RSS   Podatności dla 'MING'   RSS

2022-03-10
 
CVE-2021-34338

CWE-787
 

 
Ming 0.4.8 has an out-of-bounds buffer overwrite issue in the function getName() in decompiler.c file that causes a direct segmentation fault and leads to denial of service.

 
 
CVE-2021-34339

CWE-787
 

 
Ming 0.4.8 has an out-of-bounds buffer access issue in the function getString() in decompiler.c file that causes a direct segmentation fault and leads to denial of service.

 
 
CVE-2021-34340

CWE-787
 

 
Ming 0.4.8 has an out-of-bounds buffer access issue in the function decompileINCR_DECR() in decompiler.c file that causes a direct segmentation fault and leads to denial of service.

 
 
CVE-2021-34341

CWE-125
 

 
Ming 0.4.8 has an out-of-bounds read vulnerability in the function decompileIF() in the decompile.c file that causes a direct segmentation fault and leads to denial of service.

 
 
CVE-2021-34342

CWE-125
 

 
Ming 0.4.8 has an out-of-bounds read vulnerability in the function newVar_N() in decompile.c which causes a huge information leak.

 
2019-02-24
 
CVE-2019-9114

CWE-787
 

 
Ming (aka libming) 0.4.8 has an out of bounds write vulnerability in the function strcpyext() in the decompile.c file in libutil.a.

 
 
CVE-2019-9113

CWE-476
 

 
Ming (aka libming) 0.4.8 has a NULL pointer dereference in the function getString() in the decompile.c file in libutil.a.

 
2017-07-29
 
CVE-2017-11734

CWE-125
 

 
A heap-based buffer over-read was found in the function decompileCALLFUNCTION in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

 
 
CVE-2017-11733

CWE-476
 

 
A null pointer dereference vulnerability was found in the function stackswap (called from decompileSTACKSWAP) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

 
 
CVE-2017-11732

CWE-119
 

 
A heap-based buffer overflow vulnerability was found in the function dcputs (called from decompileIMPLEMENTS) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

 


Copyright 2024, cxsecurity.com

 

Back to Top