1415 matches found
Document Liberation Project libmwaw Buffer Overflow Vulnerability
Document Liberation Project is a project that enables users to work with vendor-locked content. libmwaw is an older version of the Mac document import library. Document Liberation Project libmwaw The 'MsWrd1Parser::readFootnoteCorrespondance' function in the lib/MsWrd1Parser.cxx file in versions...
HDWiki has a write file vulnerability that can take a shell
Interactive Wiki open source system HDwiki is Interactive Online Beijing Technology Co., Ltd. of an independent intellectual property rights of the Chinese Wiki Wiki system. HDWiki 6.0 version of the background management of any file read-write vulnerability , attackers can exploit the...
Mozilla Network Security Services Denial of Service Vulnerability
Mozilla Network Security Services NSS is the United States Mozilla Foundation developed a library network security services library, it can provide cross-platform support for SSL, S/MIME and other Internet security standards. A security vulnerability exists in Mozilla NSS. A remote attacker could...
Arbitrary code execution vulnerability in FineCms backend controllers\admin\MemberController.php page
FineCMS is a content management system developed using MVC architecture and PDO database interface. An arbitrary code execution vulnerability exists in the Finecms backend controllers\admin\ MemberController.php page. Because the submitted data is not effectively filtered, an attacker can exploit...
CVE-2016-9958
game-music-emu before 0.6.1 allows remote attackers to write to arbitrary memory locations...
CVE-2015-8275
The CVE-2015-8275 entry covers LVRTC eParakstitajs 3.0 (1.3.0) and edoc-libraries-2.5.4_01, where an attacker can write arbitrary files via specially crafted EDOC files. Contemporary connected records confirm an arbitrary file write vulnerability exists in LVRTC eParakstitajs 3/edoc-libraries, wi...
HEVD kernel vulnerability training-with Windows play-bug warning-the black bar safety net
For this training of the research study will kernel vulnerability principle, the use of the way, under Windows many common data structures have a preliminary understanding, from the open Ring0 gate. HEVD project address: https://github.com/hacksysteam/HackSysExtremeVulnerableDriver For the kernel...
Debian DSA-3794-1 : munin - security update
Stevie Trujillo discovered a local file write vulnerability in munin, a network-wide graphing framework, when CGI graphs are enabled. GET parameters are not properly handled, allowing to inject options into munin-cgi-graph and overwriting any file accessible by the user running the cgi-process...
Debian: Security Advisory (DSA-3794-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DEBIAN-CVE-2016-5044
The WRITEUNALIGNED function in dwarfelfaccess.c in libdwarf before 20160923 allows remote attackers to cause a denial of service out-of-bounds write and crash via a crafted DWARF section...
SUSE-SU-2016:3286-1 Security update for libcares2
This update for libcares2 fixes the following issues: - Add patch to fix single byte out of buffer write CVE-2016-5180, bsc1007728...
SUSE-SU-2016:3287-1 Security update for libcares2
This update for libcares2 fixes the following issues: - Add patch to fix single byte out of buffer write CVE-2016-5180, bsc1007728...
McAfee VirusScan Enterprise for Linux authentication token brute force
Added: 12/23/2016 CVE: CVE-2016-8023 BID: 94823 Background McAfee VirusScan Enterprise for Linux is real-time, anti-malware software for Linux. Problem McAfee VirusScan Enterprise for Linux allows remote attackers to execute arbitrary commands by exploiting multiple vulnerabilities, including the...
DEBIAN-CVE-2016-9537
tools/tiffcrop.c in libtiff 4.0.6 has out-of-bounds write vulnerabilities in buffers. Reported as MSVR 35093, MSVR 35096, and MSVR 35097...
CVE-2016-5195
Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write COW feature to write to a read-only memory mapping, as exploited in the wild in October 2016, aka "Dirty COW."...
Hopper Disassembler ELF Section Header Size Code Execution Vulnerability
Summary An exploitable out of bounds write vulnerability exists in the parsing of ELF Section Headers of Hopper App. A specially crafted ELF file can cause attacker controlled pointer arithmetic resulting in a partially controlled out of bounds write. An attacker can craft an ELF file with...
X.Org libXrender Denial of Service Vulnerability
X.Org libXrender is a lightweight library interface proprietary to the Render extension operated by the X.Org Foundation. A security vulnerability exists in X.Org libXrender, which can be exploited by an attacker to cause a denial of service out-of-bounds memory write...
libtiff: invalid assertion
tifluv.c in libtiff allows attackers to cause a denial of service out-of-bounds write via an invalid number of samples per pixel in a LogL compressed TIFF image, a different vulnerability than CVE-2015-8782...
CVE-2016-0784
Directory traversal vulnerability in the Import/Export System Backups functionality in Apache OpenMeetings before 3.1.1 allows remote authenticated administrators to write to arbitrary files via a .. dot dot in a ZIP archive entry...
Android mention the right Vulnerability, CVE-2 0 1 4-7 9 2 0, CVE-2 0 1 4-7 9 2 1 Analysis-vulnerability warning-the black bar safety net
This is the Android mediaserver mention the right vulnerability, use CVE-2 0 1 4-7 9 2 0 and CVE-2 0 1 4-7 9 2 1 to achieve extraction of the right, from 0 permissions mentioned media rights, wherein the CVE-2 0 1 4-7 9 2 1 effects Android 4.0.3 and later versions, the CVE-2 0 1 4-7 9 2 0 affect...