CWE:
 

Topic
Date
Author
Med.
libxml2 xmlParseNameComplex Integer Overflow
15.11.2022
Google Security Resear...
Med.
cmark-gfm Integer overflow
06.04.2022
Google Security Resear...
Med.
ExpressVPN VPN Router 1.0 Router Login Panels Integer Overflow
13.04.2021
Jai Kumar Sharma
High
Google Chrome SimplfiedLowering Integer Overflow
12.04.2021
Rajvardhan Agarwal
Med.
ReadyTalk Avian JVM FileOutputStream.write() Integer Overflow
13.11.2020
Pietro Oliva
High
iOS 12.4 Sandbox Escape due to Integer Overflow in mediaserverd
03.12.2019
Anonymouse
High
Microsoft DirectWrite / AFDKO dnaGrow Insufficient Integer Overflow Check
12.07.2019
Google Security Resear...
High
Xen xen-netback xenvif_set_hash_mapping Integer Overflow
17.08.2018
Felix Wilhelm
High
Google Chrome Swiftshader Texture Allocation Integer Overflow
24.07.2018
Google Security Resear...
Med.
Chrome V8 PropertyArray Integer Overflow
27.02.2018
Google Security Resear...
Med.
Artifex MuJS 1.0.2 Integer Overflow
29.01.2018
Andrea Sindoni
High
Microsoft Edge Chakra chakra!Js::GlobalObject Integer Overflow
22.08.2017
Ker Team
Med.
Microsoft Windows 8.1 (x64) RGNOBJ Integer Overflow MS16-098
09.08.2017
Saif
Med.
MySQL 5.6.35 / 5.7.17 Integer Overflow
02.05.2017
Rodrigo Marcos
Med.
tnef 1.4.12 OOB Read / Write / Type Confusions / Integer Overflows
24.02.2017
X41
Med.
Microsoft Windows 8.1 (x64) RGNOBJ Integer Overflow
12.01.2017
Saif
Med.
Android Stagefright MP4 tx3g Integer Overflow
27.09.2016
jduck
Med.
libquicktime 1.2.4 Integer Overflow
24.02.2016
Marco Romano
Med.
Python 2.7 check_multiply_size() Integer Overflow
03.11.2015
John Leitch
Med.
Python 2.7 strop.replace() Integer Overflow
03.11.2015
John Leitch
Med.
.NET Framework Integer Overflow
29.07.2015
Yorick Koster
Med.
ICU Heap / Integer Overflows
06.05.2015
Pedro Ribeiro
High
Adobe Flash Player copyPixelsToByteArray Integer Overflow
20.04.2015
Juan vazquez
Med.
Hancom Office Hwp 2014 Integer Overflow
15.04.2015
Daniel Regalado
High
Adobe Flash Player casi32 Integer Overflow
11.04.2015
Juan Vazquez
Med.
Libtiff 4.0.3 Integer Overflow
24.12.2014
Project Zero Labs
High
glibc 2.12 vfprintf function Multiple Vulnerabilities
20.06.2014
Multiple
Med.
PostgreSQL 8.4.1 Denial Of Service Integer Overflow
15.06.2014
Bernt Marius Johnsen
High
Microsoft Tagged Image File Format (TIFF) Integer Overflow
28.11.2013
sinn3r
High
IJG jpeg6b / libjpeg-turbo Uninitialized Memory
13.11.2013
Michal Zalewski
Med.
Apple Motion 5.0.7 Integer Overflow
08.10.2013
Jean Pascal Pereira
High
Code Sector TeraCopy 2.3 Integer Overflow
19.09.2013
Gjoko 'LiquidWorm' Krs...
High
nginx 1.3.9 / 1.4.0 x86 Brute Force Remote Exploit Description
25.07.2013
kingcope
High
Microsoft Internet Explorer COALineDashStyleArray Integer Overflow
13.06.2013
Nicolas Joly
High
Microsoft Internet Explorer 10-9-8-7-6 VML Remote Integer Overflow
23.05.2013
Nicolas Joly
High
nginx ngx_http_close_connection() Integer Overflow
26.04.2013
Safe3
Med.
Linux Kernel i915 driver in the Direct Rendering Manager Integer Overflow
21.03.2013
Kees Cook
Med.
QlikView Desktop Client 11.00 SR2 Integer Overflow
14.03.2013
A. Antukh, M. Lucinski...
Low
Cam2pc BMP Image Processing Integer Overflow Vulnerability
12.03.2013
kavehghaemmaghami
Med.
Novell Groupwise 8.0.2 HP3 and 2012 Integer Overflow Vulnerability
18.09.2012
Francis Provencher
High
Adobe Flash Player \"Matrix3D\" Integer Overflow Code Execution
11.09.2012
Nicolas Joly
High
Sielco Sistemi Winlog <= 2.07.16 Integer Overflow
21.08.2012
Luigi Auriemma
High
OpenOffice.org vclmi.dll Integer Overflow
17.05.2012
Tielei Wang
High
.NET Framework EncoderParameter Integer Overflow
24.04.2012
Yorick Koster
Med.
Opera 11.60 Array Integer Overflow
04.02.2012
Code Audit Labs
High
Lighttpd 1.5.0 Proof of Concept
02.01.2012
Adam Zabrocki
High
Mozilla Firefox Array.reduceRight() Integer Overflow Exploit
23.10.2011
Matteo Memelli
High
Apple QuickTime PICT PnSize Buffer Overflow
05.09.2011
Matt "j00ru" Jurczyk
High
Bluetooth: Prevent buffer overflow in l2cap config request
01.09.2011
Dan Rosenberg
High
linux kernel 2.6.33.13 dccp handle invalid feature options length
01.07.2011
Dan Rosenberg
High
Lotus Notes 8.0.x - 8.5.2 FP2 - Autonomy Keyview (.lzh attachment)
30.06.2011
metasploit
High
DATAC RealWin <= 2.1 (Build 6.1.10.10) integer overflow
07.04.2011
Luigi Auriemma
High
xpdf multiple vulnerabilities allow remote code execution
02.04.2011
Advisories Toucan-Syst...
High
PHP <= 5.3.6 shmop_read() Integer Overflow DoS
17.03.2011
Jose Carlos Norte
Med.
Linux Kernel < 2.6.37-rc2 TCP_MAXSEG Kernel Panic DoS
11.03.2011
zx2c4
Low
Linux Kernel <= 2.6.37 Local Kernel Denial of Service
02.03.2011
prdelka
High
CA ETrust Secure Content Manager Common Services Transport Remote Code Execution Vulnerability
14.02.2011
Sebastian Apelt
Med.
Libpng \"png_set_rgb_to_gray()\" Transform Buffer Overflow Vulnerability
19.01.2011
Glenn Randers-Pehrson
Low
linux kernel 2.6.35 Integer overflow in RDS cmsg
13.01.2011
Dan Rosenberg
High
linux kernel 2.6.36.1 bad parsing X.25
09.01.2011
Dan Rosenberg
Med.
linux kernel 2.6.36.1 TIPC security issues
30.12.2010
Dan Rosenberg
High
Winamp NSV Table of Contents Parsing Integer Overflow
03.12.2010
Secunia Research
Med.
IBM solidDB <= 6.5.0.3 Denial of Service Vulnerability
27.10.2010
null
Med.
Linux Kernel < 2.6.36-rc6 pktcdvd Kernel Memory Disclosure
06.10.2010
Jon Oberheide
Med.
bzip2 1.0.5 integer overflow
01.10.2010
Solar Designer
High
Mozilla Firefox CSS font-face Remote Code Execution Vulnerability
30.09.2010
Abysssec
High
Firefox Plugin Parameter EnsureCachedAttrParamArrays Remote Code Execution
22.09.2010
Abysssec
High
RealPlayer 11.1 FLV Parsing Integer Overflow
15.09.2010
Abysssec
High
RealPlayer 11 FLV Parsing Integer Overflow
14.09.2010
Abysssec
High
Linux Kernel < 2.6.36-rc1 CAN BCM Privilege Escalation Exploit
13.09.2010
Jon Oberheide
High
Mozilla Firefox XSLT Sort Remote Code Execution Vulnerability
13.09.2010
Abysssec
Med.
Apple QuickTime FlashPix NumberOfTiles Remote Code Execution Vulnerability
03.09.2010
Abysssec
High
Adobe Shockwave TextXtra Allocator Integer Overflow Remote Code Execution Vulnerability
31.08.2010
ZDI
High
Adobe Shockwave Director tSAC Chunk Remote Code Execution Vulnerability
30.08.2010
ZDI
High
Adobe Shockwave Player Director Remote Code Execution Vulnerability (2)
30.08.2010
ZDI
Low
linux kernel 2.6.33.7 integer overflow in ext4_ext_get_blocks()
24.08.2010
Eugene Teo
High
FreeType 2 Font File Processing Errors (Execute Arbitrary Code)
22.08.2010
Werner LEMBERG
High
SWFTools Two Integer Overflow Vulnerabilities
20.08.2010
Secunia Research
Med.
glpng PNG Processing Two Integer Overflow Vulnerabilities
16.08.2010
Secunia Research
Med.
cabextract -- 1, Infinite loop in MS-ZIP
10.08.2010
Jan Lieskovsky
High
Novell iManager 2.7.2 Multiple Vulnerabilities
30.06.2010
CORE
High
SBLIM SFCBs up to 1.3.7 pre-auth remote integer and heap overflow
04.06.2010
Agarri
Med.
libopie __readrec() off-by one (FreeBSD ftpd remote PoC)
27.05.2010
Maksymilian Arciemowic...
High
linux kernel 2.6.33 ALSA hda-intel Avoid divide by zero crash
10.04.2010
Eugene Teo
Med.
Apple QuickTime FlashPix NumberOfTiles Remote Code Execution Vulnerability
03.04.2010
ZDI
Med.
Safari browser port blocking bypassed by integer overflow
26.03.2010
Gary Niger
High
XnView DICOM Parsing Integer Overflow Vulnerability
16.03.2010
Secunia Research
High
Multiple Vendor librpc.dll Signedness Error Remote Code Execution Vulnerability
07.03.2010
ZDI
High
Luxology Modo 401 .LXO Integer Overflow
07.03.2010
CORE
High
SystemTap 1.1 Local Memory Corruption Vulnerabilities
11.02.2010
Vincent Danen
High
Adobe Shockwave Player 3D Model Two Integer Overflows
22.01.2010
Secunia Research
High
Winamp 5.56 PNG and JPEG Data Integer Overflow Vulnerabilities
22.12.2009
VUPEN
High
HP OpenView Storage Data Protector Remote Arbitrary Code Execution
22.12.2009
HP
High
Winamp 5.56 Oktalyzer Parsing Integer Overflow Vulnerability
22.12.2009
Secunia Research
High
CoreHTTP web server off-by-one buffer overflow vulnerability
10.12.2009
Patroklos Argyroudis
High
Roxio Creator Image Rendering Integer Overflow Vulnerability
07.12.2009
Secunia Research
High
Gimp PSD Image Parsing Integer Overflow Vulnerability
20.11.2009
Secunia Research
High
Gimp BMP Image Parsing Integer Overflow Vulnerability
16.11.2009
Secunia Research
High
linux kernel 2.6.25.15 kvm integer overflow kvm_dev_ioctl_get_supported_cpuid()
02.11.2009
Eugene Teoleugeneteo
Low
ax25_setsockopt function - Integer signedness error - Denial of Service Vulnerability
22.10.2009
Fedora Team


CVEMAP Search Results

CVE
Details
Description
2022-11-29
Waiting for details
CVE-2022-4202

Updating...
 

 
A vulnerability, which was classified as problematic, was found in GPAC 2.1-DEV-rev490-g68064e101-master. Affected is the function lsr_translate_coords of the file laser/lsr_dec.c. The manipulation leads to integer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-214518 is the identifier assigned to this vulnerability.

 
2022-11-13
Waiting for details
CVE-2022-3970

Updating...
 

 
A vulnerability was found in LibTIFF. It has been classified as critical. This affects the function TIFFReadRGBATileExt of the file libtiff/tif_getimage.c. The manipulation leads to integer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 227500897dfb07fb7d27f7aa570050e62617e3be. It is recommended to apply a patch to fix this issue. The identifier VDB-213549 was assigned to this vulnerability.

 
2022-10-29
Waiting for details
CVE-2022-3756

Updating...
 

 
A vulnerability was found in Exiv2. It has been classified as critical. Affected is the function QuickTimeVideo::userDataDecoder of the file quicktimevideo.cpp of the component QuickTime Video Handler. The manipulation leads to integer overflow. It is possible to launch the attack remotely. The name of the patch is bf4f28b727bdedbd7c88179c30d360e54568a62e. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-212496.

 
2019-08-14
Medium
CVE-2014-10375

Updating...
 

 
handle_messages in eXtl_tls.c in eXosip before 5.0.0 mishandles a negative value in a content-length header.

 
2019-08-07
Medium
CVE-2019-14763

Vendor: Linux
Software: Linux kernel
 

 
In the Linux kernel before 4.16.4, a double-locking error in drivers/usb/dwc3/gadget.c may potentially cause a deadlock with f_hid.

 
2019-07-15
Medium
CVE-2019-1010294

Vendor: Linaro
Software: Op-tee
 

 
Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Rounding error. The impact is: Potentially leaking code and/or data from previous Trusted Application. The component is: optee_os. The fixed version is: 3.4.0 and later.

 
2019-05-09
Medium
CVE-2019-11837

Vendor: Nginx
Software: NJS
 

 
njs through 0.3.1, used in NGINX, has a segmentation fault in String.prototype.toBytes for negative arguments, related to nxt_utf8_next in nxt/nxt_utf8.h and njs_string_offset in njs/njs_string.c.

 
2019-02-19
Medium
CVE-2019-5755

Vendor: Google
Software: Chrome
 

 
Incorrect handling of negative zero in V8 in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page.

 
2019-02-01
Medium
CVE-2019-7308

Vendor: Linux
Software: Linux kernel
 

 
kernel/bpf/verifier.c in the Linux kernel before 4.20.6 performs undesirable out-of-bounds speculation on pointer arithmetic in various cases, including cases of different branches with different state or limits to sanitize, leading to side-channel attacks.

 
2018-04-18
High
CVE-2016-10490

Vendor: Qualcomm
Software: Mdm9206 firmware
 

 
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810, SD 820, SD 820A, SD 835, SD 845, SD 850, and SDX20, if a negative value is passed as argument "max" to qurt_qdi_state_local_new_handle_from_obj, an buffer overflow occurs, due to typecasting the signed integer to unsigned.

 

 


Copyright 2024, cxsecurity.com

 

Back to Top