Lucene search
K

37 matches found

CVE
CVE
added 2018/06/11 9:0 p.m.139 views

CVE-2018-5144

CVE-2018-5144 describes an integer overflow during Unicode text conversion caused by an unchecked length parameter. Affected products: Firefox ESR and Thunderbird (pre-52.7). Root cause: overflow during Unicode conversion. Impact: potential remote code execution or memory issues as implied by the...

7.5CVSS7.8AI score0.03264EPSS
Exploits1References16Affected Software5
Exploit DB
Exploit DB
added 2018/05/29 12:0 a.m.42 views

GNU Barcode 0.99 - Buffer Overflow

GNU Barcode 0.99 - Buffer Overflow Vendor: The GNU Project | Free Software Foundation, Inc. Product web page: https://www.gnu.org/software/barcode/ https://directory.fsf.org/wiki/Barcode Author: Gjoko 'LiquidWorm' Krstic Tested on: Ubuntu 16.04.4 Affected version: 0.99 Summary: GNU Barcode is a...

7.4AI score
Exploits0
CNVD
CNVD
added 2017/05/22 12:0 a.m.2 views

Memory out-of-bounds write vulnerability in WPS Text WordConvertDll module

WPS is an office software developed by Kingsoft Office Software. A memory out-of-bounds write vulnerability exists in the WPS text WordConvertDll module. The vulnerability is caused due to the program failing to validate the buffer length when the user uses the Traditional and Simplified Conversi...

7.4AI score
Exploits0
OSV
OSV
added 2016/09/22 10:59 p.m.1 views

DEBIAN-CVE-2016-5270

Heap-based buffer overflow in the nsCaseTransformTextRunFactory::TransformString function in Mozilla Firefox before 49.0, Firefox ESR 45.x before 45.4, and Thunderbird 45.4 allows remote attackers to cause a denial of service boolean out-of-bounds write or possibly have unspecified other impact v...

9.8CVSS9.4AI score0.03931EPSS
Exploits0References1
Prion
Prion
added 2016/09/22 10:59 p.m.14 views

Heap overflow

Heap-based buffer overflow in the nsCaseTransformTextRunFactory::TransformString function in Mozilla Firefox before 49.0, Firefox ESR 45.x before 45.4, and Thunderbird 45.4 allows remote attackers to cause a denial of service boolean out-of-bounds write or possibly have unspecified other impact v...

7.5CVSS8.1AI score0.03931EPSS
Exploits0References10Affected Software2
CVE
CVE
added 2016/09/22 10:0 p.m.158 views

CVE-2016-5270

CVE-2016-5270: Mozilla Firefox (and Thunderbird <45.4/Firefox ESR

9.8CVSS9.7AI score0.03931EPSS
Exploits0References10Affected Software1
Debian CVE
Debian CVE
added 2016/09/22 10:0 p.m.19 views

CVE-2016-5270

Heap-based buffer overflow in the nsCaseTransformTextRunFactory::TransformString function in Mozilla Firefox before 49.0, Firefox ESR 45.x before 45.4, and Thunderbird 45.4 allows remote attackers to cause a denial of service boolean out-of-bounds write or possibly have unspecified other impact v...

9.8CVSS10AI score0.03931EPSS
Exploits0
OSV
OSV
added 2016/09/22 4:35 p.m.2 views

USN-3076-1 firefox vulnerabilities

Atte Kettunen discovered an out-of-bounds read when handling certain Content Security Policy CSP directives in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash...

9.8CVSS7.2AI score0.05037EPSS
Exploits0References19
RedhatCVE
RedhatCVE
added 2016/09/20 5:49 p.m.23 views

CVE-2016-5270

Heap-based buffer overflow in the nsCaseTransformTextRunFactory::TransformString function in Mozilla Firefox before 49.0, Firefox ESR 45.x before 45.4, and Thunderbird 45.4 allows remote attackers to cause a denial of service boolean out-of-bounds write or possibly have unspecified other impact v...

9.8CVSS6.6AI score0.03931EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/01/25 12:0 a.m.21 views

Debian DSA-3452-1 : claws-mail - security update

'DrWhax' of the Tails project reported that Claws Mail is missing range checks in some text conversion functions. A remote attacker could exploit this to run arbitrary code under the account of a user that receives a message from them using Claws Mail. %NASLMINLEVEL 70300 C Tenable Network...

7.5CVSS7.6AI score0.02554EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2016/01/23 12:0 a.m.28 views

Debian Security Advisory DSA 3452-1 (claws-mail - security update)

DrWhax of the Tails project reported that Claws Mail is missing range checks in some text conversion functions. A remote attacker could exploit this to run arbitrary code under the account of a user that receives a message from them using Claws Mail. OpenVAS Vulnerability Test $Id: deb3452.nasl...

7.5CVSS0.3AI score0.02554EPSS
Exploits0References1
OSV
OSV
added 2016/01/23 12:0 a.m.14 views

DSA-3452-1 claws-mail - security update

Bulletin has no description...

7.5CVSS7.1AI score0.02554EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/01/13 12:0 a.m.31 views

Debian DLA-383-1 : claws-mail security update

'DrWhax' of the Tails project reported that Claws Mail is missing range checks in some text conversion functions. A remote attacker could exploit this to run arbitrary code under the account of a user that receives a message from them using Claws Mail. CVE-2015-8614 There were no checks on the...

7.5CVSS7.7AI score0.02554EPSS
Exploits0References3
Debian
Debian
added 2016/01/12 11:3 p.m.29 views

[SECURITY] [DLA 383-1] claws-mail security update

Package : claws-mail Version : 3.7.6-4+squeeze2 CVE ID : CVE-2015-8614 CVE-2015-8708 "DrWhax" of the Tails project reported that Claws Mail is missing range checks in some text conversion functions. A remote attacker could exploit this to run arbitrary code under the account...

7.5CVSS7.4AI score0.02554EPSS
Exploits0
OSV
OSV
added 2016/01/12 12:0 a.m.27 views

DLA-383-1 claws-mail - security update

Bulletin has no description...

7.5CVSS5.2AI score0.02554EPSS
Exploits0
Mageia
Mageia
added 2014/01/06 1:2 a.m.44 views

Updated ruby package fixes security vulnerability

Charlie Somerville discovered that Ruby incorrectly handled floating point number conversion. An attacker could possibly use this issue with an application that converts text to floating point numbers to cause the application to crash, resulting in a denial of service, or possibly execute arbitra...

6.8CVSS4.3AI score0.34968EPSS
Exploits3References4
seebug.org
seebug.org
added 2008/12/23 12:0 a.m.49 views

RoundCube Webmail <= 0.2-3 beta Code Execution Vulnerability

No description provided by source. Public Release Date of POC: 2008-12-22 Author: Jacobo Avariento Gimeno Sofistic CVE id: CVE-2008-5619 Bugtraq id: 32799 Severity: Critical Vulnerability reported by: RealMurphy Intro ---- Roundcube Webmail is a browser-based IMAP client that uses "chuggnutt.com...

10CVSS0.4AI score0.54003EPSS
Exploits15
Rows per page
Query Builder