved1 : 54 Ptr64 Void...

CVE-2015-1277

Removed by vendor...

CVE-2015-1277

Use-after-free vulnerability in the accessibility implementation in Google Chrome before 44.0.2403.89 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging lack of certain validity checks for accessibility-tree data structures...

MS15-068: Vulnerabilities in Windows Hyper-V Could Allow Remote Code Execution (3072000)

The remote Windows host is affected by multiple remote code execution vulnerabilities in Hyper-V : - An error exists in how Hyper-V handles packet size memory initialization in guest virtual machines. An authenticated attacker with access to a guest virtual machine can exploit this by running a...

Buffer overflow

Hyper-V in Microsoft Windows 8.1 and Windows Server 2012 R2 does not properly initialize guest OS system data structures, which allows guest OS users to execute arbitrary code on the host OS or cause a denial of service buffer overflow by leveraging guest OS privileges, aka "Hyper-V Buffer Overfl...

FreeBSD : chicken -- buffer overrun in substring-index[-ci] (e7b7f2b5-177a-11e5-ad33-f8d111029e6a)

chicken developer Moritz Heidkamp reports : The substring-index-ci procedures of the data-structures unit are vulnerable to a buffer overrun attack when passed an integer greater than zero as the optional START argument. As a work-around you can switch to SRFI 13's string-contains procedure which...