Huawei eSpace version 1.1.11.103 Meeting conference whiteboard functionality is vulnerable to a buffer overflow issue when inserting known image file formats. Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will likely result in denial-of-service conditions.
Huawei eSpace version 1.1.11.103 Meeting suffers from a heap-based memory overflow vulnerability when parsing large amount of bytes to the ‘strNum’ string parameter in GetNameyNum() in ‘ContactsCtrl.dll’ and ‘strName’ string parameter in SetUserInfo() in eSpaceStatusCtrl.dll library, resulting in heap memory corruption. An attacker can gain access to the system of the affected node and execute […]
A buffer overflow in the DtPrinterAction::PrintActionExists() function in the Common Desktop Environment 2.3.0 and earlier, as used in Oracle Solaris 10 1/13 (Update 11) and earlier, allows local users to gain root privileges via a long printer name passed to dtprintinfo by a malicious lpstat program.
phpKF version 1.10 suffers from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities.
Emerson Network Power Liebert Challenger version 5.1E0.5 suffers from a cross site scripting vulnerability.
macOS < 10.14.5 / iOS < 12.3 XNU – Wild-read due to bad cast in stf_ioctl
Tags: 0day, remote exploitmacOS < 10.14.5 / iOS < 12.3 JavaScriptCore – AIR Optimization Incorrectly Removes Assignment to Register
Tags: 0day, remote exploitmacOS < 10.14.5 / iOS < 12.3 JavaScriptCore – Loop-Invariant Code Motion (LICM) in DFG JIT Leaves Stack Variable Uninitialized
Tags: 0day, remote exploitmacOS < 10.14.5 / iOS < 12.3 DFG JIT Compiler – 'HasIndexedProperty' Use-After-Free
Tags: 0day, remote exploit