163 matches found
CVE-2021-33286
In NTFS-3G versions 2021.8.22, when a specially crafted unicode string is supplied in an NTFS image a heap buffer overflow can occur and allow for code execution...
Mozilla Rust 缓冲区错误漏洞
Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A buffer overflow vulnerability exists in the Rust standard library prior to version 1.49.0, which stems from the fact that it allows a non-UTF-8 Rust string to be created when there is a problem with the suppli...
Arbitrary Code Execution
python is vulnerable to arbitrary code execution. Multiple buffer and integer overflow flaws were found in the Python Unicode string processing and in the Python Unicode and string object implementations. An attacker could use these flaws to cause a denial of service Python application crash...
ICU: Integer overflow in UnicodeString::doAppend()
An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend function in common/unistr.cpp...
ICU: Integer overflow in UnicodeString::doAppend()
An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend function in common/unistr.cpp...
ICU: Integer overflow in UnicodeString::doAppend()
An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend function in common/unistr.cpp...
ICU: Integer overflow in UnicodeString::doAppend()
An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend function in common/unistr.cpp...
ICU: Integer overflow in UnicodeString::doAppend()
An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend function in common/unistr.cpp...
ICU: Integer overflow in UnicodeString::doAppend()
An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend function in common/unistr.cpp...
ICU: Integer overflow in UnicodeString::doAppend()
An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend function in common/unistr.cpp...
ICU: Integer overflow in UnicodeString::doAppend()
An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend function in common/unistr.cpp...
PT-2020-2137 · International Components For Unicode +8 · Icu +8
Name of the Vulnerable Software and Affected Versions: International Components for Unicode ICU for C/C++ versions through 66.1 Description: An issue exists in the UnicodeString::doAppend function in common/unistr.cpp, related to an integer overflow that leads to a heap-based buffer overflow. Thi...
SharpHide - Tool To Create Hidden Registry Keys
Just a nice persistence trick to confuse DFIR investigation. Uses NtSetValueKey native API to create a hidden null terminated registry key. This works by adding a null byte in front of the UNICODESTRING key valuename. More info about this technique can be found in the following whitepaper:...
CVE-2008-0364
Buffer overflow in 1 BitTorrent 6.0 and earlier; and 2 uTorrent 1.7.5 and earlier, and 1.8-alpha-7834 and earlier in the 1.8.x series; on Windows allows remote attackers to cause a denial of service application crash via a long Unicode string representing a client version identifier...
What stealthy attacks are hiding in API data — and why do most WAF miss them?!
What stealthy attacks are hiding in API data — and why do most WAF miss them?! API Data: What is it and how is it saying it? APIs are the blood flow of today’s applications — from online browser-based apps to mobile apps to sophisticated distributed enterprise applications connecting dozens of...
EasyBoot v6.6.0.800 - (Function Key) Buffer Overflow
Document Title: =============== EasyBoot v6.6.0.800 - Function Key Buffer Overflow References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2155 Release Date: ============= 2018-10-15 Vulnerability Laboratory ID VL-ID: ==================================== 2155...
Scientific Linux Security Update : thunderbird on SL7.x x86_64 (20180524)
This update upgrades Thunderbird to version 52.8.0. Security Fixes : - Mozilla: Memory safety bugs fixed in Firefox 60 and Firefox ESR 52.8 CVE-2018-5150 - Mozilla: Backport critical security fixes in Skia CVE-2018-5183 - Mozilla: Use-after-free with SVG animations and clip paths CVE-2018-5154 -...
Scientific Linux Security Update : firefox on SL6.x i386/x86_64 (20180515)
This update upgrades Firefox to version 52.8.0 ESR. Security Fixes : - Mozilla: Memory safety bugs fixed in Firefox 60 and Firefox ESR 52.8 CVE-2018-5150 - Mozilla: Backport critical security fixes in Skia CVE-2018-5183 - Mozilla: Use-after-free with SVG animations and clip paths CVE-2018-5154 -...
Microsoft Windows - 'nt!NtQuerySystemInformation (SystemPageFileInformation(Ex))' Kernel 64-bit Stack Memory Disclosure
/ We have discovered that the nt!NtQuerySystemInformation system call invoked with the SystemPageFileInformation 0x12 and SystemPageFileInformationEx 0x90 information classes discloses uninitialized kernel stack memory to user-mode clients. The vulnerability affects 64-bit versions of Windows 7 t...
Windows Kernel 64-bit pool memory disclosure in NtQueryVirtualMemory(MemoryMappedFilenameInformation)(CVE-2018-0894)
We have discovered that the nt!NtQueryVirtualMemory system call invoked with the 2 information class MemoryMappedFilenameInformation discloses portions of uninitialized kernel pool memory to user-mode clients. The vulnerability affects 64-bit versions of Windows 7 to 10. The output buffer for thi...