68 matches found
PT-2017-3949
Name of the Vulnerable Software and Affected Versions Ansible versions 2.3.1.0 and 2.4.0.0 and earlier Description The issue is related to insufficient input validation in Ansible. An attacker could exploit this by controlling the results of lookup calls, injecting Unicode strings to be parsed by...
DEBIAN-CVE-2015-8790
The EbmlUnicodeString::UpdateFromUTF8 function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted UTF-8 string, which triggers an invalid memory access...
Apple OS X Data Detectors Engine Memory Corruption Vulnerability
Apple OS X is a BSD-based operating system distributed by Apple. A security vulnerability in the Apple OS X Data Detectors Engine allows remote attackers to exploit the vulnerability to create specially constructed unicode characters that can be induced to be parsed by an application, which can...
CVE-2010-1666
Buffer overflow in Dan Pascu python-cjson 1.0.5, when UCS-4 encoding is enabled, allows context-dependent attackers to cause a denial of service application crash or possibly have unspecified other impact via vectors involving crafted Unicode input to the cjson.encode function...
Buffer overflow
Buffer overflow in Dan Pascu python-cjson 1.0.5, when UCS-4 encoding is enabled, allows context-dependent attackers to cause a denial of service application crash or possibly have unspecified other impact via vectors involving crafted Unicode input to the cjson.encode function...
CVE-2010-1666
Buffer overflow in Dan Pascu python-cjson 1.0.5, when UCS-4 encoding is enabled, allows context-dependent attackers to cause a denial of service application crash or possibly have unspecified other impact via vectors involving crafted Unicode input to the cjson.encode function...
PYSEC-2010-30
Buffer overflow in Dan Pascu python-cjson 1.0.5, when UCS-4 encoding is enabled, allows context-dependent attackers to cause a denial of service application crash or possibly have unspecified other impact via vectors involving crafted Unicode input to the cjson.encode function...
CVE-2010-1666
Removed by vendor...