Lucene search
K

491 matches found

hackapp
hackapp
added 2016/04/01 10:0 a.m.10 views

Tile Puzzle - Landscapes - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Tile Puzzle - Landscapes published at the 'play' market has multiple vulnerabilities...

0.8AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 8:41 a.m.10 views

Piano Tile - Dynamic Code Loading, External URLs, Native code usage vulnerabilities

HackApp vulnerability scanner discovered that application Piano Tile published at the 'play' market has multiple vulnerabilities...

0.3AI score
Exploits0References1Affected Software1
CNVD
CNVD
added 2016/03/17 12:0 a.m.5 views

OpenJPEG Denial of Service Vulnerability (CNVD-2016-01726)

OpenJPEG is a C-based open source JPEG 2000 codec . A security vulnerability exists in the 'opjtcdfreetile' function of OpenJPEG. The vulnerability can be exploited by an attacker to cause a denial of service out-of-bounds read with a specially crafted JPEG 2000 image...

8.8AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2016/03/11 12:0 a.m.6 views

The vulnerability of the FFmpeg multimedia library, which allows a hacker to trigger a service failure

The vulnerability of the jpeg2000decodetile function libavcodec/jpeg2000dec.c in the FFmpeg multimedia library is due to buffer overflow. Exploiting this vulnerability can allow an attacker to cause a service failure buffer overflow by using specially crafted JPEG 2000 format data...

4.3CVSS7.2AI score0.01871EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2016/02/03 2:59 p.m.2 views

ALPINE-CVE-2016-2213

The jpeg2000decodetile function in libavcodec/jpeg2000dec.c in FFmpeg before 2.8.6 allows remote attackers to cause a denial of service out-of-bounds array read access via crafted JPEG 2000 data...

6.5CVSS6.8AI score0.01871EPSS
Exploits0References1
CNVD
CNVD
added 2015/11/18 12:0 a.m.5 views

FFmpeg 'init_tile' Function Denial of Service Vulnerability

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A security vulnerability exists in the 'inittile' function in the libavcodec/jpeg2000dec.c file in versions of FFmpeg prior to 2.8.2. Due to the program failing to enforce maximum and minim...

7.5CVSS9.2AI score0.02001EPSS
Exploits0References1
OSV
OSV
added 2015/11/17 1:59 a.m.2 views

DEBIAN-CVE-2015-8219

The inittile function in libavcodec/jpeg2000dec.c in FFmpeg before 2.8.2 does not enforce minimum-value and maximum-value constraints on tile coordinates, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via crafted JP...

7.5CVSS8.5AI score0.02001EPSS
Exploits0References1
OSV
OSV
added 2015/11/17 1:59 a.m.3 views

UBUNTU-CVE-2015-8219

The inittile function in libavcodec/jpeg2000dec.c in FFmpeg before 2.8.2 does not enforce minimum-value and maximum-value constraints on tile coordinates, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via crafted JP...

7.5CVSS7.4AI score0.02001EPSS
Exploits0References2
Hacker One
Hacker One
added 2015/03/09 8:58 a.m.19 views

Concrete CMS: Stored XSS in Feature tile

XSS payload can be executed and saved permanently in Feature tile . Poc code: "...

6.3AI score
Exploits0
Hacker One
Hacker One
added 2015/03/08 8:16 a.m.26 views

Concrete CMS: Stored XSS on Blog's page Tile

In blog page Custom Title Text , xss payload can be executed and saved permanently . Poc: "...

6.9AI score
Exploits0
RedHat Linux
RedHat Linux
added 2014/10/15 4:12 p.m.12 views

Mozilla: Out-of-bounds write with WebM video (MFSA 2014-77)

The gettile function in Mozilla Firefox before 33.0, Firefox ESR 31.x before 31.2, and Thunderbird 31.x before 31.2 allows remote attackers to cause a denial of service out-of-bounds write and application crash or possibly execute arbitrary code via WebM frames with invalid tile sizes that are...

7.5CVSS7.3AI score0.03944EPSS
Exploits0References5
OSV
OSV
added 2014/10/15 10:55 a.m.2 views

DEBIAN-CVE-2014-1578

The gettile function in Mozilla Firefox before 33.0, Firefox ESR 31.x before 31.2, and Thunderbird 31.x before 31.2 allows remote attackers to cause a denial of service out-of-bounds write and application crash or possibly execute arbitrary code via WebM frames with invalid tile sizes that are...

7.5CVSS9.2AI score0.03944EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2014/10/15 2:39 a.m.4 views

Mozilla: Out-of-bounds write with WebM video (MFSA 2014-77)

The gettile function in Mozilla Firefox before 33.0, Firefox ESR 31.x before 31.2, and Thunderbird 31.x before 31.2 allows remote attackers to cause a denial of service out-of-bounds write and application crash or possibly execute arbitrary code via WebM frames with invalid tile sizes that are...

7.5CVSS7.3AI score0.03944EPSS
Exploits0References5
FreeBSD
FreeBSD
added 2014/10/14 12:0 a.m.41 views

libvpx -- out-of-bounds write

The Mozilla Project reports: Using the Address Sanitizer tool, security researcher Abhishek Arya Inferno of the Google Chrome Security Team found an out-of-bounds write when buffering WebM format video containing frames with invalid tile sizes. This can lead to a potentially exploitable crash...

7.5CVSS9.2AI score0.03944EPSS
Exploits0References2
Hacker One
Hacker One
added 2014/06/22 9:52 p.m.17 views

Uzbey: SQL injection, time zoom script, tile ID

The tile ID parameter to the tile zoom script is vulnerable to SQL injection. The following will cause the script to run a benchmark, returning an error 8-10 seconds later: https://staging.uzbey.com/zoom-image/BENCHMARK10000000,SHA11...

0.2AI score
Exploits0
Hacker One
Hacker One
added 2014/06/22 9:46 p.m.14 views

Uzbey: SQL injection, tile ID

The tile ID parameter to the tile image script is vulnerable to SQL injection. The following will cause the script to run a benchmark, returning 8-10 seconds later: https://staging.uzbey.com/tiles1600/693/sleep10...

0.3AI score
Exploits0
seebug.org
seebug.org
added 2014/06/10 12:0 a.m.19 views

SiteServer 3.6.4 /siteserver/bbs/background_post.aspx SQL注入漏洞

SiteServer 3.6.4 /siteserver/bbs/backgroundpost.aspx文件Tile参数没有合适过滤,导致SQL注入漏洞。 SiteServer 3.6.4...

7.1AI score
Exploits0
Prion
Prion
added 2013/11/23 5:55 p.m.20 views

Heap overflow

The kempfdecodetile function in libavcodec/g2meet.c in FFmpeg before 2.0.1 allows remote attackers to cause a denial of service out-of-bounds heap write via a G2M4 encoded file...

4.3CVSS6.8AI score0.02183EPSS
Exploits1References5Affected Software1
OpenVAS
OpenVAS
added 2013/08/01 12:0 a.m.21 views

Fedora Update for kmahjongg FEDORA-2013-13112

Check for the Version of kmahjongg OpenVAS Vulnerability Test Fedora Update for kmahjongg FEDORA-2013-13112 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

7.5CVSS0.1AI score0.04412EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2013/08/01 12:0 a.m.22 views

Fedora Update for kmahjongg FEDORA-2013-13499

Check for the Version of kmahjongg OpenVAS Vulnerability Test Fedora Update for kmahjongg FEDORA-2013-13499 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

7.5CVSS0.04412EPSS
Exploits1References2
Rows per page
Query Builder