5379 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-3900
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by long Unicode sequence in ActualText. CVE-2024-3900 Note that Nessus relies on the presence of t...
CVE-2010-10016
BS.Player version 2.57 build 1051 contains a vulnerability in its playlist import functionality. When processing .m3u files, the application fails to properly validate the length of playlist entries, resulting in a buffer overflow condition. This flaw occurs during parsing of long URLs embedded i...
CVE-2010-10016
BS.Player 2.57 (build 1051) has a buffer overflow in playlist import when parsing .m3u files due to improper validation of entry lengths. The flaw affects Unicode parsing on the Windows client and can overwrite SEH records when processing long URLs embedded in a crafted playlist, as described acr...
CVE-2010-10016 BS.Player 2.57 Buffer Overflow via M3U Playlist Import
BS.Player version 2.57 build 1051 contains a vulnerability in its playlist import functionality. When processing .m3u files, the application fails to properly validate the length of playlist entries, resulting in a buffer overflow condition. This flaw occurs during parsing of long URLs embedded i...
CVE-2010-10016 BS.Player 2.57 Buffer Overflow via M3U Playlist Import
BS.Player version 2.57 build 1051 contains a vulnerability in its playlist import functionality. When processing .m3u files, the application fails to properly validate the length of playlist entries, resulting in a buffer overflow condition. This flaw occurs during parsing of long URLs embedded i...
CVE-2010-10016
BS.Player version 2.57 build 1051 contains a vulnerability in its playlist import functionality. When processing .m3u files, the application fails to properly validate the length of playlist entries, resulting in a buffer overflow condition. This flaw occurs during parsing of long URLs embedded i...
PT-2025-35368
Name of the Vulnerable Software and Affected Versions: BS.Player version 2.57 build 1051 Description: BS.Player version 2.57 build 1051 contains a flaw in its playlist import functionality. When processing .m3u files, the application does not properly validate the length of playlist entries,...
Linux Distros Unpatched Vulnerability : CVE-2018-1999024
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - MathJax version prior to version 2.7.4 contains a Cross Site Scripting XSS vulnerability in the \unicode macro that can result in Potentially untrusted Javascri...
Linux Distros Unpatched Vulnerability : CVE-2018-11740
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in libtskbase.a in The Sleuth Kit TSK from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the...
Linux Distros Unpatched Vulnerability : CVE-2023-40032
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libvips is a demand-driven, horizontally threaded image processing library. A specially crafted SVG input can cause libvips versions 8.14.3 or earlier to segfau...
Linux Distros Unpatched Vulnerability : CVE-2021-33477
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rxvt-unicode 9.22, rxvt 2.7.10, mrxvt 0.5.4, and Eterm 0.9.7 allow potentially remote code execution because of improper handling of certain escape sequences ES...
Linux Distros Unpatched Vulnerability : CVE-2024-34078
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - html-sanitizer is an allowlist-based HTML cleaner. If using keeptypographicwhitespace=False which is the default, the sanitizer normalizes unicode to the NFKC...
Linux Distros Unpatched Vulnerability : CVE-2022-1586
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compilexclassmatchingpath function of the pcre2jitcompile.c file. This involves a...
Linux Distros Unpatched Vulnerability : CVE-2021-32708
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Flysystem is an open source file storage library for PHP. The whitespace normalisation using in 1.x and 2.x removes any unicode whitespace. Under certain specif...
Linux Distros Unpatched Vulnerability : CVE-2021-4217
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in unzip. The vulnerability occurs due to improper handling of Unicode strings, which can lead to a null pointer dereference. This flaw allows ...
Linux Distros Unpatched Vulnerability : CVE-2021-39908
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In all versions of GitLab CE/EE starting from 0.8.0 before 14.2.6, all versions starting from 14.3 before 14.3.4, and all versions starting from 14.4 before...
Linux Distros Unpatched Vulnerability : CVE-2017-7653
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Eclipse Mosquitto broker up to version 1.4.15 does not reject strings that are not valid UTF-8. A malicious client could cause other clients that do reject...
Linux Distros Unpatched Vulnerability : CVE-2016-2216
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The HTTP header parsing code in Node.js 0.10.x before 0.10.42, 0.11.6 through 0.11.16, 0.12.x before 0.12.10, 4.x before 4.3.0, and 5.x before 5.6.0 allows remo...
CVE-2010-20042
Xion Audio Player versions prior to 1.0.126 are vulnerable to a Unicode-based stack buffer overflow triggered by opening a specially crafted .m3u playlist file. The file contains an overly long string that overwrites the Structured Exception Handler SEH chain, allowing an attacker to hijack...
TencentOS Server 4: python3.11 (TSSA-2025:0531)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0531 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...