映射到 CWE-119,CWE-120 的搜索结果 (8629)

CVE-2014-1215(发布:2018-03-20 17:29:00)NMCPS
CVSS4.6

[CNNVD]Core FTP 缓冲区溢出漏洞--Core FTP是Core FTP社区的一套免费的FTP客户端软件。该软件支持文件的上传、下载、续传等。 Core FTP中存在缓冲区溢出漏洞,该漏洞源于程序没有对用户提交的数据执行充分的边界检查。本地攻击者可利用该漏洞在应用程序上下文中执行任意代码,也可能造成拒绝服务。Core...

CVE-2018-8828(发布:2018-03-20 16:29:00)NMP
CVSS7.5

[原文]A Buffer Overflow issue was discovered in Kamailio before 4.4.7, 5.0.x before 5.0.6, and 5.1.x before 5.1.2. A specially crafted REGISTER message with a malformed branch or From tag triggers an off-by-one heap-based buffer overflow in the tmx_check_pretran function in modules/tmx/tmx_pretran.c.

CVE-2018-8822(发布:2018-03-20 13:29:00)NMS
CVSS7.2

[原文]Incorrect buffer length handling in the ncp_read_kernel function in fs/ncpfs/ncplib_kernel.c in the Linux kernel through 4.15.11, and in drivers/staging/ncpfs/ncplib_kernel.c in the Linux kernel 4.16-rc through 4.16-rc6, could be exploited by malicious NCPFS servers to crash the kernel or execute code.

CVE-2018-8808(发布:2018-03-20 01:29:00)NM
CVSS4.3

[原文]In radare2 2.4.0, there is a heap-based buffer over-read in the r_asm_disassemble function of asm.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted dex file.

CVE-2018-8809(发布:2018-03-20 01:29:00)NM
CVSS4.3

[原文]In radare2 2.4.0, there is a heap-based buffer over-read in the dalvik_op function of anal_dalvik.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted dex file.

CVE-2018-8810(发布:2018-03-20 01:29:00)NM
CVSS4.3

[原文]In radare2 2.4.0, there is a heap-based buffer over-read in the get_ivar_list_t function of mach0_classes.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted Mach-O file.

首页上一页345678910下一页尾页 第5页 / 共1439页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站