|
2015-12-18
|
|
Adobe Flash MovieClip.localToGlobal - Use-After-Free
|
5 |
DOS
|
Google Security Research
|
|
2015-12-18
|
|
Adobe Flash MovieClip.attachMovie - Use-After-Free
|
5 |
DOS
|
Google Security Research
|
|
2015-12-18
|
|
Adobe Flash TextField.tabIndex Setter - Use-After-Free
|
5 |
DOS
|
Google Security Research
|
|
2015-12-18
|
|
Adobe Flash TextField.text Setter - Use-After-Free
|
5 |
DOS
|
Google Security Research
|
|
2015-12-18
|
|
Adobe Flash TextField.type Setter - Use-After-Free
|
5 |
DOS
|
Google Security Research
|
|
2015-12-18
|
|
Adobe Flash TextField.htmlText Setter - Use-After-Free
|
4 |
DOS
|
Google Security Research
|
|
2015-12-18
|
|
Adobe Flash - TextField.Variable Setter Use-After-Free
|
4 |
DOS
|
Google Security Research
|
|
2015-12-18
|
|
Adobe Flash - 'TextField' Use-After Free
|
6 |
DOS
|
Google Security Research
|
|
2015-12-18
|
|
Adobe Flash TextField.replaceText - Use-After-Free
|
5 |
DOS
|
Google Security Research
|
|
2015-12-18
|
|
Adobe Flash TextField.replaceSel - Use-After-Free
|
5 |
DOS
|
Google Security Research
|
|
2015-12-18
|
|
Adobe Flash TextField.setFormat - Use-After-Free
|
5 |
DOS
|
Google Security Research
|
|
2015-12-18
|
|
Adobe Flash TextField.thickness Setter - Use-After-Free
|
5 |
DOS
|
Google Security Research
|
|
2015-12-18
|
|
Adobe Flash TextField.sharpness Setter - Use-After-Free
|
4 |
DOS
|
Google Security Research
|
|
2015-12-18
|
|
Adobe Flash Selection.SetSelection - Use-After-Free
|
5 |
DOS
|
Google Security Research
|
|
2015-12-18
|
|
Adobe Flash MovieClip.duplicateMovieClip - Use-After-Free
|
4 |
DOS
|
Google Security Research
|
|
2015-12-18
|
|
Adobe Flash MovieClip.startDrag - Use-After-Free
|
4 |
DOS
|
Google Security Research
|
|
2015-12-18
|
|
Adobe Flash MovieClip.attachBitmap - Use-After-Free
|
5 |
DOS
|
Google Security Research
|
|
2015-12-18
|
|
Google Chrome - Renderer Process to Browser Process Privilege Escalation
|
5 |
DOS
|
Google Security Research
|
|
2015-12-18
|
|
Apache 2.4.17 - Denial of Service
|
5 |
DOS
|
rUnViRuS
|
|
2015-12-17
|
|
win32k Clipboard Bitmap - Use-After-Free
|
5 |
DOS
|
Nils Sommer
|
|
2015-12-17
|
|
win32k Desktop and Clipboard - Null Pointer Dereference
|
5 |
DOS
|
Nils Sommer
|
|
2015-12-17
|
|
Microsoft Windows Kernel - 'win32k!OffsetChildren' Null Pointer Dereference
|
5 |
DOS
|
Nils Sommer
|
|
2015-12-17
|
|
Adobe Flash GradientFill - Use-After-Frees
|
5 |
DOS
|
Google Security Research
|
|
2015-12-17
|
|
Adobe Flash MovieClip.lineStyle - Use-After-Frees
|
5 |
DOS
|
Google Security Research
|
|
2015-12-17
|
|
Adobe Flash TextField.gridFitType Setter - Use-After-Free
|
5 |
DOS
|
Google Security Research
|
|
2015-12-17
|
|
Adobe Flash TextField.antiAliasType Setter - Use-After-Free
|
6 |
DOS
|
Google Security Research
|
|
2015-12-16
|
|
Wireshark - getRate Stack Out-of-Bounds Read
|
6 |
DOS
|
Google Security Research
|
|
2015-12-16
|
|
Wireshark - AirPDcapPacketProcess Stack Buffer Overflow
|
5 |
DOS
|
Google Security Research
|
|
2015-12-16
|
|
Wireshark - find_signature Stack Out-of-Bounds Read
|
5 |
DOS
|
Google Security Research
|
|
2015-12-16
|
|
Wireshark - dissect_diameter_base_framed_ipv6_prefix Stack Buffer Overflow
|
5 |
DOS
|
Google Security Research
|
|
2015-12-16
|
|
Wireshark - addresses_equal 'dissect_rsvp_common' Use-After-Free
|
5 |
DOS
|
Google Security Research
|
|
2015-12-16
|
|
Wireshark - ascend_seek Static Out-of-Bounds Read
|
4 |
DOS
|
Google Security Research
|
|
2015-12-16
|
|
Wireshark - my_dgt_tbcd_unpack Static Buffer Overflow
|
6 |
DOS
|
Google Security Research
|
|
2015-12-16
|
|
Wireshark - dissect_nbap_MACdPDU_Size SIGSEGV
|
6 |
DOS
|
Google Security Research
|
|
2015-12-16
|
|
Wireshark - memcpy 'get_value / dissect_btatt' SIGSEGV
|
5 |
DOS
|
Google Security Research
|
|
2015-12-16
|
|
Wireshark - file_read 'wtap_read_bytes_or_eof/mp2t_find_next_pcr' Stack Buffer Overflow
|
5 |
DOS
|
Google Security Research
|
|
2015-12-16
|
|
Wireshark - dissct_rsl_ipaccess_msg Static Out-of-Bounds Read
|
5 |
DOS
|
Google Security Research
|
|
2015-12-16
|
|
Wireshark - dissect_zcl_pwr_prof_pwrprofstatersp Static Out-of-Bounds Read
|
5 |
DOS
|
Google Security Research
|
|
2015-12-16
|
|
Wireshark - wmem_alloc Assertion Failure
|
5 |
DOS
|
Google Security Research
|
|
2015-12-16
|
|
Wireshark - dissect_tds7_colmetadata_token Stack Buffer Overflow
|
5 |
DOS
|
Google Security Research
|
|
2015-12-16
|
|
Wireshark - iseries_parse_packet Heap Buffer Overflow
|
5 |
DOS
|
Google Security Research
|
|
2015-12-15
|
|
IBM Tivoli Storage Manager FastBack Server 5.5.4.2 - '_FXCLI_GetConfFileChunk' Stack Buffer Overflow
|
4 |
DOS
|
Ptrace Security
|
|
2015-12-15
|
|
IBM Tivoli Storage Manager FastBack Server 5.5.4.2 - '_FXCLI_SetConfFileChunk' Stack Buffer Overflow
|
6 |
DOS
|
Ptrace Security
|
|
2015-12-15
|
|
IBM Tivoli Storage Manager FastBack Server 5.5.4.2 - Invalid Pointer Dereference
|
7 |
DOS
|
Ptrace Security
|
|
2015-12-14
|
|
Microsoft Internet Explorer 11 - MSHTML!CObjectElement Use-After-Free (MS15-124)
|
7 |
DOS
|
Moritz Jodeit
|
|
2015-12-14
|
|
Adobe Flash - Type Confusion in Serialization with ObjectEncoder.dynamicPropertyWriter
|
5 |
DOS
|
Google Security Research
|
|
2015-12-14
|
|
Adobe Flash - Type Confusion in IExternalizable.readExternal When Performing Local Serialization
|
7 |
DOS
|
Google Security Research
|
|
2012-03-14
|
|
VideoLAN VLC Media Player 1.1.11 - '.EAC3' File Denial of Service
|
5 |
DOS
|
Dan Fosco
|
|
2012-03-14
|
|
VideoLAN VLC Media Player 1.1.11 - '.NSV' File Denial of Service
|
5 |
DOS
|
Dan Fosco
|
|
2015-12-10
|
|
Avast! - Integer Overflow Verifying numFonts in TTC Header
|
5 |
DOS
|
Google Security Research
|
|
2015-12-10
|
|
Avast! - Heap Overflow Unpacking MoleBox Archives
|
5 |
DOS
|
Google Security Research
|
|
2015-12-10
|
|
Avast! - JetDb::Ised4x Performs Unbounded Search on Input
|
5 |
DOS
|
Google Security Research
|
|
2015-12-10
|
|
Avast! - Out-of-Bounds Write Decrypting PEncrypt Packed executables
|
5 |
DOS
|
Google Security Research
|
|
2015-12-10
|
|
Rar - CmdExtract::UnstoreFile Integer Truncation Memory Corruption
|
4 |
DOS
|
Google Security Research
|
|
2015-12-09
|
|
Apple Mac OSX 10.11 - FTS Deep Structure of the FileSystem Buffer Overflow
|
7 |
DOS
|
Maksymilian Arciemowicz
|
|
2015-12-09
|
|
Microsoft Internet Explorer 11.0.9600.18097 - COmWindowProxy::SwitchMarkup NULL PTR
|
5 |
DOS
|
Marcin Ressel
|
|
2013-12-19
|
|
DenyHosts - 'regex.py' Remote Denial of Service
|
7 |
DOS
|
Helmut Grohne
|
|
2013-12-16
|
|
Icinga - cgi/config.c process_cgivars Function Off-by-One Read Remote Denial of Service
|
5 |
DOS
|
DTAG Group Information Security
|
|
2015-12-06
|
|
WinAsm Studio 5.1.8.8 - Buffer Overflow Crash (PoC)
|
5 |
DOS
|
Un_N0n
|
|
2015-12-03
|
|
Malwarebytes AntiVirus 2.2.0 - Denial of Service (PoC)
|
7 |
DOS
|
Francis Provencher
|
|
2015-12-03
|
|
Gnome Nautilus 3.16 - Denial of Service
|
5 |
DOS
|
Panagiotis Vagenas
|
|
2012-09-05
|
|
Net-SNMP - SNMPD AgentX Subagent Timeout Denial of Service
|
6 |
DOS
|
Ken Farnen
|
|
2013-04-04
|
|
Mozilla Firefox - Cookie Verification Denial of Service
|
5 |
DOS
|
anonymous
|
|
2015-11-23
|
|
Microsoft Windows Kernel - Device Contexts and NtGdiSelectBitmap Use-After-Free (MS15-115)
|
5 |
DOS
|
Nils Sommer
|
|
2015-11-23
|
|
Microsoft Windows - Race Condition DestroySMWP Use-After-Free (MS15-115)
|
6 |
DOS
|
Nils Sommer
|
|
2015-11-23
|
|
Microsoft Windows - Cursor Object Memory Leak (MS15-115)
|
7 |
DOS
|
Nils Sommer
|
|
2015-11-23
|
|
Microsoft Windows - 'ndis.sys' IOCTL 0x170034 (ndis!ndisNsiGetIfNameForIfIndex) Pool Buffer Overflow
|
6 |
DOS
|
Nils Sommer
|
|
2015-11-23
|
|
Audacious 3.7 - ID3 Local Crash (PoC)
|
6 |
DOS
|
Antonio Z.
|
|
2015-11-23
|
|
Oracle Outside In PDF 8.5.2 - Parsing Memory Corruption (2)
|
5 |
DOS
|
Francis Provencher
|
|
2015-11-23
|
|
Oracle Outside In PDF 8.5.2 - Parsing Memory Corruption (1)
|
5 |
DOS
|
Francis Provencher
|
|
2015-11-23
|
|
Acrobat Reader DC 15.008.20082.15957 - '.PDF' Parsing Memory Corruption
|
5 |
DOS
|
Francis Provencher
|
|
2013-09-30
|
|
Abuse HTTP Server - Remote Denial of Service
|
6 |
DOS
|
Zico Ekel
|
|
2013-09-23
|
|
Blue Coat ProxySG 5.x and Security Gateway OS - Denial of Service
|
5 |
DOS
|
anonymous
|
|
2013-09-22
|
|
ShareKM - Remote Denial of Service
|
5 |
DOS
|
Yuda Prawira
|
|
2015-11-19
|
|
Google Chrome - open-vcdiff Out-of-Bounds Read in Browser Process Integer Overflow
|
6 |
DOS
|
Google Security Research
|
|
2015-11-19
|
|
Sam Spade 1.14 - Decode URL Buffer Overflow Crash (PoC)
|
5 |
DOS
|
Vivek Mahajan
|
|
2015-11-19
|
|
SuperScan 4.1 - Windows Enumeration Hostname/IP/URL Field Overflow (SEH)
|
5 |
DOS
|
Luis Martínez
|
|
2015-11-19
|
|
SuperScan 4.1 - Tools Hostname/IP/URL Field Buffer Overflow
|
5 |
DOS
|
Luis Martínez
|
|
2015-11-19
|
|
SuperScan 4.1 - Scan Hostname/IP Field Buffer Overflow
|
4 |
DOS
|
Luis Martínez
|
|
2013-04-16
|
|
Pwstore - Denial of Service
|
5 |
DOS
|
Josep Pi Rodriguez
|
|
2015-11-16
|
|
Kaspersky AntiVirus - '.ZIP' File Format Use-After-Free
|
5 |
DOS
|
Google Security Research
|
|
2015-11-16
|
|
Kaspersky AntiVirus - '.DEX' File Format Memory Corruption
|
6 |
DOS
|
Google Security Research
|
|
2015-11-16
|
|
Kaspersky AntiVirus - Certificate Handling Directory Traversal
|
6 |
DOS
|
Google Security Research
|
|
2015-11-16
|
|
Microsoft Windows Kernel - 'win32k.sys' Malformed OS/2 Table TTF Font Processing Pool-Based Buffer O
|
5 |
DOS
|
Google Security Research
|
|
2015-11-16
|
|
Microsoft Windows Kernel - 'win32k.sys' Malformed TrueType Program TTF Font Processing Pool-Based Bu
|
5 |
DOS
|
Google Security Research
|
|
2015-11-16
|
|
foobar2000 1.3.9 - '.asx' Local Crash (PoC)
|
5 |
DOS
|
Antonio Z.
|
|
2015-11-16
|
|
foobar2000 1.3.9 - '.pls' / '.m3u' / '.m3u8' Local Crash (PoC)
|
5 |
DOS
|
Antonio Z.
|
|
2015-11-16
|
|
Sam Spade 1.14 - Browse URL Buffer Overflow (PoC)
|
6 |
DOS
|
Nipun Jaswal
|
|
2015-11-16
|
|
TECO AP-PCLINK 1.094 - '.tpc' File Handling Buffer Overflow (PoC)
|
6 |
DOS
|
LiquidWorm
|
|
2015-11-16
|
|
TECO TP3-PCLINK 2.1 - '.tpc' Handling Buffer Overflow (PoC)
|
6 |
DOS
|
LiquidWorm
|
|
2015-11-16
|
|
TECO SG2 FBD Client 3.51 - '.gfb' Overwrite Buffer Overflow (SEH) (PoC)
|
9 |
DOS
|
LiquidWorm
|
|
2015-11-12
|
|
Sam Spade 1.14 - S-Lang Command Field Overflow (SEH)
|
7 |
DOS
|
Nipun Jaswal
|
|
2015-11-12
|
|
TACK 1.07 - Local Stack Buffer Overflow
|
5 |
DOS
|
Juan Sacco
|
|
2015-11-11
|
|
FBZX 2.10 - Local Stack Buffer Overflow
|
6 |
DOS
|
Juan Sacco
|
|
2015-11-09
|
|
FreeType 2.6.1 - TrueType tt_sbit_decoder_load_bit_aligned Heap Out-of-Bounds Read
|
5 |
DOS
|
Google Security Research
|
|
2015-11-09
|
|
POP Peeper 4.0.1 - Overwrite (SEH)
|
5 |
DOS
|
Un_N0n
|
|
2015-11-07
|
|
QNap QVR Client 5.1.0.11290 - Crash (PoC)
|
4 |
DOS
|
Luis Martínez
|
|
2013-07-01
|
|
FileCOPA FTP Server - Remote Denial of Service
|
5 |
DOS
|
Chako
|
|
2013-07-02
|
|
RealNetworks RealPlayer - Denial of Service
|
5 |
DOS
|
Akshaysinh Vaghela
|
|
2013-07-01
|
|
libvirt - 'virConnectListAllInterfaces' Method Denial of Service
|
6 |
DOS
|
Daniel P. Berrange
|
|
2015-11-04
|
|
FreeType 2.6.1 - TrueType tt_cmap14_validate Parsing Heap Out-of-Bounds Reads
|
5 |
DOS
|
Google Security Research
|
|
2015-11-03
|
|
Python 3.3 < 3.5 - 'product_setstate()' Out-of-Bounds Read
|
5 |
DOS
|
John Leitch
|
|
2015-11-03
|
|
Python 2.7 - 'strop.replace()' Method Integer Overflow
|
5 |
DOS
|
John Leitch
|
|
2015-11-03
|
|
Python 2.7 - 'array.fromstring' Method Use-After-Free
|
5 |
DOS
|
John Leitch
|
|
2015-11-03
|
|
Python 2.7 hotshot Module - 'pack_string' Heap Buffer Overflow (PoC)
|
6 |
DOS
|
John Leitch
|
|
2015-11-03
|
|
Samsung - libQjpeg Image Decoding Memory Corruption
|
5 |
DOS
|
Google Security Research
|
|
2015-11-03
|
|
Samsung Galaxy S6 Samsung Gallery - Bitmap Decoding Crash
|
5 |
DOS
|
Google Security Research
|
|
2015-11-03
|
|
Samsung Galaxy S6 - libQjpeg DoIntegralUpsample Crash
|
6 |
DOS
|
Google Security Research
|
|
2015-11-03
|
|
Samsung Galaxy S6 - android.media.process Face Recognition Memory Corruption
|
6 |
DOS
|
Google Security Research
|
|
2015-11-03
|
|
Samsung Galaxy S6 Samsung Gallery - GIF Parsing Crash
|
5 |
DOS
|
Google Security Research
|
|
2013-06-26
|
|
Oracle VM VirtualBox 4.0 - 'tracepath' Local Denial of Service
|
5 |
DOS
|
Thomas Dreibholz
|
|
2013-06-05
|
|
Linux Kernel 3.0.5 - 'test_root()' Local Denial of Service
|
6 |
DOS
|
Jonathan Salwan
|
|
2015-10-30
|
|
Microsoft Windows - NtCreateLowBoxToken Handle Capture Local Denial of Service / Privilege Escalatio
|
6 |
DOS
|
Google Security Research
|
|
2015-10-29
|
|
NetUSB - Kernel Stack Buffer Overflow
|
5 |
DOS
|
Adrián Ruiz Bermudo
|
|
2015-10-29
|
|
Sam Spade 1.14 - Scan From IP Address Field Overflow Crash (SEH) (PoC)
|
5 |
DOS
|
Luis Martínez
|
|
2015-10-28
|
|
Samsung - SecEmailComposer QUICK_REPLY_BACKGROUND Permissions
|
4 |
DOS
|
Google Security Research
|
|
2015-10-28
|
|
Samsung fimg2d - FIMG2D_BITBLT_BLIT ioctl Concurrency Flaw
|
5 |
DOS
|
Google Security Research
|
|
2015-10-28
|
|
Samsung - 'seiren' Kernel Driver Buffer Overflow
|
6 |
DOS
|
Google Security Research
|
|
2015-10-28
|
|
Samsung - 'm2m1shot' Kernel Driver Buffer Overflow
|
6 |
DOS
|
Google Security Research
|
|
2013-05-29
|
|
Code::Blocks - Denial of Service
|
4 |
DOS
|
ariarat
|
|
2013-04-27
|
|
Elecard MPEG Player - '.m3u' File Buffer Overflow
|
5 |
DOS
|
metacom
|
|
2013-04-23
|
|
Cisco Linksys WRT310N Router - Multiple Denial of Service Vulnerabilities
|
7 |
DOS
|
Carl Benedict
|
|
2015-10-19
|
|
Adobe Flash - 'IExternalizable.writeExternal' Type Confusion
|
8 |
DOS
|
Google Security Research
|
|
2015-10-18
|
|
VideoLAN VLC Media Player 2.2.1 - libvlccore '.mp3' Stack Overflow
|
5 |
DOS
|
Andrea Sindoni
|
|
2013-04-19
|
|
TP-Link TL-WR741N / TL-WR741ND Routers - Multiple Denial of Service Vulnerabilities
|
5 |
DOS
|
W1ckerMan
|
