Micro Focus Rumba versions 9.3 and below suffer from an active-x stack buffer overflow vulnerability.
>> CATEGORY: exploit
Micro Focus Rumba FTP client version 4.x stack overflow SEH exploit.
Micro Focus Rumba versions 9.3 and below suffer from a stack overflow vulnerability.
The included fuzz test case demonstrates an overflow in rastering for Adobe Flash.
Mounting a crafted EXT4 image as read-only leads to a kernel panic. Since the mounting procedure is a privileged operation, an attacker is probably not able to trigger this vulnerability…
The DxgkDdiEscape handler for 0x700010d accepts a user provided pointer as the destination for a memcpy call, without doing any checks on said pointer.
The DxgkDdiEscape handler for 0x600000D passes an unchecked user provided pointer as the destination for a memcpy call. This leads to kernel memory corruption.
NVIDIA escape code leaks uninitialized ExAllocatePoolWithTag memory to userspace.
The DxgkDdiEscape handler for 0x7000170 lacks proper bounds checks for the variable size input escape data, and relies on a user provided size as the upper bound for writing output.
The DxgkDdiEscape handler for escape 0x100009a lacks proper bounds checks.