DEBIAN-CVE-2022-27145

GPAC mp4box 1.1.0-DEV-rev1727-g8be34973d-master has a stack-overflow vulnerability in function gfisomgetsampleformovietime of mp4box...

Gpac MP4Box 缓冲区错误漏洞

Gpac MP4Box is multimedia packager. It is mainly used for working with ISOBMF files e.g. MP4, 3GP, but can also be used to import/export media from container files such as AVI, MPG, MKV, MPEG-2 TS, etc. A security vulnerability exists in GPAC mp4box version 1.1.0-DEV-rev1727-g8be34973d-master,...

CVE-2022-27000

Arris TR3300 v1.0.13 is affected by a command-injection vulnerability in the time and time zone function, exploitable via h_primary_ntp_server, h_backup_ntp_server, and h_time_zone parameters. The issue allows arbitrary command execution and is described across multiple sources (NVD/Red Hat/CNVD/...

Tenda Ax3 缓冲区错误漏洞

Tenda Ax3 is an Ax1800 Gigabit Port Dual Band Wifi 6 Wireless Router from Tenda, China. A security vulnerability exists in Tenda Ax3 v16.03.12.10CN, which originates from a stack overflow in the function fromSetSysTime. An attacker can exploit this vulnerability to cause a Denial of Service DoS v...

OESA-2021-1096 apr security update

The mission of the Apache Portable Runtime APR project is to create and maintain software libraries that provide a predictable and consistent interface to underlying platform-specific implementations. The primary goal is to provide an API to which software developers may code and be assured of...

OESA-2021-1097 apr security update

Security Fixes: An out-of-bounds array dereference was found in aprtimeexpget. An attacker could abuse an unvalidated usage of this function to cause a denial of service or potentially lead to data leak.CVE-2017-12613...

Information disclosure

An issue was discovered in damiCMS V6.0.1. It relies on the PHP time function for cookies, which makes it possible to determine the cookie for an existing admin session via 10800 guesses...

apr: Out-of-bounds array deref in apr_time_exp*() functions

An out-of-bounds array dereference was found in aprtimeexpget. An attacker could abuse an unvalidated usage of this function to cause a denial of service or potentially lead to data leak...

apr: Out-of-bounds array deref in apr_time_exp*() functions

An out-of-bounds array dereference was found in aprtimeexpget. An attacker could abuse an unvalidated usage of this function to cause a denial of service or potentially lead to data leak...

GStreamer Denial of Service Vulnerability (CNVD-2017-01488)

GStreamer is a set of frameworks for handling streaming media. A denial of service vulnerability exists in the gstdatetimenewfromiso8601string function in GStreamer gst/gstdatetime.c. A remote attacker can cause a denial of service out-of-bounds heap read via a malformed datetime string...

Joomla! Component JE Messenger 1.0 - Arbitrary File Upload

JE Messenger 1.0 Arbitrary File Upload Vulnerability Name JE Messenger Vendor http://joomlaextensions.co.in Versions Affected 1.0 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date 2010-12-09 X. INDEX I. ABOUT THE APPLICATIO...

Joomla! Component JE Messenger 1.0 - Arbitrary File Upload

Joomla! Component JE Messenger 1.0 - Arbitrary File Upload JE Messenger 1.0 Arbitrary File Upload Vulnerability Name JE Messenger Vendor http://joomlaextensions.co.in Versions Affected 1.0 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gma...

Microsoft Visual C++标准库时间函数拒绝服务漏洞

Microsoft Visual C++是基于Windows平台的C++编译器。 Microsoft Visual C++标准库时间函数实现上存在漏洞，攻击者可能利用此漏洞导致相关的应用程序崩溃。 在64位版本的时间函数中，如： localtime localtimes gmtime gmtimes ctime ctimes wctime wctimes fstat...